Mock Version: 1.3.4
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'], nspawn_args=[]shell=Falseuid=1004env={'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '}chrootPath='/var/lib/mock/centos-7-x86_64/root'gid=135user='mockbuild'timeout=0logger=<mockbuild.trace_decorator.getLog object at 0x28ac850>printOutput=True)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '} and shell False
Building target platforms: x86_64
Building for target x86_64
Wrote: /builddir/build/SRPMS/nss-3.28.4-11.el7_4.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', u'/usr/bin/rpmbuild -bb --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'], nspawn_args=[]shell=Falseuid=1004env={'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '}chrootPath='/var/lib/mock/centos-7-x86_64/root'gid=135user='mockbuild'timeout=0logger=<mockbuild.trace_decorator.getLog object at 0x28ac850>printOutput=True)
Executing command: ['bash', '--login', '-c', u'/usr/bin/rpmbuild -bb --target x86_64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.utf8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOSTNAME': 'mock', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PS1': '<mock-chroot> \\s-\\v\\$ '} and shell False
Building target platforms: x86_64
Building for target x86_64
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.2QlR20
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.28.4
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.28.4.tar.gz
+ /usr/bin/tar -xf -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.28.4
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ /usr/bin/cp /builddir/build/SOURCES/PayPalEE.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestCA.ca.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestUser50.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestUser51.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/PayPalRootCA.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/PayPalICA.cert -f ./nss/tests/libpkix/certs
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ echo 'Patch #2 (add-relro-linker-option.patch):'
Patch #2 (add-relro-linker-option.patch):
+ /usr/bin/cat /builddir/build/SOURCES/add-relro-linker-option.patch
+ /usr/bin/patch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 189 (offset 15 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/renegotiate-transitional.patch
+ /usr/bin/patch -p0 -b --suffix .transitional --fuzz=0
patching file nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-539183.patch
+ /usr/bin/patch -p0 -b --suffix .539183 --fuzz=0
patching file nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 974 (offset -2 lines).
patching file nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1683 (offset -48 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-3.14.0.0-disble-ocsp-test.patch
+ /usr/bin/patch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/utilwrap-include-templates.patch
+ /usr/bin/patch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-skip-bltest-and-fipstest.patch
+ /usr/bin/patch -p0 -b --suffix .skipthem --fuzz=0
patching file nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/iquote.patch
+ /usr/bin/patch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/httpserv/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
Hunk #1 succeeded at 37 (offset -4 lines).
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/libpkix/pkix/checker/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/ssl/Makefile
Hunk #1 succeeded at 56 (offset 7 lines).
patching file ./nss/gtests/ssl_gtest/Makefile
Hunk #1 succeeded at 53 (offset 16 lines).
+ pushd nss
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
Patch #52 (Bug-1001841-disable-sslv2-libssl.patch):
+ echo 'Patch #52 (Bug-1001841-disable-sslv2-libssl.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/Bug-1001841-disable-sslv2-libssl.patch
+ /usr/bin/patch -p1 -b --suffix .disableSSL2libssl --fuzz=0
patching file lib/ssl/config.mk
patching file lib/ssl/sslsock.c
Patch #53 (Bug-1001841-disable-sslv2-tests.patch):
+ echo 'Patch #53 (Bug-1001841-disable-sslv2-tests.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/Bug-1001841-disable-sslv2-tests.patch
+ /usr/bin/patch -p1 -b --suffix .disableSSL2tests --fuzz=0
patching file tests/ssl/ssl.sh
Patch #55 (enable-fips-when-system-is-in-fips-mode.patch):
+ echo 'Patch #55 (enable-fips-when-system-is-in-fips-mode.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/enable-fips-when-system-is-in-fips-mode.patch
+ /usr/bin/patch -p1 -b --suffix .852023_enable_fips_when_in_fips_mode --fuzz=0
patching file lib/pk11wrap/pk11pars.c
patching file lib/pk11wrap/pk11util.c
patching file lib/pk11wrap/secmodi.h
Patch #56 (p-ignore-setpolicy.patch):
+ echo 'Patch #56 (p-ignore-setpolicy.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/p-ignore-setpolicy.patch
+ /usr/bin/patch -p1 -b --suffix .1026677_ignore_set_policy --fuzz=0
patching file lib/ssl/sslsock.c
Hunk #1 succeeded at 1379 (offset -12 lines).
Hunk #2 succeeded at 1390 (offset -12 lines).
Patch #62 (nss-fix-deadlock-squash.patch):
+ echo 'Patch #62 (nss-fix-deadlock-squash.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-fix-deadlock-squash.patch
+ /usr/bin/patch -p1 -b --suffix .fix_deadlock --fuzz=0
patching file lib/pki/tdcache.c
Patch #100 (fix-min-library-version-in-SSLVersionRange.patch):
+ echo 'Patch #100 (fix-min-library-version-in-SSLVersionRange.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/fix-min-library-version-in-SSLVersionRange.patch
+ /usr/bin/patch -p0 -b --suffix .1171318 --fuzz=0
patching file ./lib/ssl/sslsock.c
Hunk #1 succeeded at 90 (offset -2 lines).
Patch #74 (race.patch):
+ echo 'Patch #74 (race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/race.patch
+ /usr/bin/patch -p1 -b --suffix .race --fuzz=0
patching file lib/pk11wrap/pk11util.c
~/build/BUILD/nss-3.28.4
Patch #94 (nss-3.16-token-init-race.patch):
+ popd
+ echo 'Patch #94 (nss-3.16-token-init-race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-3.16-token-init-race.patch
+ /usr/bin/patch -p0 -b --suffix .init-token-race --fuzz=0
patching file nss/lib/pk11wrap/dev3hack.c
patching file nss/lib/pk11wrap/pk11auth.c
patching file nss/lib/pk11wrap/pk11slot.c
patching file nss/lib/pk11wrap/pk11util.c
Patch #108 (nss-sni-c-v-fix.patch):
+ echo 'Patch #108 (nss-sni-c-v-fix.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-sni-c-v-fix.patch
+ /usr/bin/patch -p0 -b --suffix .sni_c_v_fix --fuzz=0
patching file nss/tests/ssl/sslauth.txt
+ pushd nss
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
Patch #123 (nss-skip-util-gtest.patch):
+ echo 'Patch #123 (nss-skip-util-gtest.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-skip-util-gtest.patch
+ /usr/bin/patch -p1 -b --suffix .skip-util-gtests --fuzz=0
patching file gtests/manifest.mn
patching file gtests/ssl_gtest/manifest.mn
Hunk #1 succeeded at 49 (offset 1 line).
patching file tests/gtests/gtests.sh
Patch #126 (nss-reorder-cipher-suites.patch):
+ echo 'Patch #126 (nss-reorder-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-reorder-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .reorder-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
patching file lib/ssl/sslenum.c
Patch #127 (nss-disable-cipher-suites.patch):
+ echo 'Patch #127 (nss-disable-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-disable-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .disable-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
Patch #128 (nss-enable-cipher-suites.patch):
+ echo 'Patch #128 (nss-enable-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-enable-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .enable-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
Hunk #2 succeeded at 103 (offset 1 line).
Hunk #3 succeeded at 115 (offset 2 lines).
Hunk #4 succeeded at 143 (offset 3 lines).
Patch #129 (moz-1320932.patch):
+ echo 'Patch #129 (moz-1320932.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/moz-1320932.patch
+ /usr/bin/patch -p1 -b --suffix .fix_ssl_sh_typo --fuzz=0
patching file tests/ssl/ssl.sh
Hunk #1 succeeded at 1026 (offset 20 lines).
Patch #130 (disable-pss.patch):
+ echo 'Patch #130 (disable-pss.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/disable-pss.patch
+ /usr/bin/patch -p1 -b --suffix .disable_pss --fuzz=0
patching file lib/ssl/ssl3con.c
Hunk #1 succeeded at 183 (offset 6 lines).
Hunk #2 succeeded at 4634 (offset 6 lines).
patching file lib/ssl/sslcert.c
Patch #132 (nss-tstclnt-optspec.patch):
+ echo 'Patch #132 (nss-tstclnt-optspec.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-tstclnt-optspec.patch
+ /usr/bin/patch -p1 -b --suffix .tstclnt-optspec --fuzz=0
patching file cmd/tstclnt/tstclnt.c
Hunk #1 succeeded at 1487 (offset -22 lines).
Patch #133 (nss-1334976-1336487-1345083-ca-2.14.patch):
+ echo 'Patch #133 (nss-1334976-1336487-1345083-ca-2.14.patch):'
+ /usr/bin/patch -p1 -b --suffix .mozilla-ca-policy-plus-ca-2.14 --fuzz=0
+ /usr/bin/cat /builddir/build/SOURCES/nss-1334976-1336487-1345083-ca-2.14.patch
patching file cmd/addbuiltin/addbuiltin.c
patching file cmd/lib/secutil.c
patching file lib/ckfw/builtins/certdata.txt
patching file lib/ckfw/builtins/nssckbi.h
patching file lib/certdb/genname.c
patching file lib/cryptohi/keythi.h
patching file lib/nss/nss.def
patching file lib/pk11wrap/pk11obj.c
patching file lib/pk11wrap/pk11priv.h
patching file lib/pk11wrap/pk11pub.h
Patch #134 (nss-alert-handler.patch):
+ echo 'Patch #134 (nss-alert-handler.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-alert-handler.patch
+ /usr/bin/patch -p1 -b --suffix .alert-handler --fuzz=0
patching file gtests/ssl_gtest/ssl_0rtt_unittest.cc
patching file gtests/ssl_gtest/ssl_exporter_unittest.cc
patching file gtests/ssl_gtest/ssl_extension_unittest.cc
patching file gtests/ssl_gtest/ssl_version_unittest.cc
patching file gtests/ssl_gtest/tls_agent.cc
patching file gtests/ssl_gtest/tls_agent.h
patching file gtests/ssl_gtest/tls_connect.cc
patching file lib/ssl/ssl3con.c
Hunk #1 succeeded at 3149 (offset 6 lines).
Hunk #2 succeeded at 3265 (offset 6 lines).
patching file lib/ssl/ssl.def
patching file lib/ssl/ssl.h
patching file lib/ssl/sslimpl.h
patching file lib/ssl/sslsecur.c
patching file lib/ssl/sslsock.c
patching file lib/ssl/sslsock.c
Hunk #1 succeeded at 2153 (offset 1 line).
Patch #135 (nss-check-policy-file.patch):
+ echo 'Patch #135 (nss-check-policy-file.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-check-policy-file.patch
+ /usr/bin/patch -p1 -b --suffix .check_policy_file --fuzz=0
patching file lib/pk11wrap/pk11pars.c
Hunk #2 succeeded at 709 (offset 4 lines).
Hunk #3 succeeded at 752 (offset 4 lines).
Hunk #4 succeeded at 1677 (offset 4 lines).
Patch #136 (nss-tools-sha256-default.patch):
+ echo 'Patch #136 (nss-tools-sha256-default.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-tools-sha256-default.patch
+ /usr/bin/patch -p1 -b --suffix .tools-sha256-default --fuzz=0
patching file cmd/smimetools/cmsutil.c
patching file cmd/smimetools/smime
patching file lib/cryptohi/secsign.c
Patch #137 (nss-is-token-present-race.patch):
+ echo 'Patch #137 (nss-is-token-present-race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-is-token-present-race.patch
+ /usr/bin/patch -p1 -b --suffix .is-token-present-race --fuzz=0
patching file lib/dev/devslot.c
Patch #138 (nss-pk12util.patch):
+ echo 'Patch #138 (nss-pk12util.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-pk12util.patch
+ /usr/bin/patch -p1 -b --suffix .pk12util --fuzz=0
patching file lib/pk11wrap/pk11mech.c
patching file lib/pkcs12/p12d.c
patching file lib/softoken/lowpbe.c
patching file cmd/pk12util/pk12util.c
patching file lib/pk11wrap/pk11pbe.c
patching file lib/pkcs12/p12d.c
patching file lib/pkcs12/p12e.c
patching file lib/pkcs12/p12local.c
patching file lib/pkcs12/p12local.h
patching file lib/pkcs12/p12plcy.c
patching file lib/pkcs7/p7create.c
patching file lib/pkcs7/secpkcs7.h
patching file tests/tools/tools.sh
patching file lib/pkcs12/p12d.c
patching file lib/pkcs12/p12e.c
patching file lib/pkcs12/p12local.c
patching file lib/pkcs12/p12local.h
patching file lib/pk11wrap/pk11pbe.c
patching file lib/pk11wrap/pk11priv.h
patching file lib/pk11wrap/pk11slot.c
Hunk #1 succeeded at 2260 (offset -31 lines).
Patch #139 (nss-disable-pss-gtests.patch):
+ echo 'Patch #139 (nss-disable-pss-gtests.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-disable-pss-gtests.patch
+ /usr/bin/patch -p1 -b --suffix .disable-pss-gtests --fuzz=0
patching file gtests/ssl_gtest/ssl_ecdh_unittest.cc
Patch #140 (nss-ssl3gthr.patch):
+ echo 'Patch #140 (nss-ssl3gthr.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-ssl3gthr.patch
+ /usr/bin/patch -p1 -b --suffix .ssl3gthr --fuzz=0
patching file gtests/ssl_gtest/ssl_gather_unittest.cc
patching file gtests/ssl_gtest/ssl_gtest.gyp
patching file gtests/ssl_gtest/ssl_v2_client_hello_unittest.cc
patching file lib/ssl/ssl3gthr.c
patching file lib/ssl/ssldef.c
patching file lib/ssl/sslimpl.h
Patch #141 (nss-sysinit-getenv.patch):
+ echo 'Patch #141 (nss-sysinit-getenv.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-sysinit-getenv.patch
+ /usr/bin/patch -p1 -b --suffix .sysinit-getenv --fuzz=0
patching file lib/sysinit/nsssysinit.c
+ popd
~/build/BUILD/nss-3.28.4
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
~/build/BUILD/nss-3.28.4/nss/tests/ssl ~/build/BUILD/nss-3.28.4
+ pushd nss/tests/ssl
+ cat sslcov.txt
+ sed -r 's/^([^#].*EXPORT|^[^#].*SSL2)/#disabled \1/'
+ cat sslstress.txt
+ sed -r 's/^([^#].*EXPORT|^[^#].*SSL2)/#disabled \1/'
~/build/BUILD/nss-3.28.4
+ popd
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.FwMqSN
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ export NSS_NO_SSL2=1
+ NSS_NO_SSL2=1
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ /usr/bin/pkg-config --cflags-only-I nspr
++ sed s/-I//
+ NSPR_INCLUDE_DIR='/usr/include/nspr4  '
+ NSPR_LIB_DIR=/usr/lib64
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ /usr/bin/pkg-config --cflags-only-I nss-util
++ sed s/-I//
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4  '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4  '
+ export NSSUTIL_LIB_DIR=/usr/lib64
+ NSSUTIL_LIB_DIR=/usr/lib64
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
++ sed s/-I//
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4  '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4  '
+ export FREEBL_LIB_DIR=/usr/lib64
+ FREEBL_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl  '
+ FREEBL_LIBS='-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl  '
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ export NSS_ALLOW_SSLKEYLOGFILE=1
+ NSS_ALLOW_SSLKEYLOGFILE=1
+ USE_64=1
+ export USE_64
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Nothing to be done for `export'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nsinstall.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pathsub.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -m64 -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[1]: Nothing to be done for `export'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
make[1]: Nothing to be done for `libs'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/db.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic db.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_bigkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_func.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_func.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_log2.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_page.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic h_page.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash_buf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mktemp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dirent.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dirent.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/db.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_func.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/h_page.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dirent.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
+ export POLICY_FILE=nss-rhel7.config
+ POLICY_FILE=nss-rhel7.config
+ export POLICY_PATH=/etc/pki/nss-legacy
+ POLICY_PATH=/etc/pki/nss-legacy
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
true -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[3]: Nothing to be done for `export'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for `export'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
cd pk11_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
cd ssl_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
true -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
make[3]: Nothing to be done for `libs'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic arena.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic error.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic errorval.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hashops.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic libc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tracker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic item.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic utf8.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic devslot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic devtoken.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic devutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ckhelper.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic asymmkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certificate.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cryptocontext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic symmkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic trustdomain.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tdcache.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certdecode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkistore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkibase.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pki3hack.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
make[3]: Nothing to be done for `libs'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_certselector.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_comcertselparams.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_crlselector.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_comcrlselparams.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_basicconstraintschecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_certchainchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_crlchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_ekuchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_expirationchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_namechainingchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_nameconstraintschecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_ocspchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_revocationmethod.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_revocationchecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_policychecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_signaturechecker.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_targetcertchecker.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_trustanchor.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_procparams.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_valparams.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_resourcelimits.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_buildresult.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_policynode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_valresult.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_verifynode.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_store.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_validate.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_lifecycle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_build.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_tools.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_error.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_logger.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_errpaths.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_basicconstraints.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_cert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_certpolicyinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_certpolicymap.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_certpolicyqualifier.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_crl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_crldp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_crlentry.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_date.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_generalname.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_infoaccess.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_nameconstraints.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ocsprequest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ocspresponse.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_publickey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_x500name.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ocspcertid.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_bigint.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_bytearray.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_common.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_error.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_hashtable.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_lifecycle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_mem.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_monitorlock.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_mutex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_object.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_oid.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_primhash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_rwlock.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_string.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_aiamgr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_colcertstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_httpcertstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_httpdefaultclient.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldaptemplates.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldapcertstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldapresponse.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldaprequest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_ldapdefaultclient.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_nsscontext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_pk11certstore.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix_pl_socket.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic alg1485.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certdb.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certv3.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certxutl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic genname.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic stanpcertdb.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic polcyxtn.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secname.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xauthkid.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xbsconst.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xconst.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certhtml.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certreq.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlv2.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocsp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocspsig.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certhigh.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certvfy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certvfypkix.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic xcrldist.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dev3hack.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11akey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11auth.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11cert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11cxt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11err.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11kea.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11load.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11mech.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11merge.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11nobj.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11obj.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pars.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pbe.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pk12.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11pqg.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11sdr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11skey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11slot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11util.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sechash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic seckey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secsign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secvfy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dsautil.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nssinit.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nssoptions.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nssver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic utilwrap.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certreq.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o ../certhigh/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sechash.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/seckey.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secsign.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o ../cryptohi/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o ../pk11wrap/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdb.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certv3.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crl.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/genname.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secname.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o ../certdb/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/xconst.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certificate.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o ../pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devslot.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/devutil.o ../dev/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/arena.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/error.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/errorval.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hashops.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libc.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tracker.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/item.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/utf8.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o ../base/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dtlscon.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic prelib.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3con.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3gthr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslauth.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslcon.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssldef.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslenum.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslerr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslerrstrs.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslinit.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3ext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3exthandle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslmutex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslnonce.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslreveal.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslsecur.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslsnce.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslsock.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssltrace.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic authcert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmpcert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssl3ecc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tls13con.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tls13exthandle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tls13hkdf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslcert.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sslgrp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic unix_err.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o    -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certread.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7common.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7create.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7decode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7encode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7local.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secmime.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12local.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12creat.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12dec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12plcy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12tmpl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12e.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p12d.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsarray.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsasn1.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsattr.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmscinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmscipher.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsdecode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsdigdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsdigest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsencdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsencode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsenvdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsmessage.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmspubkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsrecinfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsreclist.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmssigdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmssiginfo.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsudf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic smimemessage.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic smimeutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic smimever.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smime.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smime.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/smimever.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12local.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12e.o ../pkcs12/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p12d.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certread.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7common.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7create.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7local.o ../pkcs7/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmime.o   -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfenc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmftmpl.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfreq.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfpop.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfdec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfget.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crmfcont.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfasn1.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfresp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfrec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmmfchal.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/servget.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic servget.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic encutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcli.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic respcli.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic respcmn.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/challcli.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic challcli.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic asn1cmn.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/servget.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcli.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/challcli.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarsign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jar.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jar-ds.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarfile.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarint.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_X86_OR_X64 -DNSS_X64 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic jarint.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/jarint.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libjar.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crypto.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crypto.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/find.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic find.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic hash.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instance.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic instance.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mutex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mutex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/object.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic object.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/session.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic session.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sessobj.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/slot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic slot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/token.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic token.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/wrap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic wrap.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mechanism.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crypto.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/find.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instance.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mutex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/object.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/session.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/slot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/token.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/wrap.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/anchor.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic anchor.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/constants.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic constants.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bfind.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bfind.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/binst.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic binst.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bobject.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bobject.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bsession.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bsession.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bslot.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic bslot.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoken.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic btoken.c
perl certdata.perl certdata.txt Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/anchor.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/constants.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bfind.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/binst.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bobject.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bsession.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bslot.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoken.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certdata.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o   ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nsssysinit.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic basicutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secpwd.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derprint.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic derprint.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic moreoids.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pppolicy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ffs.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ffs.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11table.c
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derprint.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ffs.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic shlibsign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/shlibsign ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic mangle.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/mangle ../../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic addbuiltin.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic atob.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/atob ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic btoa.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/btoa ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certcgi.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certcgi ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certext.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certext.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic keystuff.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certext.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic chktest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/chktest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlgen_lex.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlgen.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic crlutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crlutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic testcrmf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/crmftest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dbtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dbtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic derdump.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/derdump ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic digest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/digest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic httpserv.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/httpserv ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic listsuites.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/listsuites ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic makepqg.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/makepqg ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic multinit.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/multinit ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocspclnt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ocspresp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ocspresp ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic oidcalc.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/oidcalc ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7content.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7content ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7env.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7env ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7sign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7sign ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic p7verify.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/p7verify ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk12util.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk12util ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11ectest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11gcmtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11mode.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11mode ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk1sign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk1sign ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pp.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pp ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pwdecrypt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic rsaperf.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic defkey.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/rsaperf ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sdrtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sdrtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic selfserv.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/selfserv ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic signtool.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certgen.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic certgen.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/javascript.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic javascript.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic list.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sign.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic sign.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/util.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic util.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/verify.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic verify.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/zip.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic zip.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/certgen.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/javascript.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/sign.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/util.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/verify.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/zip.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signtool ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic signver.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk7print.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/signver ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic cmsutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/cmsutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic ssltap.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssltap ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic strsclnt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/strsclnt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic symkeyutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic baddbdir.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic conflict.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic dertimetest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic encodeinttest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic nonspr10.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic remtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic secmodtest.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/baddbdir Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/conflict Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/dertimetest Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/remtest Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/secmodtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic tstclnt.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tstclnt ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic vfychain.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfychain ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic vfyserv.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic vfyutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/vfyserv ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic modutil.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pk11.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instsec.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic instsec.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic install.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/installparse.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic installparse.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic install-ds.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic lex.Pk11Install_yy.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/instsec.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/installparse.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/modutil ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic pkix-errcodes.c
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x gtest/src/gtest-all.cc
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
ar cr Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o
echo Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
rm -f Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
g++ -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x gtests.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x der_getint_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_gtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/der_gtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
cd pk11_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_aeskeywrap_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_aeskeywrap_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_chacha20poly1305_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_chacha20poly1305_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_export_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_export_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_pbkdf2_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_pbkdf2_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prf_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_prf_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prng_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_prng_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_rsapss_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -std=c++0x pk11_rsapss_unittest.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_gtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_aeskeywrap_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_chacha20poly1305_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_export_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_pbkdf2_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prf_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_prng_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_rsapss_unittest.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/pk11_gtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
cd ssl_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cc -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl_internals.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 libssl_internals.c
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_0rtt_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_0rtt_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_cert_ext_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_cert_ext_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ciphersuite_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ciphersuite_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_dhe_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_dhe_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_drop_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_drop_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ecdh_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ecdh_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ems_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ems_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_exporter_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_exporter_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_gtest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_record_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_record_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_skip_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_skip_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_staticrsa_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_staticrsa_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/test_io.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x test_io.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_agent.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_agent.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_connect.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_connect.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_hkdf_unittest.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_hkdf_unittest.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_filter.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_filter.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_parser.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_parser.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/libssl_internals.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_0rtt_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_cert_ext_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ciphersuite_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_dhe_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_drop_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ecdh_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_ems_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_exporter_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_record_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_skip_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_staticrsa_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/test_io.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_agent.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_connect.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_hkdf_unittest.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_filter.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/tls_parser.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a -lsoftokn3 ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/ssl_gtest ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/config.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim -O2 -fPIC -DLINUX2_1 -m64 -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -m64 -mtune=generic -I../../lib/ssl Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/config.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -m64 -Wl,-z,relro ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim ../../../dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss'
+ unset NSS_BLTEST_NOT_AVAILABLE
+ pushd ./nss
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
+ /usr/bin/make clean_docs build_docs
/usr/bin/make -C ./doc clean
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
~/build/BUILD/nss-3.28.4
+ popd
+ /usr/bin/mkdir -p ./dist/doc/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/doc/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib64,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.28.4,g -e s,%NSPR_VERSION%,4.13.1,g -e s,%NSSUTIL_VERSION%,3.28.4,g -e s,%SOFTOKEN_VERSION%,3.28.3,g
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMAJOR'
++ awk '{print $3}'
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMINOR'
++ awk '{print $3}'
+ NSS_VMINOR=28
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VPATCH'
++ awk '{print $3}'
+ NSS_VPATCH=4
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ sed -e s,@libdir@,/usr/lib64,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,28,g -e s,@MOD_PATCH_VERSION@,4,g
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.28.4
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.ajb3ee
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64 '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64
++ dirname /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64
+ cd nss-3.28.4
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/pkgconfig
+ mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/nss/unsupported-tools
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/lib64/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/setup-nsssysinit.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/certutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/cmsutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/crlutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/derdump.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/modutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/pk12util.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/pp.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/signtool.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/signver.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/ssltap.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/vfychain.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man1/vfyserv.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/share/man/man5/secmod.db.5
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/etc/pki/nss-legacy
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/nss-rhel7.config /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/etc/pki/nss-legacy/nss-rhel7.config
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 110000000 /builddir/build/BUILD/nss-3.28.4
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/certutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/signver
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/bin/ssltap
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/atob
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/btoa
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/listsuites
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/libnss3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/libnsssysinit.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64/usr/lib64/libssl3.so
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.28.4/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.28.4/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25180 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/redhat/brp-compress
+ /usr/lib/rpm/redhat/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/redhat/brp-python-hardlink
+ /usr/lib/rpm/redhat/brp-java-repack-jars
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.mQXYfQ
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ '[' 0 -eq 1 ']'
+ export NSS_NO_SSL2=1
+ NSS_NO_SSL2=1
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ USE_64=1
+ export USE_64
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
++ find ./nss/tests
++ grep -c ' '
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
+ MYRAND=9223
+ echo 9223
9223
selfserv_9223
+ RANDSERV=selfserv_9223
+ echo selfserv_9223
++ ls -d ./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ echo ./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
++ pwd
+ pushd /builddir/build/BUILD/nss-3.28.4
~/build/BUILD/nss-3.28.4 ~/build/BUILD/nss-3.28.4
+ cd ./dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin
+ ln -s selfserv selfserv_9223
~/build/BUILD/nss-3.28.4
+ popd
+ find ./nss/tests -type f
+ grep -v '\.db$'
+ grep -v '\.crl$'
+ grep -v '\.crt$'
+ grep -vw CVS
+ xargs grep -lw selfserv
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9223/g'
+ killall selfserv_9223
selfserv_9223: no process found
+ :
+ rm -rf ./tests_results
~/build/BUILD/nss-3.28.4/nss/tests ~/build/BUILD/nss-3.28.4
+ pushd ./nss/tests/
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9223
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.28.4/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.28.4/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin:/builddir/.local/bin:/builddir/bin)
********************************************
   Platform: Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin:/builddir/.local/bin:/builddir/bin against LIB /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Wed Aug 23 12:18:08 UTC 2017
TIMESTAMP libpkix END: Wed Aug 23 12:18:08 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Wed Aug 23 12:18:08 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #70: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #71: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #72: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #73: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #74: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #75: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #76: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #77: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #99: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #100: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #101: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #102: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #103: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #104: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #105: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #106: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #107: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:99
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:15 2017
            Not After : Thu Nov 23 12:18:15 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:91:bd:e6:1d:37:4a:dd:cc:0f:5c:2f:ee:2b:c6:ff:
                    af:c8:65:20:6b:36:df:87:ec:ed:c2:86:6d:d1:64:90:
                    23:62:63:b3:9d:eb:47:61:47:e2:d6:08:cd:f7:88:61:
                    e6:8d:d2:79:33:e6:81:8a:71:af:f7:eb:bb:40:e2:8d:
                    a8:65:2e:f7:38:3d:54:1c:47:56:bf:34:a0:6c:88:dc:
                    6a:61:4f:01:54:64:16:d1:fe:c0:c6:82:87:61:aa:e4:
                    d4:2d:ba:34:6b:5f:a7:6b:7d:f6:d3:a4:a6:46:ef:d2:
                    de:6d:b1:8b:b8:53:97:08:24:ec:a6:8d:23:f6:e9:e5:
                    6b:18:ef:21:45:03:ce:15:6d:dc:1d:22:e6:a7:bf:be:
                    ba:5c:3b:da:9c:ad:f1:80:b3:fe:67:22:62:6e:ce:96:
                    05:40:42:f3:d0:e2:c7:4e:57:04:7b:d1:64:c8:b9:69:
                    f3:11:cf:56:1d:fd:1e:11:bd:7f:cb:0b:b5:cf:d4:96:
                    05:46:5d:e9:c7:7e:9e:19:8f:95:cc:ca:01:93:96:76:
                    16:72:46:5c:12:5c:a0:f8:87:7f:12:59:3c:90:46:ac:
                    0d:2a:3d:5e:f8:47:28:73:98:f0:6e:f9:c9:74:09:0a:
                    f5:0f:b6:29:04:bd:d9:39:d0:51:85:fc:82:10:05:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:7b:70:ab:ab:b2:8e:a9:4a:dc:1c:2e:0f:8e:d0:11:
        23:74:5e:c5:39:e5:5b:d8:69:7e:65:da:4b:5a:39:e0:
        09:7a:83:54:13:bc:9e:44:56:97:a1:38:98:32:5b:96:
        69:db:32:2d:2b:20:70:f7:f4:a4:d2:39:8c:a7:d1:1e:
        5f:38:4b:e4:6d:b3:5a:85:d1:48:5b:a8:a5:4d:28:9e:
        24:e7:8b:01:a1:c9:40:b2:3a:b9:98:d3:7f:08:d7:fc:
        e3:64:47:68:90:09:fe:df:b3:ff:05:51:91:e0:2b:db:
        03:33:fb:88:38:1f:ed:31:b2:6f:8d:00:8f:bf:b9:b3:
        ee:28:30:f3:2a:e6:9a:c5:c8:bd:e6:db:d7:8b:e9:11:
        8b:e8:67:10:c3:15:cb:03:b8:39:6f:53:a0:50:04:5c:
        1f:c8:bc:97:59:b0:47:74:ff:e8:7f:d2:d9:04:ce:e8:
        29:1f:23:98:b9:39:7a:35:23:49:de:8c:13:a8:3f:76:
        cf:79:16:a0:16:a7:72:12:22:39:c7:23:7d:a3:0a:eb:
        f8:88:3e:7e:57:2b:62:ae:e7:cd:44:16:cf:8e:cb:71:
        d1:4a:4f:3c:28:80:73:9d:1b:e2:78:b8:bb:d7:33:8c:
        50:2e:a8:43:e4:64:8e:ba:f4:fe:84:6f:0b:24:aa:96
    Fingerprint (SHA-256):
        85:B1:D4:63:84:73:75:C2:51:DD:49:F4:A7:3B:A7:51:74:FC:0B:2B:A8:0E:A4:04:CD:0C:F4:25:81:E9:82:E8
    Fingerprint (SHA1):
        25:30:92:59:47:D7:C6:5F:C0:E0:B8:07:CA:B0:3E:CB:8B:93:29:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:99
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:15 2017
            Not After : Thu Nov 23 12:18:15 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:1d:82:21:9e:6e:d9:43:fa:f3:6b:a3:a3:9f:62:ec:
                    65:e6:a0:92:1d:1a:e9:40:26:da:1c:f6:2d:50:39:bd:
                    39:c3:8c:7e:14:b0:cb:ad:5c:55:73:c5:47:d3:54:9a:
                    4c:1e:4a:05:a2:e6:56:f3:b3:c8:20:5f:eb:b3:57:08:
                    5e:bc:d7:a2:01:60:f6:9b:2b:82:a6:10:00:96:14:3d:
                    16:d4:f4:54:36:29:3a:81:85:2c:99:29:3b:c9:e6:8c:
                    3d:eb:89:9d:39:26:8d:60:05:b2:bd:a8:48:be:55:27:
                    10:35:8a:8e:2b:47:cb:5b:25:25:a0:3f:22:2e:05:e8:
                    22:3a:c7:aa:fc:49:ca:9a:6c:17:ea:01:39:7c:34:1a:
                    8e:ce:d2:91:0b:41:df:9b:26:2c:c4:2f:ff:a3:25:8a:
                    a7:b2:6e:c8:d6:fc:cf:73:41:36:0b:ac:31:ac:90:12:
                    d2:97:59:e6:79:2e:53:23:da:4b:54:a4:c4:45:a1:b1:
                    a7:82:b3:c0:55:b1:de:a2:74:ea:6a:59:53:b8:89:23:
                    df:32:2c:99:28:fb:71:bb:67:0b:98:a5:5c:92:c7:c0:
                    52:41:da:33:7f:25:88:3f:dc:d6:f3:e4:dc:1b:7b:00:
                    0d:17:37:79:56:1d:59:55:44:9d:c5:8a:9b:c7:1d:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:4d:7b:08:78:7a:e5:ed:09:97:75:a9:0b:5f:fb:c5:
        aa:61:63:b7:1e:21:05:ae:37:2f:da:f6:07:fc:40:76:
        94:41:8d:08:e9:10:77:07:cb:7c:a4:51:5b:c5:8f:74:
        2a:9a:1d:df:18:84:68:04:7b:c9:24:0c:ea:d2:b8:ae:
        ec:6c:ec:a5:19:c0:74:a2:86:7b:56:3d:80:0b:11:3e:
        8b:06:70:52:9f:97:dc:bf:ec:ba:c4:8d:f2:f0:cd:d6:
        6a:e1:24:84:29:e6:68:09:b9:ca:be:df:fd:56:48:16:
        72:e5:98:73:98:11:1a:e7:4e:32:29:8a:e5:ba:52:c4:
        71:4b:71:b7:8a:7a:dc:fa:5e:4b:00:60:a0:a5:33:98:
        bc:18:12:c8:97:29:8c:d0:66:b6:50:5d:73:67:40:8f:
        94:13:60:4d:2d:e3:66:01:69:76:cd:93:45:31:b9:12:
        f2:15:88:99:c8:f2:20:e6:26:ef:bb:2d:14:e9:97:e1:
        96:59:f8:a7:bc:2f:ea:c6:b6:54:0a:cd:fb:94:77:ea:
        f0:82:a1:33:19:02:b9:2b:cb:95:53:16:10:91:cd:84:
        c4:56:13:6e:5a:02:02:e6:57:aa:29:c9:8e:e4:65:0b:
        ad:d6:6f:05:dc:93:de:a0:d9:ec:30:0d:70:1d:45:3d
    Fingerprint (SHA-256):
        F4:21:E0:8D:AF:9D:B2:7E:11:0E:1C:F1:46:DA:44:4F:1A:EB:0F:6B:E2:11:80:35:BC:54:4D:BC:83:47:80:26
    Fingerprint (SHA1):
        62:28:56:49:96:2E:EF:7A:19:53:E0:43:B4:45:C1:B6:61:99:6E:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:15 2017
            Not After : Thu Nov 23 12:18:15 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:16:d5:16:d2:b3:21:b3:d8:42:8b:0a:3d:be:24:dd:
                    18:5d:04:da:52:ad:32:63:be:45:1b:96:64:14:f5:36:
                    15:0b:fe:ee:20:ac:6c:a5:fa:b2:2a:98:d5:bc:1e:f9:
                    09:f5:00:27:ff:02:f6:b1:99:6b:75:59:25:ec:9a:eb:
                    78:30:59:44:bd:b5:7a:0b:79:8d:4e:1b:99:ba:d3:34:
                    81:9b:71:e7:a1:61:f1:71:0c:ab:cb:31:02:64:8d:fb:
                    3d:ac:a6:3c:12:48:06:8e:74:63:6a:4c:f5:74:74:58:
                    20:7d:41:76:41:23:0d:39:0f:02:a3:3a:b1:ba:74:a6:
                    b3:84:9b:0c:d0:59:9e:06:61:80:9a:a4:23:f4:23:d2:
                    8a:95:1d:1b:f6:a1:3e:d3:33:6d:b5:28:fb:d3:71:8b:
                    6c:57:ca:8c:79:5d:9a:38:83:e0:4e:cb:0d:4d:0f:4f:
                    e2:cb:d4:d0:b0:be:77:57:3d:26:7c:8c:31:b1:51:49:
                    f8:4e:a7:5b:a1:b1:14:9d:40:65:3d:43:51:d3:89:c3:
                    38:7a:23:97:50:02:9b:a5:ee:79:51:6b:2c:d3:30:ba:
                    dc:8e:11:d9:ff:78:e9:48:18:4f:90:6d:af:95:72:de:
                    e4:d5:5c:41:b9:ca:9c:5d:56:3a:d8:ef:ec:cb:a3:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:4b:ea:c1:67:c5:92:fd:bb:ca:6a:8b:a8:de:3b:27:
        b6:16:40:f0:91:3a:43:68:2e:f8:9d:a9:eb:ca:1a:2b:
        cf:08:46:b4:2f:b8:cf:3a:51:1c:4f:5e:58:e9:a4:76:
        fc:86:7c:ee:39:d5:6d:ba:1b:31:74:c7:65:46:e8:f7:
        8a:51:56:55:df:66:0f:c3:85:bd:66:01:4d:fb:75:d8:
        73:c3:5b:0e:d8:8f:69:62:c7:5e:93:b1:f1:7b:37:75:
        75:10:09:56:59:8b:42:1b:80:3f:33:e7:9d:80:86:fd:
        99:de:1d:ba:95:b6:8b:0f:d1:f1:f9:2b:a8:d2:c9:0a:
        65:a9:ae:67:b1:46:e2:e3:ee:aa:75:6f:26:a4:8b:96:
        04:f8:3c:8d:0e:ea:65:b3:91:84:77:fa:dd:35:cf:db:
        56:bb:0c:26:e9:7b:64:97:fe:0f:0c:29:0a:b6:f8:7e:
        cd:50:54:d1:b5:73:7c:e9:b6:ea:ce:46:87:12:0e:c7:
        5a:eb:41:74:66:ca:9b:e0:6f:e2:4c:ec:62:f8:20:b6:
        39:af:c1:44:4e:45:05:d7:55:fc:b1:c0:ef:4b:b7:20:
        b8:de:56:91:a5:68:91:36:fe:a0:b8:97:01:fd:02:f7:
        48:4b:da:dc:2e:1c:3c:b5:75:a5:94:63:f3:67:f2:c5
    Fingerprint (SHA-256):
        5C:65:D3:23:D5:BC:4A:E9:61:45:9D:FD:DD:83:33:55:11:0E:DD:F3:92:BD:B1:75:45:18:F5:AE:92:BA:C1:CD
    Fingerprint (SHA1):
        F2:5B:31:E8:2F:C1:5B:19:12:13:BF:65:2A:A2:20:6D:29:D9:B5:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:15 2017
            Not After : Thu Nov 23 12:18:15 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:dd:00:1e:8d:d2:b8:a2:cd:33:17:a2:f7:49:64:84:
                    25:8e:89:cf:36:d9:33:b3:c2:25:97:f9:b7:b2:37:d0:
                    05:72:9e:cd:66:a0:a4:5f:5f:99:07:46:b5:47:4a:28:
                    51:db:32:a1:b8:a6:4b:ed:d0:07:c9:a2:2b:91:57:a5:
                    59:12:29:51:40:fc:e4:57:cf:8a:e9:55:81:f8:df:01:
                    16:df:dc:2c:e3:26:9d:bc:ad:19:4f:52:3d:59:8b:cc:
                    67:6b:b7:32:4b:87:74:9c:b8:fa:25:54:65:fc:c6:4e:
                    bb:8b:23:dd:1d:dd:aa:8c:44:f7:60:bc:6d:3c:c3:b5:
                    64:31:40:ba:aa:fb:46:cc:f2:ec:cc:db:0c:52:78:b3:
                    41:a0:54:3d:93:75:48:7b:bf:df:44:5f:54:0b:ae:81:
                    15:d7:14:18:e0:8e:f6:36:6b:53:1c:f5:f8:19:7f:c5:
                    65:5c:ee:0a:7c:fc:d1:26:3b:43:7f:4d:f2:cd:22:0b:
                    c7:5c:07:c5:e3:b6:60:43:d8:3a:7c:18:b5:6c:f1:46:
                    21:8b:b7:c7:f7:0a:6b:82:ea:ed:9b:b4:ca:e5:31:34:
                    ef:1c:f1:f2:da:d7:d9:b4:60:61:f3:b9:ff:2c:1f:5c:
                    46:fb:7c:17:af:fd:58:c4:11:23:b1:e1:6b:e0:cb:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:38:e9:51:30:1f:9f:07:b5:79:f4:c6:26:a0:6b:88:
        35:17:59:53:76:97:cb:24:46:bf:51:93:cc:04:fc:e4:
        93:50:46:3b:38:36:be:4a:8d:5c:8e:8b:0c:08:33:a3:
        fc:93:92:9d:70:b8:90:b9:2a:44:e6:59:56:3f:ef:99:
        9c:68:26:22:16:8c:4d:17:84:1b:d9:f5:60:9d:b5:3e:
        cc:b4:94:4d:9c:08:fa:26:01:b2:ff:a0:67:f1:07:a0:
        e7:79:97:c9:63:f0:13:d3:6d:4c:e3:8d:b4:dc:1f:5a:
        ad:ac:73:ee:ad:5e:92:ea:bd:fd:44:eb:57:a2:30:84:
        6d:d2:a6:81:8d:3c:ab:1e:a1:f6:13:68:22:fd:21:7d:
        05:7d:58:c4:48:ea:bb:61:32:b7:f7:24:73:72:cd:ad:
        a3:7c:92:10:96:03:6f:a0:8f:ac:01:e2:fc:9c:a6:c4:
        9e:ba:47:5d:8b:fa:2e:e8:6e:99:0c:2c:fc:b5:29:28:
        12:db:a4:1c:29:a7:74:98:17:83:d6:3c:8d:15:5b:a9:
        6b:a7:f5:95:05:93:5a:07:64:a8:6e:01:c2:53:d5:ec:
        f7:de:3b:f7:a6:6d:2f:a4:2d:47:70:9d:c0:b4:1f:53:
        3e:e4:47:ee:a3:3a:10:52:e2:32:67:2e:47:db:e9:61
    Fingerprint (SHA-256):
        0F:CA:69:C5:C9:91:4D:8D:98:C9:41:EB:6A:2B:A2:05:70:95:7B:AE:FB:06:33:66:77:36:3F:27:1A:CA:3F:D9
    Fingerprint (SHA1):
        5B:C5:70:4E:CF:62:B8:9D:F1:6B:99:AF:EC:00:02:EB:8B:32:E2:0F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:15 2017
            Not After : Thu Nov 23 12:18:15 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:60:3f:91:56:46:e7:71:30:37:35:29:fa:f8:fb:94:
                    eb:ad:25:91:92:36:45:e4:8c:e8:e6:76:d7:8a:13:58:
                    7f:ba:1b:dd:26:26:19:89:86:5f:0d:fd:4d:54:fd:9b:
                    99:9a:57:bb:26:54:49:17:27:9f:e4:61:86:db:b3:d2:
                    57:51:7a:72:db:d5:50:ca:84:75:db:56:c0:2e:52:1f:
                    d9:d9:45:c0:63:b6:00:41:c4:81:a5:ee:8a:f7:3c:74:
                    c6:da:39:d2:26:b7:ad:32:9b:d9:e4:35:17:d2:1e:56:
                    dc:6d:db:22:66:c4:5d:0f:f6:67:98:c5:66:01:0e:c9:
                    78:1b:b8:c4:39:2e:40:e2:59:10:bb:7f:d5:60:5d:e0:
                    5c:e6:1f:6c:15:a4:7b:14:23:01:2c:a6:ea:b9:c2:5a:
                    a6:84:d5:17:aa:de:0c:d2:39:ce:78:d0:5c:aa:fc:11:
                    8e:9a:69:fe:22:a1:68:70:cb:ad:a5:58:d0:07:82:fd:
                    27:34:a0:2a:1b:30:f0:c9:5e:d3:a9:bb:d6:8d:f9:6b:
                    6c:7e:b9:de:7c:20:60:bc:7c:35:dd:d7:9e:c2:11:06:
                    0e:2d:5b:86:88:41:1e:f7:40:94:a1:92:24:81:80:1b:
                    95:d5:48:89:f7:48:04:4a:4c:77:02:b2:1a:1e:5b:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:9c:63:a5:8d:a4:bf:2c:a7:da:0e:c9:22:4b:23:24:
        e1:dc:03:3c:bf:c1:71:65:08:35:d6:fe:71:68:42:4b:
        6a:dc:33:0f:a3:c8:0b:2d:40:18:9f:d7:ea:de:10:04:
        a2:35:bd:9e:71:8b:f3:33:fb:94:6e:ce:93:48:a1:df:
        2f:5b:ad:7a:32:0e:fc:4c:0a:34:4c:ca:60:dd:a7:47:
        73:e5:30:b5:17:2b:ff:8e:3f:8e:4d:bb:43:8e:0f:79:
        64:05:32:69:d3:c1:ab:b7:41:99:43:3e:6f:5b:7a:ee:
        d8:7e:8b:f1:b0:8b:97:6e:ec:05:72:1d:c1:80:0d:1b:
        d5:ef:f3:0d:f2:07:76:9e:e0:6e:41:39:b8:ac:4e:44:
        4a:5e:71:52:bb:98:57:05:04:08:68:59:dc:ab:8d:27:
        aa:31:a8:31:8a:66:aa:a1:17:cc:79:76:4a:08:c0:90:
        73:36:fa:c1:1e:a1:96:3a:01:79:19:87:e5:f9:c4:23:
        c1:7e:3e:4e:74:d8:34:b6:49:93:4e:ba:9c:72:a6:6d:
        8a:89:f0:bd:91:78:fe:a1:1a:8f:03:3b:04:c5:4a:b1:
        e9:e7:4a:6b:3e:bc:0f:c7:52:fa:36:98:d7:7b:df:f2:
        b2:67:8e:7a:4e:eb:21:c9:66:b0:3c:89:d2:7e:3e:e3
    Fingerprint (SHA-256):
        5B:DA:92:47:AF:B2:1D:7C:BC:10:1E:4F:D6:39:69:25:E3:69:34:2A:4B:AC:4D:D1:C6:6B:4C:A6:7E:0E:69:01
    Fingerprint (SHA1):
        9D:E3:88:46:B8:7A:B0:FD:50:42:A4:93:1B:11:C0:B6:38:C7:E4:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:16 2017
            Not After : Thu Nov 23 12:18:16 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:6c:d7:9b:a2:7f:d5:ea:6c:d6:6b:95:41:6a:f9:98:
                    21:a3:8a:4d:48:01:83:9d:2c:d8:32:56:45:fc:9e:d2:
                    fc:e2:38:0e:5e:22:7a:17:d3:07:fd:39:c9:de:a7:9e:
                    94:15:8f:44:8e:e7:d4:5c:04:e2:ca:ab:ed:30:03:39:
                    20:47:2c:1b:af:28:f1:be:0e:cf:4c:e9:bf:1f:e2:00:
                    8e:9b:4e:54:cd:d0:53:21:99:ea:54:53:83:3c:10:45:
                    a7:63:36:ad:dd:f0:f4:05:f5:3e:f7:23:74:2d:05:f7:
                    ae:36:6c:61:7c:40:70:36:bf:18:c2:02:c8:e4:92:3c:
                    9e:01:31:95:4d:86:92:41:4d:c7:45:97:10:27:d6:f7:
                    b8:94:2b:13:8d:64:b2:f0:e0:89:d3:53:c9:16:ea:21:
                    0b:98:12:6a:e3:2c:56:3d:50:41:37:98:e1:c3:88:13:
                    91:ee:08:db:bf:10:5b:63:84:f6:ec:39:f3:40:8d:19:
                    3c:48:46:2f:66:a4:a7:32:37:37:42:ca:b1:48:6d:be:
                    fd:e0:81:98:bf:d3:57:ee:9d:ee:b6:dc:62:9b:50:0d:
                    ce:11:f4:65:3f:62:8a:b1:78:bb:92:ad:f6:3c:bb:a2:
                    f0:39:96:60:60:24:1c:9c:f4:06:f5:c0:a9:10:5c:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:de:f1:25:54:d4:b3:a7:d1:01:43:f3:62:53:d1:c9:
        e0:86:46:86:98:89:78:1a:91:7b:eb:86:ca:05:07:e7:
        19:d9:6a:71:c4:9f:75:e0:9e:5d:89:4c:60:d6:f5:ba:
        65:21:6d:43:b7:6b:e3:c3:3c:c0:9f:3a:18:13:dd:d4:
        d3:e3:ba:52:92:fa:48:5f:8c:c8:bd:8d:ae:cb:3a:4b:
        2c:a8:80:ca:8c:44:cc:c0:91:2b:19:87:ea:28:22:5e:
        63:44:f1:6e:ba:df:43:39:79:15:ef:2e:b9:83:12:db:
        af:a9:9c:21:0f:26:da:81:07:61:45:9c:de:67:24:33:
        47:dc:a9:de:4e:47:fa:5f:ad:60:12:d0:05:e4:3f:39:
        be:fc:c2:b1:01:d3:23:c5:ae:03:78:42:6c:00:9c:30:
        3f:ce:1c:e2:e7:51:bf:9c:15:a9:93:cc:2d:6e:ed:11:
        84:e5:b1:9c:2e:7e:9d:fd:1b:6f:a6:d9:ee:a8:02:d9:
        0d:c0:9b:ae:52:35:47:5a:c4:5c:4c:84:49:73:f6:14:
        a7:af:d3:c6:07:86:8a:00:aa:4a:66:be:05:ba:9c:46:
        0c:05:07:af:0c:62:18:95:51:73:a7:a5:22:86:f9:5d:
        11:1e:50:8c:a2:bb:1b:ad:9b:ce:bb:29:c0:f0:92:bc
    Fingerprint (SHA-256):
        58:FE:2D:ED:FA:66:76:71:61:64:1C:79:49:89:50:C1:18:74:58:CC:21:B1:A5:37:B7:DE:E2:D8:C6:21:5D:88
    Fingerprint (SHA1):
        3E:65:C1:8D:DB:3E:B3:A5:45:A3:00:98:43:64:EB:FC:AD:1E:4B:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:16 2017
            Not After : Thu Nov 23 12:18:16 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:f2:a9:51:e3:c3:a3:d8:cd:7a:ca:50:2c:4b:6d:04:
                    40:60:de:f9:c1:4e:8f:1a:31:6f:ca:08:bb:07:16:ad:
                    3a:cb:af:da:f8:ed:e2:66:20:3d:fb:27:58:53:8f:e6:
                    b9:89:92:02:8c:68:47:18:71:95:4d:58:ab:e2:3b:10:
                    47:06:36:b3:e3:8f:9e:3f:4e:ce:09:be:ef:56:72:47:
                    2d:78:27:cf:07:d4:7c:29:0b:30:95:c6:7a:f0:b9:23:
                    d5:e5:f8:e8:31:de:2a:da:b4:9b:d0:a5:e3:45:24:01:
                    f9:80:e8:9e:8c:7f:42:ef:5c:d7:59:24:62:57:e8:b0:
                    ba:7c:34:12:18:07:cb:b5:cf:b8:e2:a3:a2:35:09:3b:
                    c9:43:79:ac:2c:5a:e3:f4:65:3f:34:df:db:e0:b7:17:
                    14:f3:77:f9:f1:97:bd:3f:50:ae:c1:fc:52:d6:e5:43:
                    fa:68:14:49:46:bf:89:81:f9:e6:8d:84:60:d0:e7:31:
                    d0:2b:d0:f4:c3:ba:f0:bb:cc:f1:92:18:72:04:11:2f:
                    5a:9c:d1:8b:9d:37:5b:59:3c:73:be:90:92:64:39:a0:
                    88:88:25:3c:a4:cf:b4:3f:40:47:f5:c0:fa:42:15:d7:
                    00:20:03:bc:3c:89:b3:bd:d6:31:de:e3:0a:2d:45:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ea:25:42:32:f0:1b:25:fe:fc:40:78:7b:b3:49:cf:93:
        a6:83:45:7c:74:9a:55:9f:5d:6d:39:e6:40:e7:43:20:
        0a:e8:75:54:35:f6:a0:9b:5c:b6:15:c5:dd:0a:fe:8d:
        0c:a2:e3:8b:c5:39:30:97:13:a0:24:eb:06:be:01:a9:
        f2:2f:02:27:11:2f:eb:02:a3:a4:bf:6a:4e:15:7b:6b:
        d4:cd:dc:0e:f3:d2:15:6e:d8:f9:a9:1f:b7:76:a5:d7:
        79:1c:c2:0d:7f:a2:32:1b:eb:73:ae:42:ca:ff:1b:77:
        43:32:b0:d2:6c:4a:0c:01:c9:cf:a0:a5:49:46:a7:ba:
        e4:27:25:32:e0:80:8b:af:3c:d9:ec:9c:64:d2:4d:b0:
        8d:6f:05:ce:0b:cf:fc:c2:69:d0:27:d9:8d:bb:ff:a6:
        a0:7e:4b:fb:f0:cb:04:9d:28:70:48:22:ca:b1:80:10:
        1f:41:0e:09:bb:12:42:e3:63:a7:6d:54:1a:ea:bd:e3:
        ea:18:c3:bf:42:6b:5c:2b:72:d5:bb:cf:56:4a:06:1d:
        5d:a7:1e:58:fd:d1:4b:a9:a3:e5:04:db:40:eb:bd:67:
        71:d0:8c:be:ed:31:fe:df:fe:6d:98:5e:ef:bc:14:81:
        03:f0:03:ff:3d:c2:05:3b:b2:42:5b:1d:6c:d7:9c:2c
    Fingerprint (SHA-256):
        A8:FB:15:27:79:D0:F3:FA:34:0F:E9:2E:D2:A2:72:B9:03:CE:F0:B6:96:01:F1:B6:D9:97:8D:B2:97:91:C7:7B
    Fingerprint (SHA1):
        29:52:0D:6E:17:ED:DC:51:4B:67:27:D8:48:BF:48:EF:C3:3B:62:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:16 2017
            Not After : Thu Nov 23 12:18:16 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:01:55:cc:a9:60:31:ae:8c:98:64:86:68:66:49:b3:
                    35:1b:d7:39:e3:0e:e5:df:e2:5b:5e:b7:fe:f3:0c:61:
                    93:26:41:4e:b2:59:4c:07:82:f6:11:8b:b5:b6:24:ca:
                    61:29:3f:6c:ca:61:2a:fa:e7:98:2c:9a:df:4d:e6:5b:
                    35:2b:8f:96:9c:fa:e8:98:d4:9b:dd:bf:3c:80:c2:62:
                    ae:90:97:2c:a2:c3:71:3a:c7:ef:dc:f8:fa:b3:1b:1c:
                    c1:71:99:ee:b4:93:7c:09:74:4d:61:a5:b2:47:b1:a8:
                    b3:f2:57:7e:b6:15:e7:2f:e1:da:0e:c4:27:c7:84:2c:
                    8a:19:1b:b2:21:59:c4:4d:a5:ae:b7:50:43:11:db:91:
                    88:f8:9a:fa:4f:ee:a2:e4:8d:97:42:29:f4:51:d3:98:
                    01:d0:3b:74:ea:17:3c:d1:8d:06:ea:a8:f6:13:74:de:
                    78:0d:11:01:00:ba:37:4d:cb:52:e5:cb:8d:f8:81:d5:
                    83:76:79:0a:e1:4b:fd:41:98:a2:44:f3:65:e3:64:be:
                    78:2f:39:58:be:57:d9:ea:9f:01:f7:82:0e:c3:b7:0f:
                    90:79:e8:8a:44:30:88:2e:94:90:1d:a5:d8:d3:55:e8:
                    2c:5c:bc:40:e3:1f:bc:6b:b0:50:85:14:e4:fd:58:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:a3:14:80:30:db:b9:cd:50:2b:c1:70:80:43:fe:55:
        60:3f:03:6e:ea:b1:31:ce:d5:2f:2f:09:dc:28:42:91:
        10:d6:42:c3:46:3b:62:b3:29:30:1b:81:ef:f5:b3:fa:
        89:12:6a:3f:30:95:78:33:0e:70:0b:38:45:96:b3:e1:
        d2:81:8b:2d:33:f5:a2:8c:7f:6d:d3:6b:09:0e:f2:bc:
        dd:80:2e:1b:ea:44:cc:34:56:53:74:0c:f3:74:27:e1:
        77:0a:36:01:ea:e2:24:74:91:7d:93:39:1f:b5:c4:36:
        9d:80:30:be:a3:57:f9:e9:99:96:2c:fe:b0:7f:7c:a2:
        6e:1b:fc:b0:53:f8:76:25:d7:07:6b:0d:62:6b:b9:16:
        b0:f1:d1:4a:68:92:a6:85:8a:37:2d:68:7a:d9:3b:e2:
        9d:42:fe:29:73:c2:51:fa:14:7d:35:86:40:b9:98:5c:
        fb:93:54:d6:e4:51:8a:7d:5a:ee:02:63:13:f6:d6:42:
        ba:e3:d4:c2:ec:f3:f0:1e:af:61:eb:66:0a:6f:e1:f7:
        58:6d:28:a0:9d:45:d8:c8:69:0c:28:44:80:55:39:f4:
        65:8d:23:b8:78:2e:6b:1b:1b:0b:b4:8d:c5:d2:cd:5e:
        31:40:89:c4:53:d5:0b:81:75:e8:f5:1a:e3:0b:49:ab
    Fingerprint (SHA-256):
        63:18:9B:0D:96:6D:2E:5D:DF:71:BC:68:09:AD:DF:FD:48:61:03:99:F4:F7:94:20:C3:B1:EF:D9:D9:A3:2B:D4
    Fingerprint (SHA1):
        9B:32:87:0B:DF:FB:9F:E8:EC:9B:A4:75:DA:36:E8:2F:49:DD:76:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:16 2017
            Not After : Thu Nov 23 12:18:16 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:5a:66:9b:e2:db:56:0a:01:d0:c5:6f:f4:b6:c6:8d:
                    72:03:ef:19:ba:88:18:a7:0a:41:82:fd:2d:a4:92:63:
                    03:7f:1c:5d:d0:a0:ef:ff:97:18:0a:41:23:d7:6c:ba:
                    e8:fe:2d:6c:e0:f8:2c:fe:0e:fa:57:07:5e:a2:a5:78:
                    87:e2:d3:b5:fe:ec:ed:be:9a:62:dc:dd:ad:a5:ae:a2:
                    e0:75:21:6c:18:84:37:54:b7:4e:85:ae:b7:d1:34:fb:
                    9d:be:f0:f7:92:57:86:5a:4e:7e:1b:fa:58:6d:f4:5d:
                    39:8c:88:91:63:cb:54:55:31:72:18:2b:aa:4b:ff:c2:
                    f5:d6:3b:37:90:54:ce:4d:d3:4f:08:f6:02:a9:e6:13:
                    b9:57:34:8f:ce:f4:de:c0:a3:3f:13:6c:9e:57:0b:97:
                    3d:5f:bc:ce:0b:b8:67:f6:01:89:00:d2:24:ff:81:8e:
                    58:d3:9d:05:bb:79:d6:24:ef:b2:b0:5f:98:1d:7c:eb:
                    27:09:1c:47:fe:5c:07:ac:c7:14:fd:8f:c0:b5:7f:ee:
                    f7:f1:ff:01:93:06:79:bd:7c:2b:86:db:c4:a6:e1:dd:
                    d7:62:5e:85:32:81:8b:29:9a:e1:b8:7e:29:f0:c0:4b:
                    dc:86:0d:f1:17:b8:56:31:4c:d7:09:39:16:f4:1a:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:8d:a4:96:ea:88:fb:d6:79:f5:ce:29:96:6a:9d:c8:
        5b:b0:3b:12:23:e1:8e:18:4f:b7:e9:3b:46:df:47:71:
        82:1a:a0:0e:8c:a0:bb:b0:a0:97:fb:8f:75:17:b0:6b:
        2c:c1:a6:85:b1:af:5b:04:5a:e0:7c:17:ad:2d:5e:d8:
        98:55:15:ec:85:5d:f4:15:bd:90:ec:41:66:61:6e:47:
        75:54:45:a0:66:b7:9d:8d:75:1e:03:48:da:2b:b6:4d:
        88:e6:ad:eb:4d:28:18:68:97:f8:23:d8:39:b7:dd:30:
        96:78:d3:d9:60:44:4b:31:39:f5:45:2f:c8:2b:ee:67:
        af:79:b5:99:f7:83:fc:ba:43:f9:d5:d8:47:0c:39:50:
        30:6e:24:3a:82:5b:55:54:ab:5d:6f:78:94:b1:e5:57:
        ab:49:4a:4c:b2:3c:69:3b:c4:2d:d7:92:34:1e:75:6e:
        f1:85:f9:84:a7:9a:76:0e:4a:33:e7:02:8f:7a:32:8a:
        88:ae:48:47:00:eb:dd:1a:68:6e:a6:54:bb:74:a5:44:
        82:5c:a0:7d:9a:18:7b:c7:bc:4c:c1:a8:17:75:4f:4a:
        64:2c:46:f3:4a:b3:f5:70:cf:79:93:8e:05:3f:ee:3c:
        3c:43:48:2b:88:5d:43:01:73:75:79:1f:de:92:fd:c6
    Fingerprint (SHA-256):
        9B:5A:2D:E6:9E:DE:A3:9C:6E:DD:1C:2E:3F:92:19:22:2B:F2:BD:29:C0:8F:AB:2D:28:B4:86:CD:9E:60:52:7C
    Fingerprint (SHA1):
        D1:D5:1F:D5:D1:25:85:A1:26:C3:15:5E:48:2E:9B:75:61:D2:C3:19
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:16 2017
            Not After : Thu Nov 23 12:18:16 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:99:20:4d:fb:e1:21:2e:47:92:b9:27:98:d1:a1:f4:
                    39:8f:28:65:84:38:74:02:65:1a:19:a4:72:2d:87:22:
                    69:9a:5c:85:36:93:d9:f3:5f:1d:8d:10:40:4c:00:fc:
                    68:51:f7:09:0a:a3:eb:83:87:b1:7d:07:07:77:53:16:
                    c3:77:81:6d:e2:76:88:f0:e7:cf:0c:ee:b1:07:ff:c9:
                    96:cf:95:94:2b:47:1c:6b:64:76:aa:19:f4:2b:24:5a:
                    95:aa:f2:2b:bf:fc:1d:11:8d:1b:51:d5:c6:fd:fa:3c:
                    14:a4:63:a0:49:a3:8f:5f:cd:48:28:34:15:7c:a6:11:
                    aa:a6:c5:8a:cf:1a:fa:ac:26:12:64:0f:9c:01:f4:23:
                    5c:3e:73:7c:86:2e:6e:ef:e3:09:c0:1c:ce:45:52:28:
                    a1:d8:59:d2:d7:7e:35:c7:5a:6f:c8:3c:f7:bc:45:41:
                    9a:21:9a:8a:9b:86:38:e8:ed:6f:76:d6:33:f7:83:ac:
                    47:c5:06:54:62:af:aa:2b:d8:28:3b:c0:2d:b4:fd:fd:
                    c2:29:16:85:21:e7:46:10:60:7c:9a:1e:a6:d1:02:63:
                    3a:cc:fe:9f:40:db:fc:87:2e:4d:35:7a:00:33:ab:f1:
                    c2:b7:ba:28:ea:29:8a:51:2d:bc:bd:8d:bb:90:83:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:93:4c:8f:7c:ad:87:0d:20:4d:b1:a0:24:63:c6:81:
        bb:67:9b:f7:b7:f9:80:9f:0f:a2:20:78:67:f0:5e:00:
        72:e0:49:b5:0b:96:45:32:34:c2:6d:a2:48:0d:54:bc:
        4e:94:8c:33:39:e0:33:06:36:30:9c:70:64:4c:52:eb:
        30:6a:63:f4:9b:c0:ee:78:ec:fe:40:fc:fd:81:13:8a:
        a2:a5:90:5e:d4:45:a5:df:b2:54:e0:f8:88:3e:95:63:
        a8:b1:d6:6b:2d:3f:6d:19:15:73:e7:53:f4:34:98:78:
        47:d0:09:da:08:e2:da:a0:01:12:da:64:07:64:75:04:
        2c:fb:3b:c7:bf:3a:22:a7:8f:4d:45:cd:cd:24:ed:62:
        bb:52:c1:95:b4:fd:2a:06:c9:84:27:ce:a8:7f:64:c7:
        07:c7:ff:e2:33:1f:e3:a5:b2:42:e5:b4:1a:a6:c8:d9:
        7c:bd:10:6b:83:af:8e:d5:18:09:70:1b:bd:42:fd:1e:
        9e:d1:0e:ce:60:da:d5:09:87:98:61:4b:6b:6a:2b:29:
        17:df:e5:b0:65:4b:f7:77:8a:ed:3d:16:f5:57:43:e7:
        3c:5e:2c:10:49:78:71:d3:b7:b6:16:46:86:29:03:75:
        33:97:91:59:8f:e3:8d:21:e1:13:e1:07:62:8a:b8:17
    Fingerprint (SHA-256):
        83:EF:BC:32:B9:86:82:9A:6B:F1:7E:B5:AA:D0:06:40:69:28:A3:7F:D7:9E:45:57:F5:29:5F:4B:DE:DB:AB:DD
    Fingerprint (SHA1):
        07:53:AB:EB:33:52:EE:80:D1:AF:42:7D:D5:0B:C6:E4:EC:BA:C6:93
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:17 2017
            Not After : Thu Nov 23 12:18:17 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:bf:01:51:bc:81:bd:9f:ee:78:88:64:67:cf:ba:29:
                    e8:24:45:95:3a:cf:d3:72:49:31:3a:59:f8:83:a8:9f:
                    20:f1:33:ff:7f:15:29:38:8e:fb:88:d9:37:8f:e4:be:
                    6d:92:f8:e7:b2:0d:bb:8d:46:f9:38:83:13:6a:9e:88:
                    35:a7:6d:a9:6c:62:84:83:67:e2:62:90:e7:0d:1f:5f:
                    42:0b:f5:d1:5a:0a:47:fd:fa:d9:8b:3b:0b:3d:8e:cc:
                    c7:22:20:d5:7f:9f:95:d0:0c:53:d6:5e:e9:b1:ab:ac:
                    a7:50:c5:1e:2c:bf:7d:71:75:94:31:ba:6e:7a:eb:2d:
                    b8:cf:8f:f1:1a:c9:e9:28:d1:71:11:c6:d7:07:d7:1e:
                    e8:b7:4d:5e:58:db:82:5d:1b:b4:76:b4:fe:7c:95:a0:
                    db:58:69:89:e2:98:37:78:a5:f8:05:08:9a:57:50:96:
                    33:f2:00:dc:83:a4:c0:b9:08:00:46:a8:f2:45:0e:3d:
                    73:ab:bf:03:85:4b:15:87:52:d1:df:ba:ac:6f:c9:30:
                    89:bf:77:8d:25:0d:b2:37:bf:98:81:c6:f0:3a:a6:f8:
                    13:89:d6:64:2f:11:20:97:3e:42:96:b8:cb:25:97:55:
                    b3:5c:ef:22:ba:76:ca:c6:75:6b:54:77:81:7e:ab:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:a7:b6:7a:b5:82:e6:b8:61:16:32:a8:a6:ab:9b:76:
        9b:4f:92:c7:72:39:92:be:c3:ef:df:c0:10:65:1f:82:
        9e:f4:90:c7:12:1e:0e:20:36:76:dd:bc:52:d7:d7:67:
        c8:73:8d:c0:4f:b1:22:82:f9:25:54:9c:a0:37:e4:d2:
        21:5a:ee:62:69:43:4c:bb:98:25:a2:ec:25:7c:bd:40:
        7d:40:1d:ec:64:fa:ee:84:0a:d2:fb:0f:81:3c:d5:5a:
        65:4d:ff:a2:92:fe:df:84:9b:67:5c:94:11:e2:ae:e6:
        21:63:3b:18:6a:4d:81:32:2c:5e:e5:b5:7b:1f:10:d5:
        18:47:fb:9f:e2:d0:bf:ad:b7:a3:a0:30:d6:d6:f7:25:
        95:45:6e:e1:34:5f:7a:c3:8c:c1:74:dd:9c:c5:58:65:
        f8:f0:52:c2:60:ae:40:5c:1d:35:18:b4:dd:77:13:27:
        ac:ae:3d:b0:19:da:df:47:2d:9a:bf:12:2f:35:68:37:
        ac:16:23:18:2c:9e:ce:69:de:47:1a:6d:2e:8e:f3:ec:
        3e:a8:40:0d:d4:2c:3d:c1:3d:06:95:95:19:36:91:15:
        ed:1f:82:9f:9b:12:85:45:14:43:54:02:f1:2f:70:cd:
        c6:cd:d0:f9:0c:4f:c5:b4:bd:1d:a6:e6:c6:8c:0b:fe
    Fingerprint (SHA-256):
        40:74:20:41:BB:6C:3E:6D:76:60:C5:19:2C:3A:89:9A:08:0E:81:47:83:E2:F6:E9:02:26:DA:A9:36:BB:EC:B4
    Fingerprint (SHA1):
        76:CE:F9:D3:11:C2:C2:33:B7:81:9C:AE:E3:61:FD:2F:E9:9F:68:30
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed Aug 23 12:18:17 2017
            Not After : Thu Nov 23 12:18:17 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:c6:33:84:f8:29:64:9d:23:1e:d5:fd:e8:1a:87:71:
                    e2:dc:0b:fd:74:8e:25:f1:32:be:71:95:b1:c2:d7:af:
                    15:c3:09:20:05:13:ca:a9:2b:e1:05:5c:ec:1d:6b:b1:
                    96:88:57:ee:38:6c:30:e9:4c:17:d4:4e:63:eb:25:7d:
                    d3:5c:cd:9c:79:cd:5a:d8:3f:ba:55:11:7e:e9:84:e9:
                    67:2e:c1:29:17:a8:96:5e:54:0d:56:13:b6:e7:43:1e:
                    f8:ae:6e:14:dc:50:5e:76:6c:4f:c2:7b:16:ec:33:31:
                    18:f9:99:af:ae:61:ed:54:aa:e4:5d:a0:36:f2:e9:96:
                    d4:c7:dd:d4:80:7c:8c:70:95:d8:c2:b7:59:71:aa:a4:
                    2b:ef:1a:72:92:13:4f:ba:5c:d9:0a:62:e4:d3:76:03:
                    02:cf:e9:21:db:9f:d6:93:9e:ba:5c:e2:a6:a7:16:c0:
                    ad:77:4d:f2:e7:f6:af:57:2d:6e:75:4e:80:01:4f:80:
                    15:de:8d:c5:3d:6a:dc:87:99:53:63:6a:e1:f0:f5:d7:
                    11:77:0e:4f:a9:66:1e:77:cd:63:85:e7:16:83:af:65:
                    88:00:04:7d:4a:60:3c:87:1e:31:31:91:6b:c3:9a:28:
                    ce:1d:dd:ca:0b:70:c8:91:44:9c:eb:ca:13:97:c4:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:a7:58:06:60:ed:25:16:59:3f:e3:de:43:4c:cf:f7:
        da:1c:16:c1:4e:1c:4d:5b:16:d1:ad:cb:06:cd:aa:aa:
        7f:cd:04:58:21:1e:0f:a5:a7:64:29:e0:6b:f2:e8:f6:
        66:61:d3:a0:90:71:12:78:e5:4b:5d:26:14:63:0a:93:
        40:9d:33:7d:09:6f:c9:7e:8c:fa:b6:0e:22:19:bb:a0:
        0e:28:42:62:7a:7c:d0:bd:ed:cf:46:dc:22:f9:d0:06:
        09:99:66:57:a0:48:1d:38:ad:bd:2a:b6:24:28:11:df:
        ef:9c:46:36:e2:45:bd:0f:67:ae:9e:ac:08:a6:68:52:
        f0:5b:8c:d9:b4:77:85:16:a5:cc:c7:b8:b3:e6:bc:38:
        d4:10:95:f5:d0:45:38:c4:5d:c7:a6:c6:8f:a5:e3:fc:
        f0:b8:88:ad:31:04:06:0e:48:a6:47:f3:9d:ba:13:13:
        35:40:3b:b5:f6:fc:05:48:10:de:c3:64:17:24:36:fd:
        23:a7:42:c2:ff:28:4f:d1:8f:9f:46:19:54:24:92:39:
        3a:c0:78:a3:e9:7c:92:34:7a:5d:2e:5e:a9:b0:d9:cd:
        1f:11:32:ba:1d:10:8a:25:c2:11:ea:5b:b2:c4:70:e3:
        ce:1a:f0:29:06:09:8d:cd:1d:a6:37:07:8b:8e:b0:c7
    Fingerprint (SHA-256):
        4A:08:97:40:62:40:CF:15:48:65:4C:A1:77:8B:40:42:27:50:3A:DB:F7:EA:10:CF:4C:9B:97:AB:13:18:B5:9D
    Fingerprint (SHA1):
        4A:05:EC:EB:86:01:0F:E7:BD:0D:3E:44:EB:90:1F:61:36:C4:E0:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:56:9f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed Aug 23 12:18:18 2017
            Not After : Thu Nov 23 12:18:18 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:d2:a1:7e:e4:aa:d8:b5:6e:2a:24:0a:e8:c3:bd:5b:
                    0c:0b:3b:31:3e:6b:af:7c:4a:29:2b:3b:a6:b9:15:bd:
                    3f:97:2c:90:62:cf:80:c9:d4:e4:ec:9e:6a:14:0e:8a:
                    16:1a:75:59:8f:e7:5b:f7:74:2c:88:f7:89:fd:5c:7c:
                    62:7c:e5:2b:c6:15:e5:d5:90:09:36:a8:67:8c:e9:14:
                    c1:bb:ee:78:c6:4f:cc:75:76:b6:df:df:c6:41:2b:36:
                    b3:81:54:7b:67:be:53:28:63:8e:3c:09:05:8c:7f:53:
                    7c:d8:81:9e:61:f9:8f:84:b9:1e:ae:42:f3:bc:b1:0f:
                    b9:9e:90:a9:a6:c3:0d:d5:77:db:4d:52:ad:f0:e5:bd:
                    d9:9c:c7:d6:00:72:22:07:3b:53:be:20:57:46:e3:e2:
                    49:80:92:ad:70:38:6e:98:9a:1e:b6:0a:36:3a:f0:27:
                    98:3f:54:24:37:ee:ae:12:58:98:6f:d4:52:90:e8:76:
                    ea:8b:18:fc:ef:59:3d:c8:49:f5:00:87:65:4b:1a:b8:
                    df:93:27:ec:23:84:13:e1:0f:31:bd:a6:cd:6a:e6:16:
                    e1:b1:b3:fe:cc:23:cc:de:fe:a0:f4:66:fa:4d:0f:64:
                    30:45:d1:cb:f4:8e:f5:d4:bd:d0:eb:94:1a:fc:bb:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:d1:a0:d3:43:eb:f1:39:d3:d2:63:61:ea:13:b6:45:
        4f:42:c2:94:47:bf:4d:21:e4:7c:5a:d4:c2:a6:b6:3c:
        1c:79:81:d6:a4:b6:7c:50:f7:0e:40:90:ce:52:1d:12:
        73:e2:53:7b:29:8d:87:7e:e7:1f:12:ac:6f:22:29:d8:
        66:85:d0:b6:f4:5f:bb:b2:70:a3:0a:9c:a7:ad:c8:8c:
        db:77:28:20:6b:b1:0a:88:1c:62:39:20:d1:ea:33:e5:
        69:e5:50:c4:18:43:9e:43:b2:6c:f2:ba:98:9e:e6:c2:
        56:62:b5:de:b4:46:5b:5e:1d:43:00:6a:35:a9:b8:db:
        46:a1:e2:e3:37:12:4d:ec:be:ca:e7:df:34:44:50:11:
        77:33:16:1a:60:d4:14:5e:72:83:0b:f4:a0:74:53:84:
        c7:de:40:c4:b5:df:a9:e4:0d:52:e8:a7:0b:04:b5:72:
        2f:89:47:d8:66:dd:fa:ee:2b:bc:fc:56:b0:5c:9c:80:
        6b:8b:af:3a:79:2c:41:6f:a4:da:61:5a:19:8d:52:3c:
        a6:b3:f3:24:65:5b:b0:ca:2a:e2:a8:18:b4:44:a1:2b:
        6a:9c:ca:37:07:ab:e0:92:92:e7:7f:4e:3a:4b:c2:44:
        21:c3:cc:dd:8e:87:86:69:63:73:24:de:a1:5d:3f:6e
    Fingerprint (SHA-256):
        45:91:0F:5F:A2:E1:4B:C6:DA:C7:D6:2F:1C:71:BB:E3:EC:5A:1A:55:FE:B7:6B:4E:D9:02:48:0D:BA:0F:2D:45
    Fingerprint (SHA1):
        6F:35:1A:FA:95:36:5B:97:F9:7F:FF:1A:D0:5D:E9:4C:82:B3:F1:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed Aug 23 12:18:35 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Wed Aug 23 12:18:35 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x 2 mockbuild mockbuild   4096 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
-r--r----- 1 mockbuild mockbuild   1226 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r----- 1 mockbuild mockbuild   1424 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r----- 1 mockbuild mockbuild    581 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r----- 1 mockbuild mockbuild    705 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r----- 1 mockbuild mockbuild    870 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r-------- 1 mockbuild mockbuild 229376 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
-r-------- 1 mockbuild mockbuild 172032 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
-r--r----- 1 mockbuild mockbuild    393 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/req
-r-------- 1 mockbuild mockbuild  16384 Aug 23 12:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:89:01:76:ec:c4:7d:1b:64:94:e7:06:42:4b:49:25:
                    ae:1a:36:dd:88:b8:7a:a0:d3:bc:62:1e:59:2c:27:46:
                    22:44:05:f4:49:c9:c4:05:f6:7f:68:60:79:1e:ed:6d:
                    0d:91:69:6d:0f:a9:4d:2f:df:56:f5:7c:bd:df:c1:86:
                    0e:10:9b:26:71:c3:9f:aa:ad:45:db:a8:7d:66:fb:d7:
                    99:4c:77:df:23:b6:e8:86:36:82:d7:ca:73:d0:9e:6d:
                    7d:25:ef:6b:9c:85:39:74:16:10:c7:c8:57:8e:cb:66:
                    27:af:27:c4:b2:9a:f5:ca:fa:a7:6e:a1:8a:2b:25:e6:
                    d7:9c:d9:a8:6b:b4:cb:3d:83:ec:36:10:19:5d:5d:a7:
                    4b:61:cf:0e:66:ac:f8:83:c7:2a:0c:00:85:c2:5e:ae:
                    d8:44:ca:09:08:55:98:df:54:b3:7c:48:28:dc:fb:c9:
                    21:6a:fc:f6:cb:02:e8:d0:90:cb:16:d4:f6:3a:8a:6a:
                    60:26:03:bc:b9:b9:c3:e2:0c:c5:14:96:8d:34:85:44:
                    28:45:e1:3e:d9:6d:0c:15:42:cb:7f:c3:19:3e:ad:24:
                    71:7d:2c:86:32:a6:cf:20:53:53:a7:59:ea:cb:8b:ad:
                    3b:6c:e2:fd:da:87:bf:f6:11:be:51:f0:02:ea:77:17
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:bb:3b:d4:4b:73:54:37:21:d4:a9:2b:8e:80:a5:bc:
        06:b3:91:69:22:c9:26:ba:59:02:a6:85:1d:43:e3:f2:
        96:a5:e9:86:cc:b3:15:1b:41:9f:9c:2e:e3:ee:8d:e9:
        36:ed:72:44:a7:b7:f5:65:49:4f:9b:95:fb:6d:56:6d:
        ef:2a:96:48:dc:4a:0b:5b:fe:3b:0d:a3:68:46:2a:5d:
        e6:3e:d9:26:25:f6:48:b8:b0:55:d9:4a:6b:ca:5d:dd:
        d1:d7:3b:1a:3a:5d:12:2d:12:83:a7:ae:ed:74:cc:3d:
        fe:92:57:9b:f9:e1:79:dc:24:17:06:3c:8a:5d:33:f2:
        62:c9:26:0a:36:ec:c2:27:f3:e8:40:eb:4e:ca:eb:06:
        c5:70:4e:67:01:e0:7b:2c:f2:b8:d1:c2:f3:a7:2b:18:
        1a:41:52:6c:cc:42:36:dd:45:c1:11:1a:c3:8a:a8:8a:
        e2:2d:02:8e:dd:cf:20:c0:32:49:4b:b0:1c:5c:8b:bf:
        14:fb:ec:91:a3:02:82:98:eb:d3:2a:55:d7:10:60:f4:
        fc:09:d7:c7:0a:78:1d:e5:ad:b4:35:fb:db:69:04:94:
        cb:9c:64:a2:e7:1e:d4:84:4c:4b:d9:c6:af:59:64:cd:
        da:3f:c0:9c:d6:5f:58:c0:31:80:96:8e:1c:82:07:41
    Fingerprint (SHA-256):
        DE:5F:CA:1D:39:02:93:2E:F0:A0:42:4B:E6:E3:C9:AD:81:2A:CE:AC:6F:1A:09:35:6F:7D:F5:DD:42:B0:C4:CE
    Fingerprint (SHA1):
        71:00:52:EE:91:D4:5B:C2:FE:36:FF:0D:51:3A:CB:B4:7E:35:F3:04
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Wed Aug 23 12:18:35 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed Aug 23 12:18:35 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3b:51:8c:d4:89:0e:ca:93:4a:f1:82:ac:1b:2a:7f:74
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c2:b9:73:85:aa:f9:3e:cd:6a:7b:f1:58:ab:21:07:5d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:09 2017
            Not After : Tue Aug 23 12:18:09 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:d2:9c:dc:fe:9a:f4:0a:ce:6d:fd:ca:12:5b:e1:
                    d3:04:b6:12:99:54:e8:43:bb:e0:1a:45:39:3d:4f:fc:
                    48:18:90:66:90:f1:27:b6:ab:76:60:44:a3:23:7a:4d:
                    29:87:65:81:d5:e2:0a:49:12:70:e1:11:db:cc:0c:8d:
                    6d:db:b8:00:92:30:50:3d:6b:4a:61:0e:fe:db:99:96:
                    59:f8:62:78:80:ab:60:c9:47:99:8e:dc:c2:25:b7:48:
                    1b:b5:ff:1d:1b:2b:65:8c:73:f9:d7:26:3d:57:50:b9:
                    d2:d4:a0:ea:9f:a3:81:a1:86:e0:36:49:0c:69:13:22:
                    4c:00:96:3b:30
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:41:27:37:4d:6b:9b:54:9b:fe:45:ce:da:
        4c:13:8d:39:6e:27:51:d3:69:42:6e:31:03:f2:bc:9c:
        08:e9:6d:f0:89:a3:da:93:40:fb:31:47:d8:72:d7:be:
        c3:47:06:f4:a8:12:54:b0:f6:05:9d:98:44:1c:e5:0f:
        8a:3b:0f:f8:b0:37:02:42:00:8f:97:d0:01:c9:dc:74:
        04:5f:d2:1f:9f:80:03:ad:aa:69:74:f5:08:18:f6:c7:
        60:e4:3e:47:3f:cf:f4:28:56:3e:a7:81:fb:72:df:dc:
        71:99:30:16:e7:d4:63:e4:7c:cf:25:d4:51:c3:cf:6e:
        d6:13:bb:9a:52:d8:f8:02:5d:d3
    Fingerprint (SHA-256):
        58:A1:2F:69:CE:57:83:44:CD:E0:A4:77:C0:14:40:10:66:F1:E9:FA:D6:DF:22:78:05:BB:22:F5:96:0D:13:BD
    Fingerprint (SHA1):
        96:D2:6D:90:88:5C:4D:72:B6:AD:0F:45:8A:DF:54:81:19:88:FF:03
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:b9:e1:51:4a:b9:d1:6c:73:d0:5e:08:13:76:d0:a3:
                    20:00:5f:d8:6f:1c:a0:7a:d2:6f:24:e3:c7:09:19:3e:
                    ef:b6:c8:f3:77:65:4b:99:61:ef:bb:fa:81:42:37:50:
                    72:d9:43:f7:6c:6b:aa:ba:40:1b:0c:de:f0:e9:ca:90:
                    57:70:30:97:df:06:24:0d:6c:f3:bd:79:1a:f3:85:e1:
                    fb:30:80:43:9d:8e:ab:0d:7e:52:c2:23:80:d2:b3:07:
                    84
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:34:d3:4e:6f:b1:df:bf:4f:cf:dc:
        79:ff:39:33:b0:85:45:b6:16:11:e0:df:a2:95:99:8c:
        78:17:b1:c1:d0:95:41:4e:02:ed:31:05:38:80:13:ff:
        ae:6e:cd:2d:be:be:96:72:16:52:b6:68:cf:7e:c6:0c:
        14:cf:20:3c:41:6f:2f:02:42:01:0a:3e:4f:11:99:a6:
        cf:b5:fa:c9:da:0b:3f:19:48:c3:f2:fc:37:f2:37:18:
        19:db:9b:70:69:9e:fe:04:99:d8:74:b8:c9:a2:b1:c9:
        0a:b7:86:b3:8f:65:7a:bd:bc:a6:45:ae:33:a5:f5:f6:
        80:86:f0:66:81:36:3f:b7:fc:ff:77
    Fingerprint (SHA-256):
        EC:E9:0D:17:FA:4A:89:20:6A:00:C4:DC:46:7F:11:6D:7E:0A:96:C7:2A:D1:68:E3:DC:E7:10:11:07:2C:BF:FA
    Fingerprint (SHA1):
        5A:92:C1:BB:7A:C4:DC:96:C3:12:EB:3F:DB:31:9D:F2:BF:F3:6B:7E
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                bb:7b:e2:3e:80:6c:de:f0:5f:d1:6a:5c:9d:7d:26:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                50:1b:73:df:18:f2:16:98:1e:a4:e3:22:65:f1:c8:a4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                dc:3a:17:40:17:71:88:a2:d7:ba:26:d3:21:d5:f9:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                19:a9:5d:25:f5:60:45:de:b1:38:6c:4b:78:4f:3e:93
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                9e:08:b4:90:bb:99:18:e6:bc:5a:29:d6:da:5e:77:77
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                5a:ac:97:0e:89:23:77:43:ed:3e:d0:a6:0f:26:ed:e4
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2d:5d:22:c2:59:ef:69:b2:d1:9a:ef:24:14:43:57:eb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5b:d0:f3:3e:c8:fe:f8:c2:97:2e:ec:6a:14:ea:21:5e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                aa:84:fd:8c:cb:ea:93:8a:90:c0:fe:dd:4b:1b:11:27
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a3:85:be:3b:47:3c:df:36:11:3d:11:c1:eb:0d:11:f1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3b:9e:db:b7:0a:50:b6:1d:4b:ab:49:19:01:74:a3:9c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1f:49:9e:1c:10:d9:5f:96:99:ea:a2:d3:e0:33:dc:0f
            Iteration Count: 2000 (0x7d0)
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        90:f0:ff:a4:c0:f0:76:d8:2d:91:54:95:3c:35:58:23
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:96:a0:17:16:3b:0a:29:a5:7e:bf:47:20:a1:21:
                    83:d1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e9:9a:e6:71:8e:43:79:77:94:0d:b2:40:ae:ac:36:29
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:45:88:8c:05:dc:21:49:48:ba:34:3a:80:4e:39:
                    96:a2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        11:d2:6e:69:c1:86:af:a0:c9:aa:9f:72:af:91:6d:59
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:1f:ae:08:a6:8b:4a:c3:cf:a1:cc:e2:8e:e9:d4:
                    88:93
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        14:76:2e:80:4c:89:22:d8:65:b3:e0:33:09:6f:f1:b8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:1d:4a:3d:ba:80:48:fa:de:ff:0b:79:7a:d0:c2:
                    3c:91
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        16:0f:16:1a:f1:a0:93:34:82:46:ae:a7:f8:ae:ee:9a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:57:43:58:11:3c:7d:60:74:4e:50:2d:0b:39:cc:
                    c5:de
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c6:b2:59:76:69:b0:2a:dd:71:64:94:d7:bf:7c:2d:03
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:e6:8f:66:1c:fd:ef:b3:ac:8c:c4:d2:73:0b:ec:
                    cc:14
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5c:b1:22:f2:a9:57:34:c2:aa:5b:ad:1d:64:be:6e:cb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:2c:77:5e:67:26:4a:71:69:09:e4:60:d5:20:58:
                    2a:df
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b3:e3:8e:d8:56:67:fb:23:2c:73:6e:3e:27:82:2e:bd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:5a:23:dc:bb:6e:9d:3b:7d:f7:3b:d8:a0:50:34:
                    22:f8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        49:59:14:05:40:10:52:3e:1d:49:bf:0a:f8:0e:e0:89
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:e4:15:d3:41:b1:05:24:1a:2e:04:41:9c:ab:16:
                    f8:97
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        03:f2:12:f2:bc:e7:6a:d3:2a:98:64:7e:ea:61:d2:ef
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:f3:a2:ea:3a:fe:95:70:20:e8:f1:1c:29:44:ff:
                    14:4d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8f:98:99:1f:d7:6c:68:7f:a2:bf:5f:63:ce:86:36:93
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:db:a0:56:47:e6:fb:a0:ef:46:ae:10:26:fa:fd:
                    47:e7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8f:83:83:20:64:1d:a6:f3:cc:1a:3a:9f:15:13:5d:62
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d2:5b:e7:d9:ba:c9:e1:22:ea:b4:41:21:b4:e9:
                    fa:9f
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:0b:15:3b:5f:ee:72:e6:91:8c:b0:ee:bd:7d:86:4a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:4d:b1:29:96:38:60:6b:5b:34:ae:59:37:02:43:
                    f0:31
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        15:fe:8c:44:7c:44:dc:7f:b9:9e:d1:56:3f:97:76:e1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:f2:d5:87:fa:46:b4:a4:08:2b:62:de:8d:fc:ef:
                    aa:ad
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3e:dc:59:fa:18:86:9e:f3:87:39:b4:73:db:a8:a8:f8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:07:0f:1d:74:6a:c7:0b:e7:88:4a:e3:89:a2:c9:
                    82:b8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ce:bc:c2:61:13:b9:c9:e9:98:07:36:19:55:9f:3d:65
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:47:b0:85:cd:a3:cd:aa:b3:1b:21:62:36:6d:78:
                    87:fc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        cb:89:b9:91:b7:4f:55:44:41:e4:66:c2:52:a9:f2:98
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:07:10:b3:63:48:b0:df:d7:9d:f1:bc:0e:97:e7:
                    0d:30
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c8:e2:47:e2:bc:b4:3f:e2:84:2e:54:c5:89:17:4c:85
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b8:1c:9f:dc:84:38:1f:6a:d7:af:b8:3e:6c:a3:
                    e3:58
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8e:eb:ca:b2:b8:85:b0:30:98:66:d7:c3:69:67:35:a8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:01:e5:69:ff:bf:46:e5:9b:8a:13:9f:a3:dd:71:
                    25:46
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b3:4f:5b:70:e9:55:b9:52:87:c9:11:68:be:9c:e7:af
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:eb:4a:37:55:9b:61:f3:5d:71:39:0b:3d:a1:ab:
                    84:32
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        00:7b:d9:3e:86:e1:7f:24:59:c6:c8:74:0c:4d:82:63
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:bb:bb:8c:ad:dd:0f:c2:d1:10:3e:64:4c:71:3b:
                    55:72
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        78:ad:4d:de:73:38:9b:f7:73:0b:c9:df:af:d3:c3:2f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:3e:2c:6a:25:97:f6:24:0e:b8:b7:7a:6e:26:08:
                    71:87
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        00:1c:c0:c9:c1:db:16:b0:af:dd:c2:37:34:ab:11:58
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:dc:45:e2:38:5c:78:60:ca:b3:85:43:6a:9a:59:
                    97:f5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        be:20:85:e0:fb:dd:84:a8:24:59:fd:c8:04:3d:a5:b0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:14:c2:de:56:1a:7c:62:64:7b:a2:a0:d6:8d:d4:
                    d4:de
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c3:09:22:59:fe:fd:40:d5:27:97:e1:46:02:14:2d:15
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:fe:f6:18:b6:20:1f:09:29:98:a4:7c:2a:69:68:
                    92:28
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        00:28:ee:74:df:91:55:5e:04:9e:d4:43:03:0a:7b:4e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:42:1d:67:05:11:b3:8c:88:88:85:1d:4a:61:12:
                    36:94
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        18:82:c9:c6:1c:04:67:64:da:fa:a5:b2:ca:12:b0:03
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:32:54:0b:94:93:16:aa:47:46:82:17:00:82:fa:
                    fe:5d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c7:e4:30:8b:f4:14:66:03:c3:59:b5:b9:39:ed:e4:30
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:8c:9d:cf:8e:9e:6d:9d:e3:c5:68:d1:42:33:1a:
                    4b:ff
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4e:3a:9c:c2:3d:e1:dc:b8:5f:81:20:89:3f:e4:0b:12
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e1:bc:58:23:76:38:b8:bd:2b:88:a1:c6:98:71:
                    76:22
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4c:d8:f8:b8:40:e8:e2:74:8f:2d:ec:90:80:ef:1f:fe
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:69:37:44:54:53:90:c8:f6:11:f9:50:7e:66:68:
                    52:31
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:72:29:96:e9:bc:ba:ca:33:fa:0a:91:96:32:7a:93
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:b3:51:e0:93:07:42:72:13:0f:97:52:4f:48:db:
                    8b:52
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e4:c3:8f:50:b5:fd:56:aa:a6:7b:d9:2a:35:82:78:94
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:53:00:74:ec:13:3b:44:01:13:a2:79:67:5d:b9:
                    59:f5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e4:6c:9f:7b:87:8d:e3:b5:c1:32:3c:29:e1:d5:fe:c3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:87:fb:28:9f:82:e2:54:c6:2f:ff:3f:d5:5b:8e:
                    fb:9b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b7:ee:dd:89:98:d8:e5:68:1a:01:d2:b9:9e:af:9f:29
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:79:e9:69:7a:64:23:7b:05:ef:09:a8:06:1a:c7:
                    a3:74
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        73:ab:34:23:e1:66:e6:35:d3:59:68:71:01:38:fc:1a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:eb:31:71:89:75:cc:01:25:e5:20:01:de:88:d4:
                    32:80
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ef:83:c0:a0:4e:66:43:08:91:c8:1a:b2:cf:ba:9f:d2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:fc:2e:23:25:cb:53:a8:02:c6:58:b6:f6:5b:d3:
                    79:89
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                e7:21:dd:03:25:f6:c0:b8:62:49:24:05:76:6e:7f:a0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                27:4c:4d:42:ec:82:51:ed:4a:7f:7e:e8:1d:69:92:aa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                d1:6e:40:ee:01:27:28:55:43:ad:0e:4d:98:1a:ac:4d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                e0:c2:37:59:94:bc:9a:89:ca:5e:2e:52:53:f8:be:bc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ab:c2:22:a0:40:90:a7:9e:6b:3b:c0:0f:b9:19:c0:c2
            Iteration Count: 2000 (0x7d0)
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                bb:88:d7:22:e3:37:ee:70:b3:55:05:f6:1b:cd:cd:64
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #757: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                d7:16:63:d0:1e:6d:71:d0:33:b9:77:6e:e6:0f:85:7b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #758: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #759: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #760: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b8:94:a6:ff:d6:ed:1a:c4:76:3f:89:eb:25:65:e5:77
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #761: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #762: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #763: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                24:b5:86:d5:4d:48:59:cd:e7:ae:c2:3b:4e:15:d2:64
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #765: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #766: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                27:c9:65:68:ff:f9:49:6e:8f:ef:ee:45:e7:01:fc:95
            Iteration Count: 2000 (0x7d0)
tools.sh: #767: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #768: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #769: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                00:c6:63:51:85:e8:af:47:99:bc:af:cf:1b:16:f0:11
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #772: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                3f:fc:01:52:cc:c8:bd:f3:91:a8:9c:dd:14:e6:46:89
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #775: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                15:3d:20:db:d8:19:f4:17:a6:f4:57:6c:17:84:cb:19
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #777: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #778: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                a3:54:8b:58:c7:37:10:d3:a1:b5:73:28:50:2b:29:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #781: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                62:48:3b:dd:f5:7c:a6:88:d7:b4:42:53:80:31:1c:ac
            Iteration Count: 2000 (0x7d0)
tools.sh: #782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #783: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #784: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                86:af:1f:c4:39:ff:55:a8:31:67:04:3a:ee:e7:92:3a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #786: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #787: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ae:6b:c3:ec:92:8b:5f:3b:ae:d0:fc:dc:e0:a3:90:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #789: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #790: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fb:f6:71:e7:cb:ac:27:72:bb:56:32:89:53:b5:ea:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #792: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #793: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                00:e1:e9:73:1e:4e:89:a9:34:46:92:3d:ea:cb:6b:47
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #795: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #796: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1f:2e:32:e7:f4:95:8d:c0:8e:2a:bb:ae:5d:9e:cd:bf
            Iteration Count: 2000 (0x7d0)
tools.sh: #797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #798: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #799: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                04:ee:44:d6:5f:ce:b8:b9:b5:9a:fb:b3:ab:83:cb:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #801: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #802: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d7:45:e2:82:d5:fd:d2:3d:86:43:1c:df:a8:42:52:4f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #804: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #805: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e2:f7:9a:89:82:ff:5f:58:88:14:41:b3:e8:a5:a8:00
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #807: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #808: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                45:e9:3f:76:d2:61:01:91:f4:73:fc:e5:84:45:34:8e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #810: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #811: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                89:96:a9:64:f7:d7:8e:64:34:ee:cc:3f:4a:b8:1b:b3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #813: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #814: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                08:02:6f:5a:89:31:2e:ae:89:1e:ed:58:4d:54:d8:7c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #816: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #817: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a2:52:c7:e8:6b:7d:02:86:a9:fb:26:56:9d:69:d4:15
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #819: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #820: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f7:1c:9e:de:39:df:93:6e:73:ff:fa:ad:30:d3:fb:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #822: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #823: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8c:7e:7c:b2:db:84:18:8d:8b:28:ad:b5:df:d7:7b:b7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #825: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #826: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                74:16:ee:59:5e:2f:fb:83:97:e4:76:a2:f1:8b:67:8c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #829: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #830: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #831: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #832: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #833: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #834: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #835: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #836: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #837: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed Aug 23 12:18:40 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed Aug 23 12:18:40 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #838: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #839: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      8cb505244ff05e103fae02beefc79832affa991b   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #840: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #841: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #842: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #843: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #844: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #845: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #846: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #847: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #848: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #849: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #850: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      8cb505244ff05e103fae02beefc79832affa991b   FIPS_PUB_140_Test_Certificate
fips.sh: #851: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #852: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #853: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #854: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #855: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      8cb505244ff05e103fae02beefc79832affa991b   FIPS_PUB_140_Test_Certificate
fips.sh: #856: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #857: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #858: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
Changing byte 0x0003fd70 (261488): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #859: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed Aug 23 12:18:47 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Wed Aug 23 12:18:47 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.30054 -t "Test1"
sdr.sh: #860: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v2.30054 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #861: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.30054 -t "1234567"
sdr.sh: #862: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.30054 -t "Test1"
sdr.sh: #863: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v2.30054 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #864: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.30054 -t "1234567"
sdr.sh: #865: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Wed Aug 23 12:18:48 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed Aug 23 12:18:48 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #866: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #867: CMMF test . - PASSED
TIMESTAMP crmf END: Wed Aug 23 12:18:48 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed Aug 23 12:18:48 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #868: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #869: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #870: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #871: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #872: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #873: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #874: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #875: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #876: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #877: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #878: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #879: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #880: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #881: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #882: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #883: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #884: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #885: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #886: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #887: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #888: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #889: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #890: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #891: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #892: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #893: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #894: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #895: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #896: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #897: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #898: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #899: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #900: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #901: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #902: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #903: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #904: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #905: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #906: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #907: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #908: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #909: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #910: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #911: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #912: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #913: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #914: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #915: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #916: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #917: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #918: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #919: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #920: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #921: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #922: Decode Encrypted-Data . - PASSED
smime.sh: #923: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #924: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #925: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #926: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #927: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #928: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed Aug 23 12:18:49 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed Aug 23 12:18:49 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8070 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8070 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8070 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #929: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8070 at Wed Aug 23 12:18:49 UTC 2017
kill -USR1 8070
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8070 killed at Wed Aug 23 12:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8126 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8126 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8126 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8126 at Wed Aug 23 12:18:49 UTC 2017
kill -USR1 8126
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8126 killed at Wed Aug 23 12:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8182 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8182 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8182 at Wed Aug 23 12:18:49 UTC 2017
kill -USR1 8182
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8182 killed at Wed Aug 23 12:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8250 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8250 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8250 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8250 at Wed Aug 23 12:18:49 UTC 2017
kill -USR1 8250
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8250 killed at Wed Aug 23 12:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8306 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8306 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8306 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8306 at Wed Aug 23 12:18:49 UTC 2017
kill -USR1 8306
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8306 killed at Wed Aug 23 12:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8362 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8362 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8362 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8362 at Wed Aug 23 12:18:49 UTC 2017
kill -USR1 8362
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8362 killed at Wed Aug 23 12:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8430 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8430 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8430 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #935: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8430 at Wed Aug 23 12:18:49 UTC 2017
kill -USR1 8430
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8430 killed at Wed Aug 23 12:18:49 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8486 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8486 found at Wed Aug 23 12:18:49 UTC 2017
selfserv_9223 with PID 8486 started at Wed Aug 23 12:18:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #936: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8486 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8486
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8486 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8542 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8542 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8542 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #937: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8542 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8542
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8542 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8611 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8611 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8611 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #938: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8611 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8611
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8611 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8667 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8667 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8667 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8667 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8667
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8667 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8723 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8723 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8723 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8723 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8723
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8723 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8792 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8792 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8792 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8792 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8792
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8792 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8849 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8849 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8849 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8849 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8849
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8849 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8905 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8905 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8905 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8905 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8905
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8905 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8973 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8973 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 8973 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #944: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8973 at Wed Aug 23 12:18:50 UTC 2017
kill -USR1 8973
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8973 killed at Wed Aug 23 12:18:50 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9029 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9029 found at Wed Aug 23 12:18:50 UTC 2017
selfserv_9223 with PID 9029 started at Wed Aug 23 12:18:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #945: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9029 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9029
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9029 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9085 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9085 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9085 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #946: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9085 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9085
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9085 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9153 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9153 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9153 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #947: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9153 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9153
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9153 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9209 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9209 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9209 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9209 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9209
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9209 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9265 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9265 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9265 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9265 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9265
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9265 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9333 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9333 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9333 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #950: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9333 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9333
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9333 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9389 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9389 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9389 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9389 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9389
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9389 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9445 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9445 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9445 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #952: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9445 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9445
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9445 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9513 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9513 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9513 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #953: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9513 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9513
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9513 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9569 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9569 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9569 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #954: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9569 at Wed Aug 23 12:18:51 UTC 2017
kill -USR1 9569
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9569 killed at Wed Aug 23 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9625 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9625 found at Wed Aug 23 12:18:51 UTC 2017
selfserv_9223 with PID 9625 started at Wed Aug 23 12:18:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #955: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9625 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 9625
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9625 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9693 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9693 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 9693 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #956: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9693 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 9693
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9693 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9749 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9749 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 9749 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #957: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9749 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 9749
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9749 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9805 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9805 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 9805 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #958: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9805 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 9805
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9805 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9873 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9873 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 9873 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #959: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9873 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 9873
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9873 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9929 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9929 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 9929 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #960: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9929 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 9929
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9929 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9985 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9985 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 9985 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #961: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9985 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 9985
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9985 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10053 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10053 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 10053 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #962: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 10053 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 10053
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10053 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10109 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10109 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 10109 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #963: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10109 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 10109
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10109 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10165 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10165 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 10165 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #964: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 10165 at Wed Aug 23 12:18:52 UTC 2017
kill -USR1 10165
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10165 killed at Wed Aug 23 12:18:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10233 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10233 found at Wed Aug 23 12:18:52 UTC 2017
selfserv_9223 with PID 10233 started at Wed Aug 23 12:18:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #965: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10233 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10233
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10233 killed at Wed Aug 23 12:18:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10289 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10289 found at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 with PID 10289 started at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #966: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10289 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10289 killed at Wed Aug 23 12:18:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10345 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10345 found at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 with PID 10345 started at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #967: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10345 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10345
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10345 killed at Wed Aug 23 12:18:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10413 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10413 found at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 with PID 10413 started at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #968: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10413 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10413
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10413 killed at Wed Aug 23 12:18:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10469 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10469 found at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 with PID 10469 started at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10469 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10469
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10469 killed at Wed Aug 23 12:18:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10527 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10527 found at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 with PID 10527 started at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #970: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10527 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10527
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10527 killed at Wed Aug 23 12:18:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10595 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10595 found at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 with PID 10595 started at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #971: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10595 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10595
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10595 killed at Wed Aug 23 12:18:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10652 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10652 found at Wed Aug 23 12:18:53 UTC 2017
selfserv_9223 with PID 10652 started at Wed Aug 23 12:18:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #972: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10652 at Wed Aug 23 12:18:53 UTC 2017
kill -USR1 10652
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10652 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10709 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10709 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 10709 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #973: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10709 at Wed Aug 23 12:18:54 UTC 2017
kill -USR1 10709
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10709 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10777 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10777 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 10777 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #974: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10777 at Wed Aug 23 12:18:54 UTC 2017
kill -USR1 10777
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10777 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10834 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 10834 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #975: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10834 at Wed Aug 23 12:18:54 UTC 2017
kill -USR1 10834
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10834 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10891 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10891 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 10891 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #976: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10891 at Wed Aug 23 12:18:54 UTC 2017
kill -USR1 10891
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10891 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10960 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10960 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 10960 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10960 at Wed Aug 23 12:18:54 UTC 2017
kill -USR1 10960
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10960 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11016 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11016 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 11016 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11016 at Wed Aug 23 12:18:54 UTC 2017
kill -USR1 11016
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11016 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11072 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11072 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 11072 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11072 at Wed Aug 23 12:18:54 UTC 2017
kill -USR1 11072
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11072 killed at Wed Aug 23 12:18:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11140 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11140 found at Wed Aug 23 12:18:54 UTC 2017
selfserv_9223 with PID 11140 started at Wed Aug 23 12:18:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #980: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11140 at Wed Aug 23 12:18:55 UTC 2017
kill -USR1 11140
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11140 killed at Wed Aug 23 12:18:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11196 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11196 found at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 with PID 11196 started at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #981: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11196 at Wed Aug 23 12:18:55 UTC 2017
kill -USR1 11196
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11196 killed at Wed Aug 23 12:18:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11252 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11252 found at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 with PID 11252 started at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #982: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11252 at Wed Aug 23 12:18:55 UTC 2017
kill -USR1 11252
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11252 killed at Wed Aug 23 12:18:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11320 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11320 found at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 with PID 11320 started at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #983: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11320 at Wed Aug 23 12:18:55 UTC 2017
kill -USR1 11320
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11320 killed at Wed Aug 23 12:18:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11376 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11376 found at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 with PID 11376 started at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11376 at Wed Aug 23 12:18:55 UTC 2017
kill -USR1 11376
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11376 killed at Wed Aug 23 12:18:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11432 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11432 found at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 with PID 11432 started at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11432 at Wed Aug 23 12:18:55 UTC 2017
kill -USR1 11432
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11432 killed at Wed Aug 23 12:18:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11500 found at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 with PID 11500 started at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11500 at Wed Aug 23 12:18:55 UTC 2017
kill -USR1 11500
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11500 killed at Wed Aug 23 12:18:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11556 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11556 found at Wed Aug 23 12:18:55 UTC 2017
selfserv_9223 with PID 11556 started at Wed Aug 23 12:18:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11556 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11556
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11556 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11612 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11612 found at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 with PID 11612 started at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11612 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11612
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11612 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11681 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11681 found at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 with PID 11681 started at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #989: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11681 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11681
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11681 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11738 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11738 found at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 with PID 11738 started at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #990: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11738 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11738 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11795 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11795 found at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 with PID 11795 started at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #991: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11795 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11795
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11795 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11863 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11863 found at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 with PID 11863 started at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #992: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11863 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11863
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11863 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11919 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11919 found at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 with PID 11919 started at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11919 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11919
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11919 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11975 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11975 found at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 with PID 11975 started at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11975 at Wed Aug 23 12:18:56 UTC 2017
kill -USR1 11975
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11975 killed at Wed Aug 23 12:18:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12043 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12043 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12043 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #995: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12043 at Wed Aug 23 12:18:57 UTC 2017
kill -USR1 12043
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12043 killed at Wed Aug 23 12:18:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12099 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12099 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12099 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #996: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12099 at Wed Aug 23 12:18:57 UTC 2017
kill -USR1 12099
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12099 killed at Wed Aug 23 12:18:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12155 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12155 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12155 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #997: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12155 at Wed Aug 23 12:18:57 UTC 2017
kill -USR1 12155
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12155 killed at Wed Aug 23 12:18:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12223 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12223 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #998: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12223 at Wed Aug 23 12:18:57 UTC 2017
kill -USR1 12223
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12223 killed at Wed Aug 23 12:18:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12279 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12279 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12279 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #999: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12279 at Wed Aug 23 12:18:57 UTC 2017
kill -USR1 12279
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12279 killed at Wed Aug 23 12:18:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12337 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12337 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1000: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12337 at Wed Aug 23 12:18:57 UTC 2017
kill -USR1 12337
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12337 killed at Wed Aug 23 12:18:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12406 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12406 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12406 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1001: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12406 at Wed Aug 23 12:18:57 UTC 2017
kill -USR1 12406
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12406 killed at Wed Aug 23 12:18:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12463 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12463 found at Wed Aug 23 12:18:57 UTC 2017
selfserv_9223 with PID 12463 started at Wed Aug 23 12:18:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1002: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12463 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12463
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12463 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12519 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12519 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12519 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1003: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12519 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12519
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12519 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12587 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12587 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12587 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1004: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12587 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12587
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12587 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12643 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12643 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12643 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12643 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12643
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12643 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12699 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12699 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12699 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1006: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12699 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12699
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12699 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12767 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12767 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12767 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1007: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12767 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12767
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12767 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12823 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12823 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12823 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1008: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12823 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12823
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12823 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12880 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12880 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12880 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1009: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12880 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12880
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12880 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12949 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12949 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 12949 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1010: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12949 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 12949
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12949 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13007 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13007 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 13007 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1011: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13007 at Wed Aug 23 12:18:58 UTC 2017
kill -USR1 13007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13007 killed at Wed Aug 23 12:18:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13063 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13063 found at Wed Aug 23 12:18:58 UTC 2017
selfserv_9223 with PID 13063 started at Wed Aug 23 12:18:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1012: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13063 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13063 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13132 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13132 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13132 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1013: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13132 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13132
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13132 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13188 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13188 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13188 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1014: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13188 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13188
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13188 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13244 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13244 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13244 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1015: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13244 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13244
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13244 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13312 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13312 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13312 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1016: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13312 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13312
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13312 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13368 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13368 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13368 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1017: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13368 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13368
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13368 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13425 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13425 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1018: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13425 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13425
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13425 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13502 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13502 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13502 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1019: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13502 at Wed Aug 23 12:18:59 UTC 2017
kill -USR1 13502
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13502 killed at Wed Aug 23 12:18:59 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13558 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13558 found at Wed Aug 23 12:18:59 UTC 2017
selfserv_9223 with PID 13558 started at Wed Aug 23 12:18:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1020: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13558 at Wed Aug 23 12:19:00 UTC 2017
kill -USR1 13558
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13558 killed at Wed Aug 23 12:19:00 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13614 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13614 found at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 with PID 13614 started at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1021: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13614 at Wed Aug 23 12:19:00 UTC 2017
kill -USR1 13614
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13614 killed at Wed Aug 23 12:19:00 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13682 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13682 found at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 with PID 13682 started at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1022: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13682 at Wed Aug 23 12:19:00 UTC 2017
kill -USR1 13682
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13682 killed at Wed Aug 23 12:19:00 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13738 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13738 found at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 with PID 13738 started at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1023: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13738 at Wed Aug 23 12:19:00 UTC 2017
kill -USR1 13738
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13738 killed at Wed Aug 23 12:19:00 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13794 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13794 found at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 with PID 13794 started at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1024: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13794 at Wed Aug 23 12:19:00 UTC 2017
kill -USR1 13794
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13794 killed at Wed Aug 23 12:19:00 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13862 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13862 found at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 with PID 13862 started at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1025: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13862 at Wed Aug 23 12:19:00 UTC 2017
kill -USR1 13862
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13862 killed at Wed Aug 23 12:19:00 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13919 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13919 found at Wed Aug 23 12:19:00 UTC 2017
selfserv_9223 with PID 13919 started at Wed Aug 23 12:19:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1026: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13919 at Wed Aug 23 12:19:01 UTC 2017
kill -USR1 13919
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13919 killed at Wed Aug 23 12:19:01 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13975 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13975 found at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 with PID 13975 started at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1027: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13975 at Wed Aug 23 12:19:01 UTC 2017
kill -USR1 13975
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13975 killed at Wed Aug 23 12:19:01 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14043 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14043 found at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 with PID 14043 started at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1028: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14043 at Wed Aug 23 12:19:01 UTC 2017
kill -USR1 14043
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14043 killed at Wed Aug 23 12:19:01 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14099 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14099 found at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 with PID 14099 started at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1029: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14099 at Wed Aug 23 12:19:01 UTC 2017
kill -USR1 14099
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14099 killed at Wed Aug 23 12:19:01 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14156 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14156 found at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 with PID 14156 started at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1030: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14156 at Wed Aug 23 12:19:01 UTC 2017
kill -USR1 14156
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14156 killed at Wed Aug 23 12:19:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14224 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14224 found at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 with PID 14224 started at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1031: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14224 at Wed Aug 23 12:19:01 UTC 2017
kill -USR1 14224
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14224 killed at Wed Aug 23 12:19:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14281 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14281 found at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 with PID 14281 started at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1032: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14281 at Wed Aug 23 12:19:01 UTC 2017
kill -USR1 14281
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14281 killed at Wed Aug 23 12:19:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14338 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14338 found at Wed Aug 23 12:19:01 UTC 2017
selfserv_9223 with PID 14338 started at Wed Aug 23 12:19:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1033: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14338 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14338
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14338 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14407 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14407 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14407 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1034: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14407 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14407
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14407 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14463 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14463 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14463 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1035: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14463 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14463
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14463 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14519 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14519 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14519 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1036: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14519 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14519
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14519 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14587 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14587 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14587 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1037: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14587 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14587
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14587 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14643 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14643 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14643 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1038: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14643 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14643
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14643 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14699 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14699 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14699 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1039: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14699 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14699
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14699 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14767 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14767 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14767 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1040: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14767 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14767
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14767 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14823 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14823 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14823 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1041: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14823 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14823
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14823 killed at Wed Aug 23 12:19:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14879 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14879 found at Wed Aug 23 12:19:02 UTC 2017
selfserv_9223 with PID 14879 started at Wed Aug 23 12:19:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1042: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14879 at Wed Aug 23 12:19:02 UTC 2017
kill -USR1 14879
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14879 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14949 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14949 found at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 with PID 14949 started at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1043: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14949 at Wed Aug 23 12:19:03 UTC 2017
kill -USR1 14949
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14949 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15005 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15005 found at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 with PID 15005 started at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1044: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15005 at Wed Aug 23 12:19:03 UTC 2017
kill -USR1 15005
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15005 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15061 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15061 found at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 with PID 15061 started at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1045: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15061 at Wed Aug 23 12:19:03 UTC 2017
kill -USR1 15061
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15061 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15129 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15129 found at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 with PID 15129 started at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1046: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15129 at Wed Aug 23 12:19:03 UTC 2017
kill -USR1 15129
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15129 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15185 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15185 found at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 with PID 15185 started at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1047: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15185 at Wed Aug 23 12:19:03 UTC 2017
kill -USR1 15185
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15185 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15241 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15241 found at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 with PID 15241 started at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1048: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15241 at Wed Aug 23 12:19:03 UTC 2017
kill -USR1 15241
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15241 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15309 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15309 found at Wed Aug 23 12:19:03 UTC 2017
selfserv_9223 with PID 15309 started at Wed Aug 23 12:19:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1049: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15309 at Wed Aug 23 12:19:03 UTC 2017
kill -USR1 15309
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15309 killed at Wed Aug 23 12:19:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15365 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15365 found at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 with PID 15365 started at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1050: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15365 at Wed Aug 23 12:19:04 UTC 2017
kill -USR1 15365
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15365 killed at Wed Aug 23 12:19:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15421 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15421 found at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 with PID 15421 started at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1051: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15421 at Wed Aug 23 12:19:04 UTC 2017
kill -USR1 15421
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15421 killed at Wed Aug 23 12:19:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15489 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15489 found at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 with PID 15489 started at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1052: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15489 at Wed Aug 23 12:19:04 UTC 2017
kill -USR1 15489
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15489 killed at Wed Aug 23 12:19:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15545 found at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 with PID 15545 started at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1053: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15545 at Wed Aug 23 12:19:04 UTC 2017
kill -USR1 15545
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15545 killed at Wed Aug 23 12:19:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15601 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15601 found at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 with PID 15601 started at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1054: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15601 at Wed Aug 23 12:19:04 UTC 2017
kill -USR1 15601
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15601 killed at Wed Aug 23 12:19:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15678 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15678 found at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 with PID 15678 started at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1055: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15678 at Wed Aug 23 12:19:04 UTC 2017
kill -USR1 15678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15678 killed at Wed Aug 23 12:19:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15734 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15734 found at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 with PID 15734 started at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1056: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15734 at Wed Aug 23 12:19:04 UTC 2017
kill -USR1 15734
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15734 killed at Wed Aug 23 12:19:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15804 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15804 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 15804 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1057: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15804 at Wed Aug 23 12:19:05 UTC 2017
kill -USR1 15804
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15804 killed at Wed Aug 23 12:19:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15873 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15873 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 15873 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1058: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15873 at Wed Aug 23 12:19:05 UTC 2017
kill -USR1 15873
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15873 killed at Wed Aug 23 12:19:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15929 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15929 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 15929 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15929 at Wed Aug 23 12:19:05 UTC 2017
kill -USR1 15929
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15929 killed at Wed Aug 23 12:19:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15985 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15985 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 15985 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15985 at Wed Aug 23 12:19:05 UTC 2017
kill -USR1 15985
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15985 killed at Wed Aug 23 12:19:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16053 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16053 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 16053 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1061: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16053 at Wed Aug 23 12:19:05 UTC 2017
kill -USR1 16053
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16053 killed at Wed Aug 23 12:19:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16109 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16109 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 16109 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1062: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16109 at Wed Aug 23 12:19:05 UTC 2017
kill -USR1 16109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16109 killed at Wed Aug 23 12:19:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16165 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16165 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 16165 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1063: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16165 at Wed Aug 23 12:19:05 UTC 2017
kill -USR1 16165
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16165 killed at Wed Aug 23 12:19:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16233 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16233 found at Wed Aug 23 12:19:05 UTC 2017
selfserv_9223 with PID 16233 started at Wed Aug 23 12:19:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1064: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16233 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16233
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16233 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16289 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16289 found at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 with PID 16289 started at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1065: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 16289 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16289 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16345 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16345 found at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 with PID 16345 started at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1066: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16345 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16345
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16345 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16413 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16413 found at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 with PID 16413 started at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1067: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 16413 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16413
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16413 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16469 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16469 found at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 with PID 16469 started at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1068: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 16469 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16469
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16469 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16525 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16525 found at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 with PID 16525 started at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1069: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 16525 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16525
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16525 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16594 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16594 found at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 with PID 16594 started at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1070: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16594 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16594
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16594 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16650 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16650 found at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 with PID 16650 started at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1071: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 16650 at Wed Aug 23 12:19:06 UTC 2017
kill -USR1 16650
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16650 killed at Wed Aug 23 12:19:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16706 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16706 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 16706 started at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1072: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16706 at Wed Aug 23 12:19:07 UTC 2017
kill -USR1 16706
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16706 killed at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16775 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16775 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 16775 started at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1073: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16775 at Wed Aug 23 12:19:07 UTC 2017
kill -USR1 16775
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16775 killed at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16831 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16831 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 16831 started at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1074: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16831 at Wed Aug 23 12:19:07 UTC 2017
kill -USR1 16831
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16831 killed at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16887 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16887 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 16887 started at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1075: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16887 at Wed Aug 23 12:19:07 UTC 2017
kill -USR1 16887
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16887 killed at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16955 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16955 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 16955 started at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1076: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16955 at Wed Aug 23 12:19:07 UTC 2017
kill -USR1 16955
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16955 killed at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17018 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17018 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 17018 started at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1077: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 17018 at Wed Aug 23 12:19:07 UTC 2017
kill -USR1 17018
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 17018 killed at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17074 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17074 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 17074 started at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1078: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 17074 at Wed Aug 23 12:19:07 UTC 2017
kill -USR1 17074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 17074 killed at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9223 starting at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:07 UTC 2017
selfserv_9223 with PID 17137 started at Wed Aug 23 12:19:07 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: #1079: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: #1080: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:07 UTC 2017
ssl.sh: #1081: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1082: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1083: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1084: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1085: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1086: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1087: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1088: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1089: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1090: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1091: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1092: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1093: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1094: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1095: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1096: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:08 UTC 2017
ssl.sh: #1097: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1098: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1099: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1100: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1101: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1102: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1103: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1104: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1105: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1106: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1107: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1108: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1109: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1110: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1111: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1112: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1113: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:09 UTC 2017
ssl.sh: #1114: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1115: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1116: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1117: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1118: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17137 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1119: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 17137 at Wed Aug 23 12:19:10 UTC 2017
kill -USR1 17137
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 17137 killed at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
selfserv_9223 with PID 18566 started at Wed Aug 23 12:19:10 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1120: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1121: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1122: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1123: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1124: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1125: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1126: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1127: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1128: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1129: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:10 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1133: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1134: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1143: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1147: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1148: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:11 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1157: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18566 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 18566 at Wed Aug 23 12:19:12 UTC 2017
kill -USR1 18566
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18566 killed at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
selfserv_9223 with PID 19999 started at Wed Aug 23 12:19:12 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1161: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1162: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1163: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1164: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1165: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1166: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1167: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1168: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1169: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:12 UTC 2017
ssl.sh: #1170: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1171: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1172: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1173: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1174: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1175: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1176: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1177: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1178: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1179: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1180: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1181: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1182: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1183: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1184: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:13 UTC 2017
ssl.sh: #1185: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1186: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1187: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1188: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1189: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1190: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1191: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1192: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1193: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1194: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1195: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1196: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1197: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1198: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1199: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:14 UTC 2017
ssl.sh: #1200: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19999 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1201: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19999 at Wed Aug 23 12:19:15 UTC 2017
kill -USR1 19999
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19999 killed at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
selfserv_9223 with PID 21425 started at Wed Aug 23 12:19:15 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1202: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1203: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1204: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1205: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1206: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1207: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1208: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1209: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1210: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1211: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1212: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1213: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1214: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1215: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1216: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:15 UTC 2017
ssl.sh: #1217: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1218: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1219: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1220: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1221: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1222: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1223: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1224: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1225: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1226: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1227: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1228: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1229: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1230: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1231: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1232: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1233: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1234: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1235: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:16 UTC 2017
ssl.sh: #1236: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1237: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1238: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1239: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1240: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1241: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21425 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1242: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 21425 at Wed Aug 23 12:19:17 UTC 2017
kill -USR1 21425
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21425 killed at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22859 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22859 found at Wed Aug 23 12:19:17 UTC 2017
selfserv_9223 with PID 22859 started at Wed Aug 23 12:19:17 UTC 2017
trying to kill selfserv_9223 with PID 22859 at Wed Aug 23 12:19:17 UTC 2017
kill -USR1 22859
./ssl.sh: line 197: 22859 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22859 killed at Wed Aug 23 12:19:17 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:19:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
selfserv_9223 with PID 22901 started at Wed Aug 23 12:19:17 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1243: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1244: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1245: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1246: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1247: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1248: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:17 UTC 2017
ssl.sh: #1249: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1250: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1251: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1252: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1253: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1254: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1255: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1256: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1257: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1258: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1259: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1260: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1261: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:18 UTC 2017
ssl.sh: #1262: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1263: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1264: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1265: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1266: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1267: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1268: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1269: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1270: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1271: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1272: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1273: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:19 UTC 2017
ssl.sh: #1274: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1275: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1276: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1277: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1278: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1279: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1280: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1281: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1282: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22901 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1283: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22901 at Wed Aug 23 12:19:20 UTC 2017
kill -USR1 22901
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22901 killed at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:20 UTC 2017
selfserv_9223 with PID 24329 started at Wed Aug 23 12:19:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1284: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1285: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:20 UTC 2017
ssl.sh: #1286: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1287: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1288: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1289: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1290: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1291: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1292: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1293: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1294: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1295: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1296: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1297: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:21 UTC 2017
ssl.sh: #1298: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1299: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1300: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1301: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1302: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1303: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1304: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1305: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1306: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1307: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1308: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1309: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:22 UTC 2017
ssl.sh: #1310: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1311: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1312: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1313: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1314: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1315: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1316: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1317: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1318: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1319: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1320: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1321: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1322: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:23 UTC 2017
ssl.sh: #1323: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24329 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24329 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1324: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 24329 at Wed Aug 23 12:19:24 UTC 2017
kill -USR1 24329
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24329 killed at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
selfserv_9223 with PID 25757 started at Wed Aug 23 12:19:24 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1325: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1326: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1327: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1328: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1329: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1330: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1331: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1332: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1333: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1334: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1335: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1336: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1337: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1338: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1339: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:24 UTC 2017
ssl.sh: #1340: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1341: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1342: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1343: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1344: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1345: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1346: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1347: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1348: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1349: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1350: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1351: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1352: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1353: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1354: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1355: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1356: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1357: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1358: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:25 UTC 2017
ssl.sh: #1359: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1360: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1361: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1362: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1363: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1364: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25757 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25757 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1365: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25757 at Wed Aug 23 12:19:26 UTC 2017
kill -USR1 25757
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25757 killed at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:26 UTC 2017
selfserv_9223 with PID 27182 started at Wed Aug 23 12:19:26 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1366: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1367: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1368: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1369: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1370: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:26 UTC 2017
ssl.sh: #1371: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1372: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1373: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1374: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1375: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1376: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1377: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1378: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1379: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1380: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1381: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1382: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:27 UTC 2017
ssl.sh: #1383: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1384: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1385: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1386: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1387: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1388: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1389: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1390: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1391: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1392: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1393: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:28 UTC 2017
ssl.sh: #1394: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1395: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1396: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1397: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1398: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1399: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1400: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1401: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1402: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1403: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1404: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:29 UTC 2017
ssl.sh: #1405: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27182 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1406: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27182 at Wed Aug 23 12:19:30 UTC 2017
kill -USR1 27182
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27182 killed at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
selfserv_9223 with PID 28610 started at Wed Aug 23 12:19:30 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1407: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1408: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1409: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1410: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1411: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1412: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1413: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1414: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1415: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:30 UTC 2017
ssl.sh: #1416: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1417: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1418: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1419: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1420: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1421: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1422: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1423: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1424: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1425: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1426: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:31 UTC 2017
ssl.sh: #1427: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1428: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1429: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1430: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1431: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1432: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1433: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1434: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1435: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1436: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1437: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1438: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:32 UTC 2017
ssl.sh: #1439: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1440: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1441: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1442: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1443: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1444: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1445: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1446: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28610 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1447: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28610 at Wed Aug 23 12:19:33 UTC 2017
kill -USR1 28610
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28610 killed at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:33 UTC 2017
selfserv_9223 with PID 30039 started at Wed Aug 23 12:19:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1448: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1449: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1450: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:33 UTC 2017
ssl.sh: #1451: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1452: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1453: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1454: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1455: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1456: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1457: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1458: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1459: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1460: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1461: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1462: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1463: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1464: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1465: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1466: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:34 UTC 2017
ssl.sh: #1467: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1468: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1469: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1470: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1471: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1472: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1473: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1474: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1475: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1476: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1477: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1478: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1479: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1480: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1481: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1482: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:35 UTC 2017
ssl.sh: #1483: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1484: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1485: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1486: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1487: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30039 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1488: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30039 at Wed Aug 23 12:19:36 UTC 2017
kill -USR1 30039
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30039 killed at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31473 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31473 found at Wed Aug 23 12:19:36 UTC 2017
selfserv_9223 with PID 31473 started at Wed Aug 23 12:19:36 UTC 2017
trying to kill selfserv_9223 with PID 31473 at Wed Aug 23 12:19:36 UTC 2017
kill -USR1 31473
./ssl.sh: line 197: 31473 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31473 killed at Wed Aug 23 12:19:36 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:19:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
selfserv_9223 with PID 31515 started at Wed Aug 23 12:19:36 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1489: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1490: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1491: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1492: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1493: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1494: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:36 UTC 2017
ssl.sh: #1495: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1496: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1497: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1498: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1499: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1500: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1501: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1502: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1503: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1504: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1505: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1506: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1507: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:37 UTC 2017
ssl.sh: #1508: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1509: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1510: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1511: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1512: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1513: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1514: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1515: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1516: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1517: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1518: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1519: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:38 UTC 2017
ssl.sh: #1520: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1521: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1522: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1523: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1524: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1525: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1526: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1527: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1528: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31515 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1529: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 31515 at Wed Aug 23 12:19:39 UTC 2017
kill -USR1 31515
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31515 killed at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:39 UTC 2017
selfserv_9223 with PID 474 started at Wed Aug 23 12:19:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1530: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1531: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:39 UTC 2017
ssl.sh: #1532: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1533: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1534: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1535: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1536: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1537: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1538: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1539: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1540: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1541: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1542: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1543: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:40 UTC 2017
ssl.sh: #1544: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1545: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1546: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1547: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1548: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1549: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1550: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1551: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1552: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1553: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1554: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1555: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
ssl.sh: #1556: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1557: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1558: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1559: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1560: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1561: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1562: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1563: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1564: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1565: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1566: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1567: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1568: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:42 UTC 2017
ssl.sh: #1569: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 474 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 474 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1570: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 474 at Wed Aug 23 12:19:43 UTC 2017
kill -USR1 474
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 474 killed at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
selfserv_9223 with PID 2027 started at Wed Aug 23 12:19:43 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1571: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1572: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1573: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1574: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1575: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1576: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1577: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1578: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1579: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1580: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1581: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1582: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1583: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1584: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1585: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:43 UTC 2017
ssl.sh: #1586: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1587: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1588: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1589: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1590: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1591: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1592: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1593: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1594: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1595: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1596: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1597: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1598: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1599: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1600: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1601: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1602: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1603: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:44 UTC 2017
ssl.sh: #1604: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1605: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1606: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1607: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1608: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1609: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1610: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2027 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1611: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2027 at Wed Aug 23 12:19:45 UTC 2017
kill -USR1 2027
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2027 killed at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:45 UTC 2017
selfserv_9223 with PID 3452 started at Wed Aug 23 12:19:45 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1612: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1613: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1614: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1615: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1616: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:45 UTC 2017
ssl.sh: #1617: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1618: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1619: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1620: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1621: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1622: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1623: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1624: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1625: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1626: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1627: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:46 UTC 2017
ssl.sh: #1628: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1629: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1630: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1631: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1632: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1633: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1634: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1635: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1636: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1637: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1638: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1639: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:47 UTC 2017
ssl.sh: #1640: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1641: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1642: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1643: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1644: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1645: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1646: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1647: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1648: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1649: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1650: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:48 UTC 2017
ssl.sh: #1651: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3452 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1652: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 3452 at Wed Aug 23 12:19:49 UTC 2017
kill -USR1 3452
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3452 killed at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
selfserv_9223 with PID 4882 started at Wed Aug 23 12:19:49 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1653: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1654: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1655: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1656: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1657: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1658: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1659: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1660: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1661: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:49 UTC 2017
ssl.sh: #1662: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1663: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1664: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1665: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1666: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1667: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1668: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1669: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1670: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1671: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1672: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:50 UTC 2017
ssl.sh: #1673: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1674: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1675: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1676: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1677: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1678: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1679: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1680: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1681: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1682: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1683: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1684: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:51 UTC 2017
ssl.sh: #1685: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1686: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1687: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1688: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1689: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1690: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1691: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1692: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4882 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1693: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 4882 at Wed Aug 23 12:19:52 UTC 2017
kill -USR1 4882
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4882 killed at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:52 UTC 2017
selfserv_9223 with PID 6305 started at Wed Aug 23 12:19:52 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1694: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1695: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1696: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:52 UTC 2017
ssl.sh: #1697: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1698: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1699: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1700: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1701: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1702: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1703: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1704: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1705: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1706: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1707: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1708: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1709: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1710: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1711: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:53 UTC 2017
ssl.sh: #1712: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1713: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1714: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1715: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1716: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1717: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1718: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1719: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1720: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1721: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1722: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1723: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1724: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1725: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1726: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1727: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:54 UTC 2017
ssl.sh: #1728: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: #1729: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: #1730: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: #1731: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: #1732: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: #1733: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6305 found at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: #1734: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 6305 at Wed Aug 23 12:19:55 UTC 2017
kill -USR1 6305
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 6305 killed at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7733 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7733 found at Wed Aug 23 12:19:55 UTC 2017
selfserv_9223 with PID 7733 started at Wed Aug 23 12:19:55 UTC 2017
trying to kill selfserv_9223 with PID 7733 at Wed Aug 23 12:19:55 UTC 2017
kill -USR1 7733
./ssl.sh: line 197:  7733 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7733 killed at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1735:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -list
ssl.sh: #1736:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1737:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1738:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1739:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1740:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9223 starting at Wed Aug 23 12:19:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7843 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7843 found at Wed Aug 23 12:19:55 UTC 2017
selfserv_9223 with PID 7843 started at Wed Aug 23 12:19:55 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1741: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1793: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1794: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1799: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1800: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1805: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1806: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1811: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1812: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1817: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1818: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1822: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1826: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1830: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1834: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1838: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1842: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1844: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1847: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1848: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1849: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1850: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1851: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1852: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1853: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1854: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1855: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1856: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1857: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1858: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1859: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1860: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1861: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7843 at Wed Aug 23 12:19:59 UTC 2017
kill -USR1 7843
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7843 killed at Wed Aug 23 12:19:59 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10108 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10108 found at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 with PID 10108 started at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1862: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10108 at Wed Aug 23 12:19:59 UTC 2017
kill -USR1 10108
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10108 killed at Wed Aug 23 12:19:59 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10165 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10165 found at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 with PID 10165 started at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1863: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10165 at Wed Aug 23 12:19:59 UTC 2017
kill -USR1 10165
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10165 killed at Wed Aug 23 12:19:59 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10222 found at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 with PID 10222 started at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1864: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10222 at Wed Aug 23 12:19:59 UTC 2017
kill -USR1 10222
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10222 killed at Wed Aug 23 12:19:59 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10279 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10279 found at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 with PID 10279 started at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1865: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10279 at Wed Aug 23 12:19:59 UTC 2017
kill -USR1 10279
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10279 killed at Wed Aug 23 12:19:59 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10336 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10336 found at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 with PID 10336 started at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1866: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10336 at Wed Aug 23 12:19:59 UTC 2017
kill -USR1 10336
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10336 killed at Wed Aug 23 12:19:59 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10393 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10393 found at Wed Aug 23 12:19:59 UTC 2017
selfserv_9223 with PID 10393 started at Wed Aug 23 12:19:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1867: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10393 at Wed Aug 23 12:19:59 UTC 2017
kill -USR1 10393
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10393 killed at Wed Aug 23 12:19:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10450 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10450 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10450 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1868: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10450 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10450
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10450 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10509 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10509 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10509 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1869: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10509 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10509
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10509 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10566 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10566 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1870: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10566 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10566
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10566 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10624 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10624 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10624 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1871: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10624 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10624
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10624 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10682 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10682 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10682 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1872: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10682 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10682
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10682 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10739 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10739 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10739 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1873: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10739 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10739
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10739 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10797 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10797 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1874: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10797 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10797
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10797 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10854 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10854 found at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 with PID 10854 started at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1875: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10854 at Wed Aug 23 12:20:00 UTC 2017
kill -USR1 10854
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10854 killed at Wed Aug 23 12:20:00 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10913 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10913 found at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 with PID 10913 started at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1876: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10913 at Wed Aug 23 12:20:01 UTC 2017
kill -USR1 10913
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10913 killed at Wed Aug 23 12:20:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10970 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10970 found at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 with PID 10970 started at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1877: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10970 at Wed Aug 23 12:20:01 UTC 2017
kill -USR1 10970
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10970 killed at Wed Aug 23 12:20:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11027 found at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 with PID 11027 started at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1878: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11027 at Wed Aug 23 12:20:01 UTC 2017
kill -USR1 11027
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11027 killed at Wed Aug 23 12:20:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11084 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11084 found at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 with PID 11084 started at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1879: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11084 at Wed Aug 23 12:20:01 UTC 2017
kill -USR1 11084
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11084 killed at Wed Aug 23 12:20:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11141 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11141 found at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 with PID 11141 started at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1880: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11141 at Wed Aug 23 12:20:01 UTC 2017
kill -USR1 11141
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11141 killed at Wed Aug 23 12:20:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11198 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11198 found at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 with PID 11198 started at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1881: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11198 at Wed Aug 23 12:20:01 UTC 2017
kill -USR1 11198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11198 killed at Wed Aug 23 12:20:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11255 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11255 found at Wed Aug 23 12:20:01 UTC 2017
selfserv_9223 with PID 11255 started at Wed Aug 23 12:20:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1882: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11255 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11255 killed at Wed Aug 23 12:20:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11312 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11312 found at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 with PID 11312 started at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1883: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11312 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11312
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11312 killed at Wed Aug 23 12:20:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11369 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11369 found at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 with PID 11369 started at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1884: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11369 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11369
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11369 killed at Wed Aug 23 12:20:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11426 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11426 found at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 with PID 11426 started at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1885: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11426 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11426
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11426 killed at Wed Aug 23 12:20:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11483 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11483 found at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 with PID 11483 started at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1886: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11483 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11483
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11483 killed at Wed Aug 23 12:20:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11540 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11540 found at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 with PID 11540 started at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1887: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11540 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11540
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11540 killed at Wed Aug 23 12:20:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11597 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11597 found at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 with PID 11597 started at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1888: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11597 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11597
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11597 killed at Wed Aug 23 12:20:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11655 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11655 found at Wed Aug 23 12:20:02 UTC 2017
selfserv_9223 with PID 11655 started at Wed Aug 23 12:20:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1889: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11655 at Wed Aug 23 12:20:02 UTC 2017
kill -USR1 11655
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11655 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11712 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11712 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 11712 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1890: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11712 at Wed Aug 23 12:20:03 UTC 2017
kill -USR1 11712
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11712 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11770 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11770 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 11770 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1891: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11770 at Wed Aug 23 12:20:03 UTC 2017
kill -USR1 11770
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11770 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11843 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11843 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 11843 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1892: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11843 at Wed Aug 23 12:20:03 UTC 2017
kill -USR1 11843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11843 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11900 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11900 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 11900 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1893: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11900 at Wed Aug 23 12:20:03 UTC 2017
kill -USR1 11900
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11900 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11957 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11957 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 11957 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1894: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11957 at Wed Aug 23 12:20:03 UTC 2017
kill -USR1 11957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11957 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12014 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12014 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 12014 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1895: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12014 at Wed Aug 23 12:20:03 UTC 2017
kill -USR1 12014
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12014 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12071 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12071 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 12071 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12071 at Wed Aug 23 12:20:03 UTC 2017
kill -USR1 12071
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12071 killed at Wed Aug 23 12:20:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12128 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12128 found at Wed Aug 23 12:20:03 UTC 2017
selfserv_9223 with PID 12128 started at Wed Aug 23 12:20:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12128 at Wed Aug 23 12:20:04 UTC 2017
kill -USR1 12128
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12128 killed at Wed Aug 23 12:20:04 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12185 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12185 found at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 with PID 12185 started at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1898: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12185 at Wed Aug 23 12:20:04 UTC 2017
kill -USR1 12185
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12185 killed at Wed Aug 23 12:20:04 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12242 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12242 found at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 with PID 12242 started at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1899: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12242 at Wed Aug 23 12:20:04 UTC 2017
kill -USR1 12242
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12242 killed at Wed Aug 23 12:20:04 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12300 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12300 found at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 with PID 12300 started at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12300 at Wed Aug 23 12:20:04 UTC 2017
kill -USR1 12300
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12300 killed at Wed Aug 23 12:20:04 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12358 found at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 with PID 12358 started at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12358 at Wed Aug 23 12:20:04 UTC 2017
kill -USR1 12358
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12358 killed at Wed Aug 23 12:20:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12426 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12426 found at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 with PID 12426 started at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1902: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12426 at Wed Aug 23 12:20:04 UTC 2017
kill -USR1 12426
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12426 killed at Wed Aug 23 12:20:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12483 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12483 found at Wed Aug 23 12:20:04 UTC 2017
selfserv_9223 with PID 12483 started at Wed Aug 23 12:20:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1903: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12483 at Wed Aug 23 12:20:04 UTC 2017
kill -USR1 12483
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12483 killed at Wed Aug 23 12:20:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12540 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12540 found at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 with PID 12540 started at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12540 at Wed Aug 23 12:20:05 UTC 2017
kill -USR1 12540
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12540 killed at Wed Aug 23 12:20:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12598 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12598 found at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 with PID 12598 started at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12598 at Wed Aug 23 12:20:05 UTC 2017
kill -USR1 12598
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12598 killed at Wed Aug 23 12:20:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12655 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12655 found at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 with PID 12655 started at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1906: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12655 at Wed Aug 23 12:20:05 UTC 2017
kill -USR1 12655
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12655 killed at Wed Aug 23 12:20:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12712 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12712 found at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 with PID 12712 started at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1907: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12712 at Wed Aug 23 12:20:05 UTC 2017
kill -USR1 12712
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12712 killed at Wed Aug 23 12:20:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12769 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12769 found at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 with PID 12769 started at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12769 at Wed Aug 23 12:20:05 UTC 2017
kill -USR1 12769
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12769 killed at Wed Aug 23 12:20:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12826 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12826 found at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 with PID 12826 started at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12826 at Wed Aug 23 12:20:05 UTC 2017
kill -USR1 12826
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12826 killed at Wed Aug 23 12:20:05 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12884 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12884 found at Wed Aug 23 12:20:05 UTC 2017
selfserv_9223 with PID 12884 started at Wed Aug 23 12:20:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1910: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12884 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 12884
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12884 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12942 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12942 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 12942 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1911: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12942 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 12942
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12942 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13022 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13022 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 13022 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13022 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 13022
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13022 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13085 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13085 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 13085 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13085 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 13085
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13085 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13149 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13149 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 13149 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1914: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13149 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 13149
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13149 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13212 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13212 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 13212 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1915: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13212 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 13212
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13212 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13275 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13275 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 13275 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1916: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13275 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 13275
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13275 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13338 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13338 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 13338 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1917: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13338 at Wed Aug 23 12:20:06 UTC 2017
kill -USR1 13338
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13338 killed at Wed Aug 23 12:20:06 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9223 starting at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13402 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13402 found at Wed Aug 23 12:20:06 UTC 2017
selfserv_9223 with PID 13402 started at Wed Aug 23 12:20:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13402 at Wed Aug 23 12:20:07 UTC 2017
kill -USR1 13402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13402 killed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9223 starting at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13465 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13465 found at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 with PID 13465 started at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #1919: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13465 at Wed Aug 23 12:20:07 UTC 2017
kill -USR1 13465
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13465 killed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9223 starting at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13528 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13528 found at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 with PID 13528 started at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1920: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13528 at Wed Aug 23 12:20:07 UTC 2017
kill -USR1 13528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13528 killed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9223 starting at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13591 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13591 found at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 with PID 13591 started at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1921: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13591 at Wed Aug 23 12:20:07 UTC 2017
kill -USR1 13591
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13591 killed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9223 starting at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13698 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13698 found at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 with PID 13698 started at Wed Aug 23 12:20:07 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: #1922: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 13698 at Wed Aug 23 12:20:07 UTC 2017
kill -USR1 13698
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13698 killed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9223 starting at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13769 found at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 with PID 13769 started at Wed Aug 23 12:20:07 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: #1923: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 13769 at Wed Aug 23 12:20:07 UTC 2017
kill -USR1 13769
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13769 killed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13840 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13840 found at Wed Aug 23 12:20:07 UTC 2017
selfserv_9223 with PID 13840 started at Wed Aug 23 12:20:07 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:07 UTC 2017
ssl.sh: #1924: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 13840 at Wed Aug 23 12:20:07 UTC 2017
kill -USR1 13840
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13840 killed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9223 starting at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13912 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13912 found at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 with PID 13912 started at Wed Aug 23 12:20:08 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: #1925: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 13912 at Wed Aug 23 12:20:08 UTC 2017
kill -USR1 13912
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13912 killed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9223 starting at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13983 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13983 found at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 with PID 13983 started at Wed Aug 23 12:20:08 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: #1926: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 13983 at Wed Aug 23 12:20:08 UTC 2017
kill -USR1 13983
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13983 killed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9223 starting at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14054 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14054 found at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 with PID 14054 started at Wed Aug 23 12:20:08 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: #1927: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14054 at Wed Aug 23 12:20:08 UTC 2017
kill -USR1 14054
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14054 killed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14125 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14125 found at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 with PID 14125 started at Wed Aug 23 12:20:08 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: #1928: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14125 at Wed Aug 23 12:20:08 UTC 2017
kill -USR1 14125
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14125 killed at Wed Aug 23 12:20:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9223 starting at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14203 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14203 found at Wed Aug 23 12:20:08 UTC 2017
selfserv_9223 with PID 14203 started at Wed Aug 23 12:20:08 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: #1929: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14203 at Wed Aug 23 12:20:09 UTC 2017
kill -USR1 14203
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14203 killed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14290 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14290 found at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 with PID 14290 started at Wed Aug 23 12:20:09 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: #1930: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14290 at Wed Aug 23 12:20:09 UTC 2017
kill -USR1 14290
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14290 killed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14361 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14361 found at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 with PID 14361 started at Wed Aug 23 12:20:09 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: #1931: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14361 at Wed Aug 23 12:20:09 UTC 2017
kill -USR1 14361
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14361 killed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14432 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14432 found at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 with PID 14432 started at Wed Aug 23 12:20:09 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: #1932: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14432 at Wed Aug 23 12:20:09 UTC 2017
kill -USR1 14432
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14432 killed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14503 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14503 found at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 with PID 14503 started at Wed Aug 23 12:20:09 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: #1933: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14503 at Wed Aug 23 12:20:09 UTC 2017
kill -USR1 14503
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14503 killed at Wed Aug 23 12:20:09 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14574 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14574 found at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 with PID 14574 started at Wed Aug 23 12:20:10 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: #1934: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14574 at Wed Aug 23 12:20:10 UTC 2017
kill -USR1 14574
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14574 killed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14645 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14645 found at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 with PID 14645 started at Wed Aug 23 12:20:10 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: #1935: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14645 at Wed Aug 23 12:20:10 UTC 2017
kill -USR1 14645
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14645 killed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14716 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14716 found at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 with PID 14716 started at Wed Aug 23 12:20:10 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: #1936: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14716 at Wed Aug 23 12:20:10 UTC 2017
kill -USR1 14716
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14716 killed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9223 starting at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14793 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14793 found at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 with PID 14793 started at Wed Aug 23 12:20:10 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: #1937: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14793 at Wed Aug 23 12:20:10 UTC 2017
kill -USR1 14793
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14793 killed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9223 starting at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14870 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14870 found at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 with PID 14870 started at Wed Aug 23 12:20:10 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: #1938: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14870 at Wed Aug 23 12:20:10 UTC 2017
kill -USR1 14870
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14870 killed at Wed Aug 23 12:20:10 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14958 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14958 found at Wed Aug 23 12:20:10 UTC 2017
selfserv_9223 with PID 14958 started at Wed Aug 23 12:20:10 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:11 UTC 2017
ssl.sh: #1939: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 14958 at Wed Aug 23 12:20:11 UTC 2017
kill -USR1 14958
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14958 killed at Wed Aug 23 12:20:11 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:11 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15028 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15028 found at Wed Aug 23 12:20:11 UTC 2017
selfserv_9223 with PID 15028 started at Wed Aug 23 12:20:11 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:12 UTC 2017
ssl.sh: #1940: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15028 at Wed Aug 23 12:20:12 UTC 2017
kill -USR1 15028
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15028 killed at Wed Aug 23 12:20:12 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15098 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15098 found at Wed Aug 23 12:20:12 UTC 2017
selfserv_9223 with PID 15098 started at Wed Aug 23 12:20:12 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:12 UTC 2017
ssl.sh: #1941: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15098 at Wed Aug 23 12:20:12 UTC 2017
kill -USR1 15098
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15098 killed at Wed Aug 23 12:20:12 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15168 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15168 found at Wed Aug 23 12:20:12 UTC 2017
selfserv_9223 with PID 15168 started at Wed Aug 23 12:20:12 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:13 UTC 2017
ssl.sh: #1942: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15168 at Wed Aug 23 12:20:13 UTC 2017
kill -USR1 15168
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15168 killed at Wed Aug 23 12:20:13 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:13 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15238 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15238 found at Wed Aug 23 12:20:13 UTC 2017
selfserv_9223 with PID 15238 started at Wed Aug 23 12:20:13 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: #1943: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15238 at Wed Aug 23 12:20:14 UTC 2017
kill -USR1 15238
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15238 killed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9223 starting at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15308 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15308 found at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 with PID 15308 started at Wed Aug 23 12:20:14 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: #1944: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15308 at Wed Aug 23 12:20:14 UTC 2017
kill -USR1 15308
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15308 killed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9223 starting at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15379 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15379 found at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 with PID 15379 started at Wed Aug 23 12:20:14 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: #1945: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15379 at Wed Aug 23 12:20:14 UTC 2017
kill -USR1 15379
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15379 killed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9223 starting at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15450 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15450 found at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 with PID 15450 started at Wed Aug 23 12:20:14 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: #1946: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15450 at Wed Aug 23 12:20:14 UTC 2017
kill -USR1 15450
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15450 killed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9223 starting at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15521 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15521 found at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 with PID 15521 started at Wed Aug 23 12:20:14 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: #1947: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15521 at Wed Aug 23 12:20:14 UTC 2017
kill -USR1 15521
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15521 killed at Wed Aug 23 12:20:14 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9223 starting at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15592 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15592 found at Wed Aug 23 12:20:14 UTC 2017
selfserv_9223 with PID 15592 started at Wed Aug 23 12:20:14 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: #1948: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15592 at Wed Aug 23 12:20:15 UTC 2017
kill -USR1 15592
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15592 killed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15678 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15678 found at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 with PID 15678 started at Wed Aug 23 12:20:15 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: #1949: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15678 at Wed Aug 23 12:20:15 UTC 2017
kill -USR1 15678
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15678 killed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15748 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15748 found at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 with PID 15748 started at Wed Aug 23 12:20:15 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: #1950: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15748 at Wed Aug 23 12:20:15 UTC 2017
kill -USR1 15748
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15748 killed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15819 found at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 with PID 15819 started at Wed Aug 23 12:20:15 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: #1951: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15819 at Wed Aug 23 12:20:15 UTC 2017
kill -USR1 15819
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15819 killed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15890 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15890 found at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 with PID 15890 started at Wed Aug 23 12:20:15 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: #1952: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15890 at Wed Aug 23 12:20:15 UTC 2017
kill -USR1 15890
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15890 killed at Wed Aug 23 12:20:15 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15960 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15960 found at Wed Aug 23 12:20:15 UTC 2017
selfserv_9223 with PID 15960 started at Wed Aug 23 12:20:15 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: #1953: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 15960 at Wed Aug 23 12:20:16 UTC 2017
kill -USR1 15960
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15960 killed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16031 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16031 found at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 with PID 16031 started at Wed Aug 23 12:20:16 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: #1954: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16031 at Wed Aug 23 12:20:16 UTC 2017
kill -USR1 16031
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16031 killed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16117 found at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 with PID 16117 started at Wed Aug 23 12:20:16 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: #1955: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16117 at Wed Aug 23 12:20:16 UTC 2017
kill -USR1 16117
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16117 killed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9223 starting at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16187 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16187 found at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 with PID 16187 started at Wed Aug 23 12:20:16 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: #1956: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16187 at Wed Aug 23 12:20:16 UTC 2017
kill -USR1 16187
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16187 killed at Wed Aug 23 12:20:16 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16258 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16258 found at Wed Aug 23 12:20:16 UTC 2017
selfserv_9223 with PID 16258 started at Wed Aug 23 12:20:16 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:17 UTC 2017
ssl.sh: #1957: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16258 at Wed Aug 23 12:20:17 UTC 2017
kill -USR1 16258
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16258 killed at Wed Aug 23 12:20:17 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16328 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16328 found at Wed Aug 23 12:20:17 UTC 2017
selfserv_9223 with PID 16328 started at Wed Aug 23 12:20:17 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:17 UTC 2017
ssl.sh: #1958: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16328 at Wed Aug 23 12:20:17 UTC 2017
kill -USR1 16328
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16328 killed at Wed Aug 23 12:20:17 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16408 found at Wed Aug 23 12:20:17 UTC 2017
selfserv_9223 with PID 16408 started at Wed Aug 23 12:20:17 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:19 UTC 2017
ssl.sh: #1959: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16408 at Wed Aug 23 12:20:19 UTC 2017
kill -USR1 16408
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16408 killed at Wed Aug 23 12:20:19 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9223 starting at Wed Aug 23 12:20:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16488 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16488 found at Wed Aug 23 12:20:19 UTC 2017
selfserv_9223 with PID 16488 started at Wed Aug 23 12:20:19 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:21 UTC 2017
ssl.sh: #1960: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16488 at Wed Aug 23 12:20:21 UTC 2017
kill -USR1 16488
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16488 killed at Wed Aug 23 12:20:21 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16558 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16558 found at Wed Aug 23 12:20:21 UTC 2017
selfserv_9223 with PID 16558 started at Wed Aug 23 12:20:21 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:22 UTC 2017
ssl.sh: #1961: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16558 at Wed Aug 23 12:20:22 UTC 2017
kill -USR1 16558
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16558 killed at Wed Aug 23 12:20:22 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16629 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16629 found at Wed Aug 23 12:20:22 UTC 2017
selfserv_9223 with PID 16629 started at Wed Aug 23 12:20:22 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:22 UTC 2017
ssl.sh: #1962: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16629 at Wed Aug 23 12:20:22 UTC 2017
kill -USR1 16629
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16629 killed at Wed Aug 23 12:20:22 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16699 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16699 found at Wed Aug 23 12:20:22 UTC 2017
selfserv_9223 with PID 16699 started at Wed Aug 23 12:20:22 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:22 UTC 2017
ssl.sh: #1963: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16699 at Wed Aug 23 12:20:22 UTC 2017
kill -USR1 16699
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16699 killed at Wed Aug 23 12:20:22 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16785 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16785 found at Wed Aug 23 12:20:22 UTC 2017
selfserv_9223 with PID 16785 started at Wed Aug 23 12:20:22 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:23 UTC 2017
ssl.sh: #1964: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16785 at Wed Aug 23 12:20:23 UTC 2017
kill -USR1 16785
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16785 killed at Wed Aug 23 12:20:23 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16855 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16855 found at Wed Aug 23 12:20:23 UTC 2017
selfserv_9223 with PID 16855 started at Wed Aug 23 12:20:23 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:23 UTC 2017
ssl.sh: #1965: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16855 at Wed Aug 23 12:20:23 UTC 2017
kill -USR1 16855
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16855 killed at Wed Aug 23 12:20:23 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16941 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16941 found at Wed Aug 23 12:20:23 UTC 2017
selfserv_9223 with PID 16941 started at Wed Aug 23 12:20:23 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:26 UTC 2017
ssl.sh: #1966: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 16941 at Wed Aug 23 12:20:26 UTC 2017
kill -USR1 16941
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16941 killed at Wed Aug 23 12:20:26 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17018 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17018 found at Wed Aug 23 12:20:26 UTC 2017
selfserv_9223 with PID 17018 started at Wed Aug 23 12:20:26 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:29 UTC 2017
ssl.sh: #1967: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 17018 at Wed Aug 23 12:20:29 UTC 2017
kill -USR1 17018
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 17018 killed at Wed Aug 23 12:20:29 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9223 starting at Wed Aug 23 12:20:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17099 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17099 found at Wed Aug 23 12:20:29 UTC 2017
selfserv_9223 with PID 17099 started at Wed Aug 23 12:20:29 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1968: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2020: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2021: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2026: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2027: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2032: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2033: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2038: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2039: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2044: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2045: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2049: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2053: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2057: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2061: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2065: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2067: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2068: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2069: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2070: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2071: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2072: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2073: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2074: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2075: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2076: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2077: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2078: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2079: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2080: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2081: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2082: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2083: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2084: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2085: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2086: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2087: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2088: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 17099 at Wed Aug 23 12:20:33 UTC 2017
kill -USR1 17099
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 17099 killed at Wed Aug 23 12:20:33 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19375 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19375 found at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 with PID 19375 started at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2089: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19375 at Wed Aug 23 12:20:33 UTC 2017
kill -USR1 19375
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19375 killed at Wed Aug 23 12:20:33 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19432 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19432 found at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 with PID 19432 started at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2090: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19432 at Wed Aug 23 12:20:33 UTC 2017
kill -USR1 19432
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19432 killed at Wed Aug 23 12:20:33 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19489 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19489 found at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 with PID 19489 started at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2091: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19489 at Wed Aug 23 12:20:33 UTC 2017
kill -USR1 19489
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19489 killed at Wed Aug 23 12:20:33 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19546 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19546 found at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 with PID 19546 started at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2092: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 19546 at Wed Aug 23 12:20:33 UTC 2017
kill -USR1 19546
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19546 killed at Wed Aug 23 12:20:33 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19603 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19603 found at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 with PID 19603 started at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2093: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 19603 at Wed Aug 23 12:20:33 UTC 2017
kill -USR1 19603
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19603 killed at Wed Aug 23 12:20:33 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19660 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19660 found at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 with PID 19660 started at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2094: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19660 at Wed Aug 23 12:20:33 UTC 2017
kill -USR1 19660
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19660 killed at Wed Aug 23 12:20:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19717 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19717 found at Wed Aug 23 12:20:33 UTC 2017
selfserv_9223 with PID 19717 started at Wed Aug 23 12:20:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2095: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19717 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 19717
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19717 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19775 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19775 found at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 with PID 19775 started at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2096: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19775 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 19775
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19775 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19833 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19833 found at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 with PID 19833 started at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2097: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19833 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 19833
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19833 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19890 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19890 found at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 with PID 19890 started at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2098: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 19890 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 19890
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19890 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19949 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19949 found at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 with PID 19949 started at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2099: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 19949 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 19949
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19949 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20006 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20006 found at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 with PID 20006 started at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2100: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20006 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 20006
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20006 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20063 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20063 found at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 with PID 20063 started at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2101: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20063 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 20063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20063 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20120 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20120 found at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 with PID 20120 started at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2102: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20120 at Wed Aug 23 12:20:34 UTC 2017
kill -USR1 20120
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20120 killed at Wed Aug 23 12:20:34 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20177 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20177 found at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 with PID 20177 started at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2103: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20177 at Wed Aug 23 12:20:35 UTC 2017
kill -USR1 20177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20177 killed at Wed Aug 23 12:20:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20235 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20235 found at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 with PID 20235 started at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2104: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 20235 at Wed Aug 23 12:20:35 UTC 2017
kill -USR1 20235
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20235 killed at Wed Aug 23 12:20:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20293 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20293 found at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 with PID 20293 started at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2105: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 20293 at Wed Aug 23 12:20:35 UTC 2017
kill -USR1 20293
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20293 killed at Wed Aug 23 12:20:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20350 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20350 found at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 with PID 20350 started at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2106: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20350 at Wed Aug 23 12:20:35 UTC 2017
kill -USR1 20350
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20350 killed at Wed Aug 23 12:20:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20407 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20407 found at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 with PID 20407 started at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2107: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20407 at Wed Aug 23 12:20:35 UTC 2017
kill -USR1 20407
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20407 killed at Wed Aug 23 12:20:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20464 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20464 found at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 with PID 20464 started at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2108: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20464 at Wed Aug 23 12:20:35 UTC 2017
kill -USR1 20464
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20464 killed at Wed Aug 23 12:20:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20521 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20521 found at Wed Aug 23 12:20:35 UTC 2017
selfserv_9223 with PID 20521 started at Wed Aug 23 12:20:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2109: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20521 at Wed Aug 23 12:20:36 UTC 2017
kill -USR1 20521
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20521 killed at Wed Aug 23 12:20:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20578 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20578 found at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 with PID 20578 started at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2110: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 20578 at Wed Aug 23 12:20:36 UTC 2017
kill -USR1 20578
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20578 killed at Wed Aug 23 12:20:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20635 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20635 found at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 with PID 20635 started at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2111: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 20635 at Wed Aug 23 12:20:36 UTC 2017
kill -USR1 20635
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20635 killed at Wed Aug 23 12:20:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20692 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20692 found at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 with PID 20692 started at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2112: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20692 at Wed Aug 23 12:20:36 UTC 2017
kill -USR1 20692
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20692 killed at Wed Aug 23 12:20:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20750 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20750 found at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 with PID 20750 started at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2113: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20750 at Wed Aug 23 12:20:36 UTC 2017
kill -USR1 20750
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20750 killed at Wed Aug 23 12:20:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20807 found at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 with PID 20807 started at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2114: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20807 at Wed Aug 23 12:20:36 UTC 2017
kill -USR1 20807
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20807 killed at Wed Aug 23 12:20:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20864 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20864 found at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 with PID 20864 started at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2115: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20864 at Wed Aug 23 12:20:36 UTC 2017
kill -USR1 20864
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20864 killed at Wed Aug 23 12:20:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20921 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20921 found at Wed Aug 23 12:20:36 UTC 2017
selfserv_9223 with PID 20921 started at Wed Aug 23 12:20:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2116: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 20921 at Wed Aug 23 12:20:37 UTC 2017
kill -USR1 20921
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20921 killed at Wed Aug 23 12:20:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20979 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20979 found at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 with PID 20979 started at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2117: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 20979 at Wed Aug 23 12:20:37 UTC 2017
kill -USR1 20979
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20979 killed at Wed Aug 23 12:20:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21036 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21036 found at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 with PID 21036 started at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2118: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21036 at Wed Aug 23 12:20:37 UTC 2017
kill -USR1 21036
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21036 killed at Wed Aug 23 12:20:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21109 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21109 found at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 with PID 21109 started at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2119: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21109 at Wed Aug 23 12:20:37 UTC 2017
kill -USR1 21109
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21109 killed at Wed Aug 23 12:20:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21166 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21166 found at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 with PID 21166 started at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2120: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21166 at Wed Aug 23 12:20:37 UTC 2017
kill -USR1 21166
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21166 killed at Wed Aug 23 12:20:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21223 found at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 with PID 21223 started at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2121: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21223 at Wed Aug 23 12:20:37 UTC 2017
kill -USR1 21223
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21223 killed at Wed Aug 23 12:20:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21280 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21280 found at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 with PID 21280 started at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2122: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21280 at Wed Aug 23 12:20:37 UTC 2017
kill -USR1 21280
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21280 killed at Wed Aug 23 12:20:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21337 found at Wed Aug 23 12:20:37 UTC 2017
selfserv_9223 with PID 21337 started at Wed Aug 23 12:20:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21337 at Wed Aug 23 12:20:38 UTC 2017
kill -USR1 21337
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21337 killed at Wed Aug 23 12:20:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21394 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21394 found at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 with PID 21394 started at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21394 at Wed Aug 23 12:20:38 UTC 2017
kill -USR1 21394
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21394 killed at Wed Aug 23 12:20:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21452 found at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 with PID 21452 started at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2125: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21452 at Wed Aug 23 12:20:38 UTC 2017
kill -USR1 21452
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21452 killed at Wed Aug 23 12:20:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21510 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21510 found at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 with PID 21510 started at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2126: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21510 at Wed Aug 23 12:20:38 UTC 2017
kill -USR1 21510
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21510 killed at Wed Aug 23 12:20:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21567 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21567 found at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 with PID 21567 started at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21567 at Wed Aug 23 12:20:38 UTC 2017
kill -USR1 21567
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21567 killed at Wed Aug 23 12:20:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21624 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21624 found at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 with PID 21624 started at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21624 at Wed Aug 23 12:20:38 UTC 2017
kill -USR1 21624
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21624 killed at Wed Aug 23 12:20:38 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21681 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21681 found at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 with PID 21681 started at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2129: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21681 at Wed Aug 23 12:20:38 UTC 2017
kill -USR1 21681
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21681 killed at Wed Aug 23 12:20:38 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21739 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21739 found at Wed Aug 23 12:20:38 UTC 2017
selfserv_9223 with PID 21739 started at Wed Aug 23 12:20:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2130: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21739 at Wed Aug 23 12:20:39 UTC 2017
kill -USR1 21739
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21739 killed at Wed Aug 23 12:20:39 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21796 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21796 found at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 with PID 21796 started at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21796 at Wed Aug 23 12:20:39 UTC 2017
kill -USR1 21796
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21796 killed at Wed Aug 23 12:20:39 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21855 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21855 found at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 with PID 21855 started at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21855 at Wed Aug 23 12:20:39 UTC 2017
kill -USR1 21855
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21855 killed at Wed Aug 23 12:20:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21912 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21912 found at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 with PID 21912 started at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2133: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21912 at Wed Aug 23 12:20:39 UTC 2017
kill -USR1 21912
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21912 killed at Wed Aug 23 12:20:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21969 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21969 found at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 with PID 21969 started at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2134: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21969 at Wed Aug 23 12:20:39 UTC 2017
kill -USR1 21969
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21969 killed at Wed Aug 23 12:20:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22027 found at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 with PID 22027 started at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22027 at Wed Aug 23 12:20:39 UTC 2017
kill -USR1 22027
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22027 killed at Wed Aug 23 12:20:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22086 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22086 found at Wed Aug 23 12:20:39 UTC 2017
selfserv_9223 with PID 22086 started at Wed Aug 23 12:20:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22086 at Wed Aug 23 12:20:39 UTC 2017
kill -USR1 22086
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22086 killed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22146 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22146 found at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 with PID 22146 started at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2137: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22146 at Wed Aug 23 12:20:40 UTC 2017
kill -USR1 22146
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22146 killed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22203 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22203 found at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 with PID 22203 started at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2138: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22203 at Wed Aug 23 12:20:40 UTC 2017
kill -USR1 22203
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22203 killed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9223 starting at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22346 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22346 found at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 with PID 22346 started at Wed Aug 23 12:20:40 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: #2139: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22346 at Wed Aug 23 12:20:40 UTC 2017
kill -USR1 22346
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22346 killed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9223 starting at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22417 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22417 found at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 with PID 22417 started at Wed Aug 23 12:20:40 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: #2140: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22417 at Wed Aug 23 12:20:40 UTC 2017
kill -USR1 22417
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22417 killed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22489 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22489 found at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 with PID 22489 started at Wed Aug 23 12:20:40 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: #2141: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22489 at Wed Aug 23 12:20:40 UTC 2017
kill -USR1 22489
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22489 killed at Wed Aug 23 12:20:40 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9223 starting at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22560 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22560 found at Wed Aug 23 12:20:40 UTC 2017
selfserv_9223 with PID 22560 started at Wed Aug 23 12:20:40 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: #2142: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22560 at Wed Aug 23 12:20:41 UTC 2017
kill -USR1 22560
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22560 killed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9223 starting at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22631 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22631 found at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 with PID 22631 started at Wed Aug 23 12:20:41 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: #2143: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22631 at Wed Aug 23 12:20:41 UTC 2017
kill -USR1 22631
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22631 killed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9223 starting at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22702 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22702 found at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 with PID 22702 started at Wed Aug 23 12:20:41 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: #2144: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22702 at Wed Aug 23 12:20:41 UTC 2017
kill -USR1 22702
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22702 killed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22773 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22773 found at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 with PID 22773 started at Wed Aug 23 12:20:41 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: #2145: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22773 at Wed Aug 23 12:20:41 UTC 2017
kill -USR1 22773
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22773 killed at Wed Aug 23 12:20:41 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22861 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22861 found at Wed Aug 23 12:20:41 UTC 2017
selfserv_9223 with PID 22861 started at Wed Aug 23 12:20:41 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: #2146: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22861 at Wed Aug 23 12:20:42 UTC 2017
kill -USR1 22861
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22861 killed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22932 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22932 found at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 with PID 22932 started at Wed Aug 23 12:20:42 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: #2147: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 22932 at Wed Aug 23 12:20:42 UTC 2017
kill -USR1 22932
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22932 killed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23002 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23002 found at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 with PID 23002 started at Wed Aug 23 12:20:42 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: #2148: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23002 at Wed Aug 23 12:20:42 UTC 2017
kill -USR1 23002
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23002 killed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23075 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23075 found at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 with PID 23075 started at Wed Aug 23 12:20:42 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: #2149: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23075 at Wed Aug 23 12:20:42 UTC 2017
kill -USR1 23075
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23075 killed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23146 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23146 found at Wed Aug 23 12:20:42 UTC 2017
selfserv_9223 with PID 23146 started at Wed Aug 23 12:20:42 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:42 UTC 2017
ssl.sh: #2150: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23146 at Wed Aug 23 12:20:43 UTC 2017
kill -USR1 23146
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23146 killed at Wed Aug 23 12:20:43 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23217 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23217 found at Wed Aug 23 12:20:43 UTC 2017
selfserv_9223 with PID 23217 started at Wed Aug 23 12:20:43 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:43 UTC 2017
ssl.sh: #2151: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23217 at Wed Aug 23 12:20:43 UTC 2017
kill -USR1 23217
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23217 killed at Wed Aug 23 12:20:43 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:20:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23288 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23288 found at Wed Aug 23 12:20:43 UTC 2017
selfserv_9223 with PID 23288 started at Wed Aug 23 12:20:43 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:43 UTC 2017
ssl.sh: #2152: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23288 at Wed Aug 23 12:20:43 UTC 2017
kill -USR1 23288
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23288 killed at Wed Aug 23 12:20:43 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23378 found at Wed Aug 23 12:20:43 UTC 2017
selfserv_9223 with PID 23378 started at Wed Aug 23 12:20:43 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:44 UTC 2017
ssl.sh: #2153: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23378 at Wed Aug 23 12:20:44 UTC 2017
kill -USR1 23378
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23378 killed at Wed Aug 23 12:20:44 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23450 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23450 found at Wed Aug 23 12:20:44 UTC 2017
selfserv_9223 with PID 23450 started at Wed Aug 23 12:20:44 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:45 UTC 2017
ssl.sh: #2154: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23450 at Wed Aug 23 12:20:45 UTC 2017
kill -USR1 23450
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23450 killed at Wed Aug 23 12:20:45 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23520 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23520 found at Wed Aug 23 12:20:45 UTC 2017
selfserv_9223 with PID 23520 started at Wed Aug 23 12:20:45 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:46 UTC 2017
ssl.sh: #2155: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23520 at Wed Aug 23 12:20:46 UTC 2017
kill -USR1 23520
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23520 killed at Wed Aug 23 12:20:46 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23590 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23590 found at Wed Aug 23 12:20:46 UTC 2017
selfserv_9223 with PID 23590 started at Wed Aug 23 12:20:46 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:47 UTC 2017
ssl.sh: #2156: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23590 at Wed Aug 23 12:20:47 UTC 2017
kill -USR1 23590
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23590 killed at Wed Aug 23 12:20:47 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23660 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23660 found at Wed Aug 23 12:20:47 UTC 2017
selfserv_9223 with PID 23660 started at Wed Aug 23 12:20:47 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:47 UTC 2017
ssl.sh: #2157: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23660 at Wed Aug 23 12:20:47 UTC 2017
kill -USR1 23660
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23660 killed at Wed Aug 23 12:20:47 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9223 starting at Wed Aug 23 12:20:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23730 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23730 found at Wed Aug 23 12:20:47 UTC 2017
selfserv_9223 with PID 23730 started at Wed Aug 23 12:20:47 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:47 UTC 2017
ssl.sh: #2158: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23730 at Wed Aug 23 12:20:47 UTC 2017
kill -USR1 23730
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23730 killed at Wed Aug 23 12:20:47 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9223 starting at Wed Aug 23 12:20:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23801 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23801 found at Wed Aug 23 12:20:47 UTC 2017
selfserv_9223 with PID 23801 started at Wed Aug 23 12:20:47 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: #2159: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23801 at Wed Aug 23 12:20:48 UTC 2017
kill -USR1 23801
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23801 killed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9223 starting at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23872 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23872 found at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 with PID 23872 started at Wed Aug 23 12:20:48 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: #2160: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23872 at Wed Aug 23 12:20:48 UTC 2017
kill -USR1 23872
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23872 killed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9223 starting at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23943 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23943 found at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 with PID 23943 started at Wed Aug 23 12:20:48 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: #2161: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 23943 at Wed Aug 23 12:20:48 UTC 2017
kill -USR1 23943
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23943 killed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9223 starting at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24014 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24014 found at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 with PID 24014 started at Wed Aug 23 12:20:48 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: #2162: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24014 at Wed Aug 23 12:20:48 UTC 2017
kill -USR1 24014
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24014 killed at Wed Aug 23 12:20:48 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24101 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24101 found at Wed Aug 23 12:20:48 UTC 2017
selfserv_9223 with PID 24101 started at Wed Aug 23 12:20:48 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: #2163: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24101 at Wed Aug 23 12:20:49 UTC 2017
kill -USR1 24101
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24101 killed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24171 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24171 found at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 with PID 24171 started at Wed Aug 23 12:20:49 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: #2164: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24171 at Wed Aug 23 12:20:49 UTC 2017
kill -USR1 24171
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24171 killed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24242 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24242 found at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 with PID 24242 started at Wed Aug 23 12:20:49 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: #2165: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24242 at Wed Aug 23 12:20:49 UTC 2017
kill -USR1 24242
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24242 killed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24312 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24312 found at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 with PID 24312 started at Wed Aug 23 12:20:49 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: #2166: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24312 at Wed Aug 23 12:20:49 UTC 2017
kill -USR1 24312
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24312 killed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24382 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24382 found at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 with PID 24382 started at Wed Aug 23 12:20:49 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: #2167: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24382 at Wed Aug 23 12:20:49 UTC 2017
kill -USR1 24382
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24382 killed at Wed Aug 23 12:20:49 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24453 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24453 found at Wed Aug 23 12:20:49 UTC 2017
selfserv_9223 with PID 24453 started at Wed Aug 23 12:20:49 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: #2168: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24453 at Wed Aug 23 12:20:50 UTC 2017
kill -USR1 24453
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24453 killed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24539 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24539 found at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 with PID 24539 started at Wed Aug 23 12:20:50 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: #2169: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24539 at Wed Aug 23 12:20:50 UTC 2017
kill -USR1 24539
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24539 killed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9223 starting at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24610 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24610 found at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 with PID 24610 started at Wed Aug 23 12:20:50 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: #2170: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24610 at Wed Aug 23 12:20:50 UTC 2017
kill -USR1 24610
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24610 killed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24681 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24681 found at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 with PID 24681 started at Wed Aug 23 12:20:50 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: #2171: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24681 at Wed Aug 23 12:20:50 UTC 2017
kill -USR1 24681
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24681 killed at Wed Aug 23 12:20:50 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24751 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24751 found at Wed Aug 23 12:20:50 UTC 2017
selfserv_9223 with PID 24751 started at Wed Aug 23 12:20:50 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:51 UTC 2017
ssl.sh: #2172: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24751 at Wed Aug 23 12:20:51 UTC 2017
kill -USR1 24751
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24751 killed at Wed Aug 23 12:20:51 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24832 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24832 found at Wed Aug 23 12:20:51 UTC 2017
selfserv_9223 with PID 24832 started at Wed Aug 23 12:20:51 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:51 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:53 UTC 2017
ssl.sh: #2173: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24832 at Wed Aug 23 12:20:53 UTC 2017
kill -USR1 24832
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24832 killed at Wed Aug 23 12:20:53 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9223 starting at Wed Aug 23 12:20:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24912 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24912 found at Wed Aug 23 12:20:54 UTC 2017
selfserv_9223 with PID 24912 started at Wed Aug 23 12:20:54 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:54 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:56 UTC 2017
ssl.sh: #2174: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24912 at Wed Aug 23 12:20:56 UTC 2017
kill -USR1 24912
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24912 killed at Wed Aug 23 12:20:56 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24982 found at Wed Aug 23 12:20:56 UTC 2017
selfserv_9223 with PID 24982 started at Wed Aug 23 12:20:56 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:57 UTC 2017
ssl.sh: #2175: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 24982 at Wed Aug 23 12:20:57 UTC 2017
kill -USR1 24982
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24982 killed at Wed Aug 23 12:20:57 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25052 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25052 found at Wed Aug 23 12:20:57 UTC 2017
selfserv_9223 with PID 25052 started at Wed Aug 23 12:20:57 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:57 UTC 2017
ssl.sh: #2176: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 25052 at Wed Aug 23 12:20:57 UTC 2017
kill -USR1 25052
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25052 killed at Wed Aug 23 12:20:57 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9223 starting at Wed Aug 23 12:20:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25122 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25122 found at Wed Aug 23 12:20:57 UTC 2017
selfserv_9223 with PID 25122 started at Wed Aug 23 12:20:57 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:57 UTC 2017
ssl.sh: #2177: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 25122 at Wed Aug 23 12:20:57 UTC 2017
kill -USR1 25122
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25122 killed at Wed Aug 23 12:20:57 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25209 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25209 found at Wed Aug 23 12:20:57 UTC 2017
selfserv_9223 with PID 25209 started at Wed Aug 23 12:20:57 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:20:58 UTC 2017
ssl.sh: #2178: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 25209 at Wed Aug 23 12:20:58 UTC 2017
kill -USR1 25209
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25209 killed at Wed Aug 23 12:20:58 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25279 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25279 found at Wed Aug 23 12:20:58 UTC 2017
selfserv_9223 with PID 25279 started at Wed Aug 23 12:20:58 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:20:58 UTC 2017
ssl.sh: #2179: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 25279 at Wed Aug 23 12:20:58 UTC 2017
kill -USR1 25279
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25279 killed at Wed Aug 23 12:20:58 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:20:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:20:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25365 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25365 found at Wed Aug 23 12:20:58 UTC 2017
selfserv_9223 with PID 25365 started at Wed Aug 23 12:20:58 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:20:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:21:02 UTC 2017
ssl.sh: #2180: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 25365 at Wed Aug 23 12:21:02 UTC 2017
kill -USR1 25365
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25365 killed at Wed Aug 23 12:21:02 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:21:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:21:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25436 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25436 found at Wed Aug 23 12:21:02 UTC 2017
selfserv_9223 with PID 25436 started at Wed Aug 23 12:21:02 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:21:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:21:06 UTC 2017
ssl.sh: #2181: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 25436 at Wed Aug 23 12:21:06 UTC 2017
kill -USR1 25436
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25436 killed at Wed Aug 23 12:21:06 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2182:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -list
ssl.sh: #2183:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2184:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2185:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2186:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2187:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2188:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -list
ssl.sh: #2189:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2190:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2191:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2192:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2193:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9223 starting at Wed Aug 23 12:21:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:21:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25639 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25639 found at Wed Aug 23 12:21:07 UTC 2017
selfserv_9223 with PID 25639 started at Wed Aug 23 12:21:07 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2194: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2243: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2244: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2246: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2247: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2249: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2250: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2252: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2253: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2255: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2256: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2258: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2260: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2262: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2264: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2266: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2270: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2272: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2275: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2276: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2277: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2278: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2279: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2280: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2281: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2282: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2283: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2284: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2285: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2286: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2287: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2288: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2289: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2290: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2291: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2292: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2293: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2294: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2295: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2296: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25639 at Wed Aug 23 12:21:13 UTC 2017
kill -USR1 25639
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25639 killed at Wed Aug 23 12:21:13 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:21:13 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:21:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27914 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27914 found at Wed Aug 23 12:21:13 UTC 2017
selfserv_9223 with PID 27914 started at Wed Aug 23 12:21:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2315: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27914 at Wed Aug 23 12:21:14 UTC 2017
kill -USR1 27914
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27914 killed at Wed Aug 23 12:21:14 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:21:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:21:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27971 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27971 found at Wed Aug 23 12:21:14 UTC 2017
selfserv_9223 with PID 27971 started at Wed Aug 23 12:21:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2316: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27971 at Wed Aug 23 12:21:40 UTC 2017
kill -USR1 27971
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27971 killed at Wed Aug 23 12:21:40 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:21:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:21:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28029 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28029 found at Wed Aug 23 12:21:40 UTC 2017
selfserv_9223 with PID 28029 started at Wed Aug 23 12:21:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2317: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28029 at Wed Aug 23 12:21:40 UTC 2017
kill -USR1 28029
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28029 killed at Wed Aug 23 12:21:40 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:21:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:21:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28092 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28092 found at Wed Aug 23 12:21:40 UTC 2017
selfserv_9223 with PID 28092 started at Wed Aug 23 12:21:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2318: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28092 at Wed Aug 23 12:21:40 UTC 2017
kill -USR1 28092
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28092 killed at Wed Aug 23 12:21:40 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:21:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:21:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28149 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28149 found at Wed Aug 23 12:21:40 UTC 2017
selfserv_9223 with PID 28149 started at Wed Aug 23 12:21:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2319: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28149 at Wed Aug 23 12:22:03 UTC 2017
kill -USR1 28149
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28149 killed at Wed Aug 23 12:22:03 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:22:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28206 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28206 found at Wed Aug 23 12:22:03 UTC 2017
selfserv_9223 with PID 28206 started at Wed Aug 23 12:22:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2320: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28206 at Wed Aug 23 12:22:03 UTC 2017
kill -USR1 28206
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28206 killed at Wed Aug 23 12:22:03 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:22:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28269 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28269 found at Wed Aug 23 12:22:03 UTC 2017
selfserv_9223 with PID 28269 started at Wed Aug 23 12:22:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2321: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28269 at Wed Aug 23 12:22:03 UTC 2017
kill -USR1 28269
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28269 killed at Wed Aug 23 12:22:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:22:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28326 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28326 found at Wed Aug 23 12:22:03 UTC 2017
selfserv_9223 with PID 28326 started at Wed Aug 23 12:22:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2322: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28326 at Wed Aug 23 12:22:29 UTC 2017
kill -USR1 28326
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28326 killed at Wed Aug 23 12:22:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:22:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28394 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28394 found at Wed Aug 23 12:22:29 UTC 2017
selfserv_9223 with PID 28394 started at Wed Aug 23 12:22:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2323: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28394 at Wed Aug 23 12:22:29 UTC 2017
kill -USR1 28394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28394 killed at Wed Aug 23 12:22:29 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:22:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28458 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28458 found at Wed Aug 23 12:22:29 UTC 2017
selfserv_9223 with PID 28458 started at Wed Aug 23 12:22:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2324: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28458 at Wed Aug 23 12:22:30 UTC 2017
kill -USR1 28458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28458 killed at Wed Aug 23 12:22:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:22:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28515 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28515 found at Wed Aug 23 12:22:30 UTC 2017
selfserv_9223 with PID 28515 started at Wed Aug 23 12:22:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2325: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28515 at Wed Aug 23 12:22:56 UTC 2017
kill -USR1 28515
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28515 killed at Wed Aug 23 12:22:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:22:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28573 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28573 found at Wed Aug 23 12:22:56 UTC 2017
selfserv_9223 with PID 28573 started at Wed Aug 23 12:22:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2326: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28573 at Wed Aug 23 12:22:56 UTC 2017
kill -USR1 28573
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28573 killed at Wed Aug 23 12:22:56 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:22:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28637 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28637 found at Wed Aug 23 12:22:56 UTC 2017
selfserv_9223 with PID 28637 started at Wed Aug 23 12:22:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2327: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28637 at Wed Aug 23 12:22:56 UTC 2017
kill -USR1 28637
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28637 killed at Wed Aug 23 12:22:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:22:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:22:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28695 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28695 found at Wed Aug 23 12:22:56 UTC 2017
selfserv_9223 with PID 28695 started at Wed Aug 23 12:22:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2328: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28695 at Wed Aug 23 12:23:19 UTC 2017
kill -USR1 28695
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28695 killed at Wed Aug 23 12:23:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:23:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:23:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28762 found at Wed Aug 23 12:23:19 UTC 2017
selfserv_9223 with PID 28762 started at Wed Aug 23 12:23:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2329: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28762 at Wed Aug 23 12:23:19 UTC 2017
kill -USR1 28762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28762 killed at Wed Aug 23 12:23:19 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:23:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:23:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28839 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28839 found at Wed Aug 23 12:23:19 UTC 2017
selfserv_9223 with PID 28839 started at Wed Aug 23 12:23:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2330: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28839 at Wed Aug 23 12:23:45 UTC 2017
kill -USR1 28839
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28839 killed at Wed Aug 23 12:23:45 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:23:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:23:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28897 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28897 found at Wed Aug 23 12:23:45 UTC 2017
selfserv_9223 with PID 28897 started at Wed Aug 23 12:23:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2331: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28897 at Wed Aug 23 12:23:45 UTC 2017
kill -USR1 28897
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28897 killed at Wed Aug 23 12:23:45 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:23:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:23:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28958 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28958 found at Wed Aug 23 12:23:45 UTC 2017
selfserv_9223 with PID 28958 started at Wed Aug 23 12:23:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2332: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28958 at Wed Aug 23 12:24:09 UTC 2017
kill -USR1 28958
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28958 killed at Wed Aug 23 12:24:09 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:24:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:24:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29025 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29025 found at Wed Aug 23 12:24:09 UTC 2017
selfserv_9223 with PID 29025 started at Wed Aug 23 12:24:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2333: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29025 at Wed Aug 23 12:24:09 UTC 2017
kill -USR1 29025
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29025 killed at Wed Aug 23 12:24:09 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:24:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:24:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29086 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29086 found at Wed Aug 23 12:24:09 UTC 2017
selfserv_9223 with PID 29086 started at Wed Aug 23 12:24:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2334: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29086 at Wed Aug 23 12:24:35 UTC 2017
kill -USR1 29086
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29086 killed at Wed Aug 23 12:24:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:24:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:24:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29150 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29150 found at Wed Aug 23 12:24:35 UTC 2017
selfserv_9223 with PID 29150 started at Wed Aug 23 12:24:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2335: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29150 at Wed Aug 23 12:24:35 UTC 2017
kill -USR1 29150
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29150 killed at Wed Aug 23 12:24:35 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:24:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:24:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29211 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29211 found at Wed Aug 23 12:24:35 UTC 2017
selfserv_9223 with PID 29211 started at Wed Aug 23 12:24:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2336: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29211 at Wed Aug 23 12:25:01 UTC 2017
kill -USR1 29211
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29211 killed at Wed Aug 23 12:25:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29269 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29269 found at Wed Aug 23 12:25:01 UTC 2017
selfserv_9223 with PID 29269 started at Wed Aug 23 12:25:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2337: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29269 at Wed Aug 23 12:25:01 UTC 2017
kill -USR1 29269
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29269 killed at Wed Aug 23 12:25:01 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:25:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29330 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29330 found at Wed Aug 23 12:25:01 UTC 2017
selfserv_9223 with PID 29330 started at Wed Aug 23 12:25:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2338: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29330 at Wed Aug 23 12:25:24 UTC 2017
kill -USR1 29330
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29330 killed at Wed Aug 23 12:25:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29425 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29425 found at Wed Aug 23 12:25:24 UTC 2017
selfserv_9223 with PID 29425 started at Wed Aug 23 12:25:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2339: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29425 at Wed Aug 23 12:25:24 UTC 2017
kill -USR1 29425
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29425 killed at Wed Aug 23 12:25:24 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9223 starting at Wed Aug 23 12:25:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29503 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29503 found at Wed Aug 23 12:25:24 UTC 2017
selfserv_9223 with PID 29503 started at Wed Aug 23 12:25:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29503 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29503
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29503 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29566 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29566 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 29566 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29566 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29566
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29566 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29629 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29629 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 29629 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2342: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29629 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29629
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29629 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29692 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29692 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 29692 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2343: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29692 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29692
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29692 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29755 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29755 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 29755 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2344: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29755 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29755
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29755 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29818 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29818 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 29818 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2345: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29818 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29818
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29818 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29881 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29881 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 29881 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29881 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29881
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29881 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29944 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29944 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 29944 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2347: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29944 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 29944
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29944 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30008 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30008 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 30008 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2348: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30008 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 30008
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30008 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30073 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30073 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 30073 started at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2349: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30073 at Wed Aug 23 12:25:25 UTC 2017
kill -USR1 30073
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30073 killed at Wed Aug 23 12:25:25 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30172 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30172 found at Wed Aug 23 12:25:25 UTC 2017
selfserv_9223 with PID 30172 started at Wed Aug 23 12:25:25 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: #2350: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30172 at Wed Aug 23 12:25:26 UTC 2017
kill -USR1 30172
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30172 killed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30244 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30244 found at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 with PID 30244 started at Wed Aug 23 12:25:26 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: #2351: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30244 at Wed Aug 23 12:25:26 UTC 2017
kill -USR1 30244
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30244 killed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30314 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30314 found at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 with PID 30314 started at Wed Aug 23 12:25:26 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: #2352: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30314 at Wed Aug 23 12:25:26 UTC 2017
kill -USR1 30314
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30314 killed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30385 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30385 found at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 with PID 30385 started at Wed Aug 23 12:25:26 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: #2353: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30385 at Wed Aug 23 12:25:26 UTC 2017
kill -USR1 30385
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30385 killed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30456 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30456 found at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 with PID 30456 started at Wed Aug 23 12:25:26 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: #2354: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30456 at Wed Aug 23 12:25:26 UTC 2017
kill -USR1 30456
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30456 killed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30527 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30527 found at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 with PID 30527 started at Wed Aug 23 12:25:26 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: #2355: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30527 at Wed Aug 23 12:25:26 UTC 2017
kill -USR1 30527
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30527 killed at Wed Aug 23 12:25:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30598 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30598 found at Wed Aug 23 12:25:26 UTC 2017
selfserv_9223 with PID 30598 started at Wed Aug 23 12:25:26 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: #2356: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30598 at Wed Aug 23 12:25:27 UTC 2017
kill -USR1 30598
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30598 killed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9223 starting at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30676 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30676 found at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 with PID 30676 started at Wed Aug 23 12:25:27 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: #2357: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30676 at Wed Aug 23 12:25:27 UTC 2017
kill -USR1 30676
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30676 killed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9223 starting at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30753 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30753 found at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 with PID 30753 started at Wed Aug 23 12:25:27 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: #2358: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30753 at Wed Aug 23 12:25:27 UTC 2017
kill -USR1 30753
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30753 killed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30858 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30858 found at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 with PID 30858 started at Wed Aug 23 12:25:27 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: #2359: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30858 at Wed Aug 23 12:25:27 UTC 2017
kill -USR1 30858
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30858 killed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30928 found at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 with PID 30928 started at Wed Aug 23 12:25:27 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: #2360: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30928 at Wed Aug 23 12:25:27 UTC 2017
kill -USR1 30928
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30928 killed at Wed Aug 23 12:25:27 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30999 found at Wed Aug 23 12:25:27 UTC 2017
selfserv_9223 with PID 30999 started at Wed Aug 23 12:25:27 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: #2361: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 30999 at Wed Aug 23 12:25:28 UTC 2017
kill -USR1 30999
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30999 killed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31070 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31070 found at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 with PID 31070 started at Wed Aug 23 12:25:28 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: #2362: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 31070 at Wed Aug 23 12:25:28 UTC 2017
kill -USR1 31070
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31070 killed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31142 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31142 found at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 with PID 31142 started at Wed Aug 23 12:25:28 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: #2363: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 31142 at Wed Aug 23 12:25:28 UTC 2017
kill -USR1 31142
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31142 killed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31214 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31214 found at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 with PID 31214 started at Wed Aug 23 12:25:28 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: #2364: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 31214 at Wed Aug 23 12:25:28 UTC 2017
kill -USR1 31214
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31214 killed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31323 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31323 found at Wed Aug 23 12:25:28 UTC 2017
selfserv_9223 with PID 31323 started at Wed Aug 23 12:25:28 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: #2365: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 31323 at Wed Aug 23 12:25:28 UTC 2017
kill -USR1 31323
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31323 killed at Wed Aug 23 12:25:28 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31393 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31393 found at Wed Aug 23 12:25:29 UTC 2017
selfserv_9223 with PID 31393 started at Wed Aug 23 12:25:29 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:25:29 UTC 2017
ssl.sh: #2366: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 31393 at Wed Aug 23 12:25:29 UTC 2017
kill -USR1 31393
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31393 killed at Wed Aug 23 12:25:29 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31476 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31476 found at Wed Aug 23 12:25:29 UTC 2017
selfserv_9223 with PID 31476 started at Wed Aug 23 12:25:29 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:32 UTC 2017
ssl.sh: #2367: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 31476 at Wed Aug 23 12:25:32 UTC 2017
kill -USR1 31476
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31476 killed at Wed Aug 23 12:25:32 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31546 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31546 found at Wed Aug 23 12:25:32 UTC 2017
selfserv_9223 with PID 31546 started at Wed Aug 23 12:25:32 UTC 2017
strsclnt -q -p 9223 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:25:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:25:35 UTC 2017
ssl.sh: #2368: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 31546 at Wed Aug 23 12:25:35 UTC 2017
kill -USR1 31546
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31546 killed at Wed Aug 23 12:25:35 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9223 starting at Wed Aug 23 12:25:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31608 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31608 found at Wed Aug 23 12:25:35 UTC 2017
selfserv_9223 with PID 31608 started at Wed Aug 23 12:25:35 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2369: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2418: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2419: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2421: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2422: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2424: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2425: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2427: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2428: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2430: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2431: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2433: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2435: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2437: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2439: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2441: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2443: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2444: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2445: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2446: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2447: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2448: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2449: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2450: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2451: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2452: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2453: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2454: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2455: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2456: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2457: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2458: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2459: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2460: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2461: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2462: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2463: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2464: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2465: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2466: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2467: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2468: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2469: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2470: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2471: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2472: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2473: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2474: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2475: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2476: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2477: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2478: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2479: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2480: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2481: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2482: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2483: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2484: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2485: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2486: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2487: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2488: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9223 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2489: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 31608 at Wed Aug 23 12:25:42 UTC 2017
kill -USR1 31608
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31608 killed at Wed Aug 23 12:25:42 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:25:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1503 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1503 found at Wed Aug 23 12:25:42 UTC 2017
selfserv_9223 with PID 1503 started at Wed Aug 23 12:25:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2490: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1503 at Wed Aug 23 12:25:42 UTC 2017
kill -USR1 1503
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1503 killed at Wed Aug 23 12:25:42 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:25:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:25:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1561 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1561 found at Wed Aug 23 12:25:42 UTC 2017
selfserv_9223 with PID 1561 started at Wed Aug 23 12:25:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2491: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1561 at Wed Aug 23 12:26:09 UTC 2017
kill -USR1 1561
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1561 killed at Wed Aug 23 12:26:09 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:26:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:26:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1629 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1629 found at Wed Aug 23 12:26:09 UTC 2017
selfserv_9223 with PID 1629 started at Wed Aug 23 12:26:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2492: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1629 at Wed Aug 23 12:26:09 UTC 2017
kill -USR1 1629
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1629 killed at Wed Aug 23 12:26:09 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:26:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:26:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1698 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1698 found at Wed Aug 23 12:26:09 UTC 2017
selfserv_9223 with PID 1698 started at Wed Aug 23 12:26:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2493: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1698 at Wed Aug 23 12:26:09 UTC 2017
kill -USR1 1698
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1698 killed at Wed Aug 23 12:26:09 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:26:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:26:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1768 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1768 found at Wed Aug 23 12:26:09 UTC 2017
selfserv_9223 with PID 1768 started at Wed Aug 23 12:26:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2494: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1768 at Wed Aug 23 12:26:32 UTC 2017
kill -USR1 1768
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1768 killed at Wed Aug 23 12:26:32 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:26:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:26:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1827 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1827 found at Wed Aug 23 12:26:32 UTC 2017
selfserv_9223 with PID 1827 started at Wed Aug 23 12:26:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2495: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1827 at Wed Aug 23 12:26:32 UTC 2017
kill -USR1 1827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1827 killed at Wed Aug 23 12:26:32 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:26:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:26:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1906 found at Wed Aug 23 12:26:32 UTC 2017
selfserv_9223 with PID 1906 started at Wed Aug 23 12:26:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2496: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1906 at Wed Aug 23 12:26:33 UTC 2017
kill -USR1 1906
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1906 killed at Wed Aug 23 12:26:33 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:26:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:26:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1967 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1967 found at Wed Aug 23 12:26:33 UTC 2017
selfserv_9223 with PID 1967 started at Wed Aug 23 12:26:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2497: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1967 at Wed Aug 23 12:27:00 UTC 2017
kill -USR1 1967
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1967 killed at Wed Aug 23 12:27:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:27:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2026 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2026 found at Wed Aug 23 12:27:00 UTC 2017
selfserv_9223 with PID 2026 started at Wed Aug 23 12:27:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2498: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2026 at Wed Aug 23 12:27:00 UTC 2017
kill -USR1 2026
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2026 killed at Wed Aug 23 12:27:00 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:27:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2089 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2089 found at Wed Aug 23 12:27:00 UTC 2017
selfserv_9223 with PID 2089 started at Wed Aug 23 12:27:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2499: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2089 at Wed Aug 23 12:27:00 UTC 2017
kill -USR1 2089
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2089 killed at Wed Aug 23 12:27:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:27:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2146 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2146 found at Wed Aug 23 12:27:00 UTC 2017
selfserv_9223 with PID 2146 started at Wed Aug 23 12:27:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2500: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2146 at Wed Aug 23 12:27:27 UTC 2017
kill -USR1 2146
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2146 killed at Wed Aug 23 12:27:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:27:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2214 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2214 found at Wed Aug 23 12:27:27 UTC 2017
selfserv_9223 with PID 2214 started at Wed Aug 23 12:27:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2501: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2214 at Wed Aug 23 12:27:27 UTC 2017
kill -USR1 2214
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2214 killed at Wed Aug 23 12:27:27 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:27:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2277 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2277 found at Wed Aug 23 12:27:27 UTC 2017
selfserv_9223 with PID 2277 started at Wed Aug 23 12:27:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2502: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2277 at Wed Aug 23 12:27:27 UTC 2017
kill -USR1 2277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2277 killed at Wed Aug 23 12:27:27 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:27:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2335 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2335 found at Wed Aug 23 12:27:27 UTC 2017
selfserv_9223 with PID 2335 started at Wed Aug 23 12:27:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2503: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2335 at Wed Aug 23 12:27:50 UTC 2017
kill -USR1 2335
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2335 killed at Wed Aug 23 12:27:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:27:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2394 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2394 found at Wed Aug 23 12:27:50 UTC 2017
selfserv_9223 with PID 2394 started at Wed Aug 23 12:27:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2504: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2394 at Wed Aug 23 12:27:51 UTC 2017
kill -USR1 2394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2394 killed at Wed Aug 23 12:27:51 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:27:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:27:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2470 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2470 found at Wed Aug 23 12:27:51 UTC 2017
selfserv_9223 with PID 2470 started at Wed Aug 23 12:27:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2505: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2470 at Wed Aug 23 12:28:18 UTC 2017
kill -USR1 2470
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2470 killed at Wed Aug 23 12:28:18 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:28:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:28:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2577 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2577 found at Wed Aug 23 12:28:18 UTC 2017
selfserv_9223 with PID 2577 started at Wed Aug 23 12:28:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2506: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2577 at Wed Aug 23 12:28:18 UTC 2017
kill -USR1 2577
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2577 killed at Wed Aug 23 12:28:18 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:28:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:28:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2640 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2640 found at Wed Aug 23 12:28:18 UTC 2017
selfserv_9223 with PID 2640 started at Wed Aug 23 12:28:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2507: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2640 at Wed Aug 23 12:28:41 UTC 2017
kill -USR1 2640
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2640 killed at Wed Aug 23 12:28:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:28:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:28:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2704 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2704 found at Wed Aug 23 12:28:41 UTC 2017
selfserv_9223 with PID 2704 started at Wed Aug 23 12:28:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2508: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2704 at Wed Aug 23 12:28:41 UTC 2017
kill -USR1 2704
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2704 killed at Wed Aug 23 12:28:41 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:28:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:28:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2765 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2765 found at Wed Aug 23 12:28:41 UTC 2017
selfserv_9223 with PID 2765 started at Wed Aug 23 12:28:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2509: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2765 at Wed Aug 23 12:29:08 UTC 2017
kill -USR1 2765
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2765 killed at Wed Aug 23 12:29:08 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:29:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:29:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2832 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2832 found at Wed Aug 23 12:29:08 UTC 2017
selfserv_9223 with PID 2832 started at Wed Aug 23 12:29:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2510: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2832 at Wed Aug 23 12:29:08 UTC 2017
kill -USR1 2832
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2832 killed at Wed Aug 23 12:29:08 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:29:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:29:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2893 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2893 found at Wed Aug 23 12:29:08 UTC 2017
selfserv_9223 with PID 2893 started at Wed Aug 23 12:29:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2511: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2893 at Wed Aug 23 12:29:35 UTC 2017
kill -USR1 2893
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2893 killed at Wed Aug 23 12:29:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:29:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:29:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2950 found at Wed Aug 23 12:29:35 UTC 2017
selfserv_9223 with PID 2950 started at Wed Aug 23 12:29:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2512: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2950 at Wed Aug 23 12:29:36 UTC 2017
kill -USR1 2950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2950 killed at Wed Aug 23 12:29:36 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:29:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:29:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3011 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3011 found at Wed Aug 23 12:29:36 UTC 2017
selfserv_9223 with PID 3011 started at Wed Aug 23 12:29:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2513: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 3011 at Wed Aug 23 12:29:59 UTC 2017
kill -USR1 3011
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3011 killed at Wed Aug 23 12:29:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:29:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:29:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3069 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3069 found at Wed Aug 23 12:29:59 UTC 2017
selfserv_9223 with PID 3069 started at Wed Aug 23 12:29:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2514: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 3069 at Wed Aug 23 12:29:59 UTC 2017
kill -USR1 3069
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3069 killed at Wed Aug 23 12:29:59 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:29:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:29:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3203 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3203 found at Wed Aug 23 12:29:59 UTC 2017
selfserv_9223 with PID 3203 started at Wed Aug 23 12:29:59 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:29:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:29:59 UTC 2017
ssl.sh: #2515: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3203 at Wed Aug 23 12:29:59 UTC 2017
kill -USR1 3203
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3203 killed at Wed Aug 23 12:29:59 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:29:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:29:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3273 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3273 found at Wed Aug 23 12:29:59 UTC 2017
selfserv_9223 with PID 3273 started at Wed Aug 23 12:29:59 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:29:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:29:59 UTC 2017
ssl.sh: #2516: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3273 at Wed Aug 23 12:29:59 UTC 2017
kill -USR1 3273
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3273 killed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3343 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3343 found at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 with PID 3343 started at Wed Aug 23 12:30:00 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: #2517: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3343 at Wed Aug 23 12:30:00 UTC 2017
kill -USR1 3343
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3343 killed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3414 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3414 found at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 with PID 3414 started at Wed Aug 23 12:30:00 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: #2518: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3414 at Wed Aug 23 12:30:00 UTC 2017
kill -USR1 3414
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3414 killed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3486 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3486 found at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 with PID 3486 started at Wed Aug 23 12:30:00 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: #2519: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3486 at Wed Aug 23 12:30:00 UTC 2017
kill -USR1 3486
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3486 killed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3557 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3557 found at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 with PID 3557 started at Wed Aug 23 12:30:00 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: #2520: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3557 at Wed Aug 23 12:30:00 UTC 2017
kill -USR1 3557
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3557 killed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9223 starting at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3630 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3630 found at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 with PID 3630 started at Wed Aug 23 12:30:00 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: #2521: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3630 at Wed Aug 23 12:30:00 UTC 2017
kill -USR1 3630
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3630 killed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3737 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3737 found at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 with PID 3737 started at Wed Aug 23 12:30:00 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: #2522: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3737 at Wed Aug 23 12:30:00 UTC 2017
kill -USR1 3737
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3737 killed at Wed Aug 23 12:30:00 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3807 found at Wed Aug 23 12:30:00 UTC 2017
selfserv_9223 with PID 3807 started at Wed Aug 23 12:30:00 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: #2523: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3807 at Wed Aug 23 12:30:01 UTC 2017
kill -USR1 3807
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3807 killed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3878 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3878 found at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 with PID 3878 started at Wed Aug 23 12:30:01 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: #2524: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3878 at Wed Aug 23 12:30:01 UTC 2017
kill -USR1 3878
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3878 killed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3948 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3948 found at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 with PID 3948 started at Wed Aug 23 12:30:01 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: #2525: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 3948 at Wed Aug 23 12:30:01 UTC 2017
kill -USR1 3948
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3948 killed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4018 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4018 found at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 with PID 4018 started at Wed Aug 23 12:30:01 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: #2526: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 4018 at Wed Aug 23 12:30:01 UTC 2017
kill -USR1 4018
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4018 killed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4089 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4089 found at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 with PID 4089 started at Wed Aug 23 12:30:01 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: #2527: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 4089 at Wed Aug 23 12:30:01 UTC 2017
kill -USR1 4089
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4089 killed at Wed Aug 23 12:30:01 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4198 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4198 found at Wed Aug 23 12:30:01 UTC 2017
selfserv_9223 with PID 4198 started at Wed Aug 23 12:30:01 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed Aug 23 12:30:02 UTC 2017
ssl.sh: #2528: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 4198 at Wed Aug 23 12:30:02 UTC 2017
kill -USR1 4198
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4198 killed at Wed Aug 23 12:30:02 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4269 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4269 found at Wed Aug 23 12:30:02 UTC 2017
selfserv_9223 with PID 4269 started at Wed Aug 23 12:30:02 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed Aug 23 12:30:02 UTC 2017
ssl.sh: #2529: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 4269 at Wed Aug 23 12:30:02 UTC 2017
kill -USR1 4269
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4269 killed at Wed Aug 23 12:30:02 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4352 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4352 found at Wed Aug 23 12:30:02 UTC 2017
selfserv_9223 with PID 4352 started at Wed Aug 23 12:30:02 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:30:06 UTC 2017
ssl.sh: #2530: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 4352 at Wed Aug 23 12:30:06 UTC 2017
kill -USR1 4352
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4352 killed at Wed Aug 23 12:30:06 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9223 starting at Wed Aug 23 12:30:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:30:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4432 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4432 found at Wed Aug 23 12:30:06 UTC 2017
selfserv_9223 with PID 4432 started at Wed Aug 23 12:30:06 UTC 2017
strsclnt -q -p 9223 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed Aug 23 12:30:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed Aug 23 12:30:11 UTC 2017
ssl.sh: #2531: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9223 with PID 4432 at Wed Aug 23 12:30:11 UTC 2017
kill -USR1 4432
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4432 killed at Wed Aug 23 12:30:11 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2532:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -list
ssl.sh: #2533:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2534:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2535:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2536:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2537:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Wed Aug 23 12:30:11 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Wed Aug 23 12:30:11 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Wed Aug 23 12:30:11 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed Aug 23 12:30:11 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.30054 -t Test2 -f ../tests.pw
merge.sh: #2538: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2539: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2540: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2541: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2542: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2543: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:21 2017
            Not After : Tue Aug 23 12:18:21 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:eb:5a:de:45:b5:3d:13:ce:f2:98:03:c4:43:e7:9e:
                    40:eb:32:e8:c1:6b:06:92:6d:3b:fb:eb:94:0d:97:e2:
                    de:3a:5b:b8:a5:0c:f6:8c:f0:46:bd:ee:09:3e:d2:e4:
                    f4:da:18:98:48:ad:6f:53:2f:67:29:c1:91:5e:17:44:
                    8a:e9:5b:89:2d:86:19:24:70:76:41:7f:af:2f:20:89:
                    b1:e1:76:0b:5a:57:94:ce:77:29:94:f9:f7:2f:b9:1c:
                    e7:27:86:f0:a4:75:5e:4f:88:c5:ed:32:32:30:6a:11:
                    8f:1d:98:9c:10:b2:09:c4:6e:77:31:ba:bd:11:36:4c:
                    ca:5a:9f:0d:53:b1:99:d6:86:9a:c2:4b:7d:e0:3b:56:
                    b9:ee:28:e7:88:87:cf:e7:b5:37:f0:7e:6a:ba:dd:11:
                    a7:eb:ac:0b:56:eb:f3:24:07:1e:3d:1b:ce:b2:af:47:
                    15:54:8b:21:58:5d:cc:03:47:8b:a9:7d:03:00:95:2f:
                    25:7a:92:99:1a:ba:cf:c8:2e:b9:12:46:79:78:c8:15:
                    4b:f9:70:bd:15:1d:91:d8:7d:63:89:4b:26:c5:7a:b4:
                    fb:82:40:c2:95:bf:59:fd:1c:d6:c8:5a:86:6f:67:56:
                    bd:69:ed:f0:1f:29:1d:34:13:1b:03:09:58:e7:91:a9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:6e:35:6a:1e:03:74:bb:5a:4f:a3:22:1e:2a:65:95:
        7e:f7:6d:c5:9d:78:11:0b:f5:68:42:52:79:a8:40:17:
        9a:b8:79:5f:45:e4:ce:e1:8a:13:a2:01:5c:af:b4:75:
        4a:d7:8c:28:09:9d:5b:6f:ce:7c:86:a2:e3:ca:3b:f5:
        93:c5:8a:7e:e5:f8:46:74:b3:3f:05:80:f3:44:a9:95:
        b4:71:f8:09:15:a1:c8:6d:55:3c:67:a2:67:eb:d0:cd:
        0a:bb:dc:0e:fd:7f:89:88:2d:24:c0:56:5f:3f:84:10:
        c8:e1:07:83:80:58:6c:0b:e5:5f:94:c6:90:ee:c6:7a:
        f1:89:32:73:c0:22:0a:d5:9e:80:a6:60:75:43:b5:15:
        5b:50:1a:91:d4:b7:40:f1:37:0c:58:55:6e:4e:91:8e:
        bb:68:be:06:3c:7e:fe:1d:31:99:88:ed:8e:ff:e5:3b:
        13:9c:b7:a1:ff:e2:7a:42:6c:98:d5:a2:ac:c0:88:c1:
        c2:4e:21:c1:00:1c:43:b2:89:00:8e:0c:d7:ea:8c:ee:
        aa:4d:2e:57:98:ff:2a:25:d0:21:dd:27:99:c6:3e:aa:
        ad:1f:17:87:8d:ea:69:d4:c1:f6:d4:f2:d4:92:8f:37:
        14:8f:59:91:80:0d:56:21:fc:6f:cf:20:f5:77:11:5c
    Fingerprint (SHA-256):
        53:9C:E7:1B:27:AD:A6:5D:08:8A:41:9C:8B:69:3A:4A:E0:09:88:6B:C9:4A:8E:32:78:12:A8:93:07:39:6F:FE
    Fingerprint (SHA1):
        34:E2:AA:E6:F6:91:6F:C6:7E:84:A1:92:77:15:B6:6F:FF:02:75:5F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2544: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:22 2017
            Not After : Tue Aug 23 12:18:22 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:cb:e1:9d:5e:80:46:e2:ce:77:47:3f:c4:78:d2:e7:
                    15:83:b4:11:48:37:5b:3b:82:bf:a8:19:a2:20:a7:88:
                    d6:01:eb:55:a6:e9:ab:3d:63:69:c4:e8:4d:11:5d:37:
                    15:02:91:2d:9f:e2:dd:3d:d4:09:e6:7f:aa:9e:81:07:
                    5f:85:0f:37:8b:45:df:fb:f8:d7:44:e9:44:9a:7c:03:
                    da:82:27:7d:0e:4b:8b:f2:e2:93:9d:a5:4f:24:ec:09:
                    9d:52:f5:f3:31:6b:f6:24:49:20:b9:0a:79:78:02:96:
                    18:17:b6:20:31:3d:7b:91:2a:ca:4d:0d:2c:8e:71:b0:
                    12:d8:78:4c:00:1a:06:ce:fa:ac:ed:51:c9:05:4e:ef:
                    30:af:64:4e:25:44:4a:b3:55:f8:9b:97:ae:97:16:cc:
                    c7:24:b0:17:8a:ad:58:f3:3d:61:49:cb:b0:e6:31:96:
                    a2:44:98:f1:51:f9:b8:6c:c8:07:c3:a4:f0:6c:ce:00:
                    dd:85:6a:64:c2:09:30:54:06:8a:5d:e7:b4:14:b1:a4:
                    d1:87:dd:7d:c8:ab:72:8b:63:3e:ff:52:43:34:9c:28:
                    eb:6d:79:47:4a:01:1b:30:cb:9f:c0:0c:32:57:c5:21:
                    52:57:51:de:9b:4d:f8:db:62:93:54:2a:60:d1:19:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:67:bb:83:cb:e5:a8:fa:05:38:49:a2:3b:76:f0:14:
        ce:4d:e9:5e:10:e2:4f:8a:c2:21:9e:ac:20:3f:0c:0f:
        e6:ea:a6:3f:ef:49:c2:00:5e:9e:2a:18:70:51:57:87:
        ee:44:d9:27:f4:d0:4b:e4:a2:6e:b6:45:6d:39:c8:39:
        98:a7:f2:bb:85:9f:ab:2c:2f:d8:02:60:01:37:3f:a5:
        4b:2d:18:3e:1b:d3:cf:28:64:d1:37:7b:ed:03:5f:15:
        19:b0:27:7c:af:af:ab:6a:db:72:23:e3:aa:73:f1:15:
        39:46:3b:df:33:d9:93:18:e5:d8:12:b7:b1:9e:32:4a:
        7f:2d:61:e9:6a:83:c8:39:21:2e:9e:42:59:35:23:be:
        c8:f5:56:9b:01:9c:0c:dd:79:30:e6:37:c6:54:5c:85:
        df:58:bf:dd:36:ac:f7:4d:7d:00:76:82:08:e9:73:2a:
        de:b4:07:86:18:d7:f1:d9:55:3f:32:de:5f:4b:83:3e:
        31:04:6f:61:b8:6d:e4:00:13:1b:67:ca:bd:9a:55:14:
        16:13:c7:ac:a6:fb:b5:36:1f:9d:39:56:5f:a0:47:8c:
        0c:fc:79:97:32:54:17:bd:11:9f:bc:d2:92:8e:6f:d1:
        cd:0c:53:50:14:78:0a:c7:c3:02:0f:d5:d6:37:80:96
    Fingerprint (SHA-256):
        9F:80:04:A0:CE:27:A3:63:1E:96:D2:36:3A:A1:C9:6E:B4:BC:44:CB:59:35:1E:E5:73:1E:F9:1C:3D:DA:48:40
    Fingerprint (SHA1):
        18:18:B3:0E:D1:1C:74:F1:3D:1E:B8:AA:97:AD:E4:B2:BA:51:A6:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2545: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2546: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-1-clientCA-ec                                          ,,   
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.30054 -t Test2 -f ../tests.pw
merge.sh: #2547: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.30054 -t Test1 -f ../tests.pw
merge.sh: #2548: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2549: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2550: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2551: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed Aug 23 12:18:30 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:18:08 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed Aug 23 12:18:26 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2552: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Wed Aug 23 12:30:11 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Wed Aug 23 12:30:11 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Wed Aug 23 12:30:11 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed Aug 23 12:30:11 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2553: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123012 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2554: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2555: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2556: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2557: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2558: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2559: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2560: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2561: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2562: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2563: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2564: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2565: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2566: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2567: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2568: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2569: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2570: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2571: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2572: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2573: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2574: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2575: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2576: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2577: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2578: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2579: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2580: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2581: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2582: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2583: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2584: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2585: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2586: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2587: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2588: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2589: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2590: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2591: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2592: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2593: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2594: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2595: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2596: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2597: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2598: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2599: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2600: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2601: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2602: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2603: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2604: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2605: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2606: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2607: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2608: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2609: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2610: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2611: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2612: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2613: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2614: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2615: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170823123014Z
nextupdate=20180823123014Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed Aug 23 12:30:14 2017
    Next Update: Thu Aug 23 12:30:14 2018
    CRL Extensions:
chains.sh: #2616: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170823123015Z
addcert 2 20170823123015Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed Aug 23 12:30:15 2017
    Next Update: Thu Aug 23 12:30:14 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:30:15 2017
    CRL Extensions:
chains.sh: #2617: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823123015Z
nextupdate=20180823123015Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:30:15 2017
    Next Update: Thu Aug 23 12:30:15 2018
    CRL Extensions:
chains.sh: #2618: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823123016Z
addcert 2 20170823123016Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:30:16 2017
    Next Update: Thu Aug 23 12:30:15 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:30:16 2017
    CRL Extensions:
chains.sh: #2619: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823123017Z
addcert 4 20170823123017Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:30:17 2017
    Next Update: Thu Aug 23 12:30:15 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:30:16 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed Aug 23 12:30:17 2017
    CRL Extensions:
chains.sh: #2620: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823123017Z
nextupdate=20180823123017Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:30:17 2017
    Next Update: Thu Aug 23 12:30:17 2018
    CRL Extensions:
chains.sh: #2621: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823123018Z
addcert 2 20170823123018Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:30:18 2017
    Next Update: Thu Aug 23 12:30:17 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:30:18 2017
    CRL Extensions:
chains.sh: #2622: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823123019Z
addcert 3 20170823123019Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:30:19 2017
    Next Update: Thu Aug 23 12:30:17 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:30:18 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed Aug 23 12:30:19 2017
    CRL Extensions:
chains.sh: #2623: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823123019Z
nextupdate=20180823123019Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:30:19 2017
    Next Update: Thu Aug 23 12:30:19 2018
    CRL Extensions:
chains.sh: #2624: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823123020Z
addcert 2 20170823123020Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:30:20 2017
    Next Update: Thu Aug 23 12:30:19 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:30:20 2017
    CRL Extensions:
chains.sh: #2625: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823123021Z
addcert 3 20170823123021Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:30:21 2017
    Next Update: Thu Aug 23 12:30:19 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:30:20 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed Aug 23 12:30:21 2017
    CRL Extensions:
chains.sh: #2626: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2627: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2628: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2629: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2630: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2631: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2632: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2633: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2634: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2635: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2636: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2637: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2638: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2639: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2640: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2641: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2642: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2643: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2644: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2645: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2646: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2647: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2648: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2649: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2650: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed Aug 23 12:30:22 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:30:22 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 6150 >/dev/null 2>/dev/null
httpserv with PID 6150 found at Wed Aug 23 12:30:22 UTC 2017
httpserv with PID 6150 started at Wed Aug 23 12:30:22 UTC 2017
tstclnt -h localhost.localdomain -p 9233 -q -t 20
chains.sh: #2651: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123012 (0x310fdc44)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:11 2017
            Not After : Tue Aug 23 12:30:11 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:20:3d:19:47:5c:c6:76:c7:0e:10:42:66:c1:b7:ea:
                    e0:3b:a0:ef:29:ae:eb:18:94:1e:af:76:f7:38:fb:b0:
                    76:74:b5:81:32:dc:b7:d6:cd:3f:44:c2:17:1d:98:f4:
                    78:64:dc:46:81:bc:81:dd:1b:da:38:63:a8:a8:82:d8:
                    dd:59:5e:84:04:39:6a:9b:4e:f1:06:e0:62:96:42:72:
                    34:7c:a8:55:e1:11:12:4e:12:46:0d:05:14:8b:57:58:
                    9f:63:b8:2b:22:47:1c:5d:f4:c9:49:68:a3:59:2c:61:
                    58:09:da:fa:9c:a6:96:09:dd:45:5d:f0:d4:40:0b:67:
                    ef:8d:54:33:52:41:30:bf:c3:c0:ab:f2:35:fe:85:12:
                    c9:ee:ad:ba:b8:b2:b9:1e:0b:e2:ca:86:43:a8:ef:5c:
                    a5:db:38:83:b9:db:01:2f:76:ab:7f:f7:e7:ce:b0:a3:
                    01:af:3f:85:02:e6:e5:5d:bc:29:e9:23:0b:2f:a8:5b:
                    b6:e7:4a:18:f7:b3:18:dc:39:f4:73:0c:73:ae:31:d4:
                    2a:ed:da:84:48:9d:8d:ef:e4:41:80:4b:fe:e9:f8:48:
                    01:29:2d:ec:0c:4e:14:8e:cc:11:c0:70:73:ad:ea:12:
                    f1:80:fc:6f:8c:5d:eb:ae:ae:45:98:fe:0e:b1:f7:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:27:9f:70:ef:2f:47:16:2e:79:5b:51:ea:72:ba:d7:
        16:04:51:c2:ec:07:0b:d1:32:f2:96:7a:ee:31:7e:eb:
        48:12:6c:cb:ef:42:6e:70:aa:c6:bf:bb:a1:78:b7:81:
        5c:59:18:30:a2:63:84:48:90:68:e9:78:30:19:8b:ad:
        25:f9:96:da:0e:b0:6a:47:55:1d:27:a6:69:fb:b4:ab:
        c5:85:4c:20:07:e9:33:48:30:c8:02:7c:8a:a9:3c:0d:
        14:9c:6c:60:df:3b:1e:7e:4a:0a:54:87:fb:dc:7f:78:
        40:ae:7d:f1:c0:a0:5f:68:ab:79:fd:e4:1f:59:27:86:
        41:41:8a:eb:5e:2a:d7:14:bf:67:2b:97:28:5e:01:56:
        47:36:75:75:f3:27:b7:d6:36:02:d2:58:f2:37:4a:d0:
        25:98:48:02:2a:cd:4b:2f:14:a6:20:01:d7:f1:10:09:
        14:f4:fa:c4:45:4d:f1:e8:f1:ab:65:81:8e:f4:c2:8d:
        1b:e3:4f:9c:a3:fd:f0:43:96:fe:5c:7f:04:25:85:c0:
        c7:bb:36:b6:47:39:7f:bc:4e:2d:85:9c:00:32:71:e8:
        ac:ac:7e:2e:6c:a9:5b:d8:b3:af:a7:89:2a:0e:73:da:
        d6:a3:6c:ef:ae:e0:11:86:92:04:55:b1:73:f7:09:83
    Fingerprint (SHA-256):
        AA:F8:21:5C:FB:21:C2:49:19:AF:99:78:7E:35:D4:3F:3D:03:4C:0A:ED:48:90:75:8D:89:B3:D5:AC:7A:B5:C1
    Fingerprint (SHA1):
        38:FE:D9:E8:AE:19:93:2E:43:EF:3A:69:E8:AB:6C:84:EF:76:11:44
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2652: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2653: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2654: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 6150 at Wed Aug 23 12:30:22 UTC 2017
kill -USR1 6150
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 6150 killed at Wed Aug 23 12:30:22 UTC 2017
httpserv starting at Wed Aug 23 12:30:22 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:30:22 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 6319 >/dev/null 2>/dev/null
httpserv with PID 6319 found at Wed Aug 23 12:30:22 UTC 2017
httpserv with PID 6319 started at Wed Aug 23 12:30:22 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2655: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2656: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2657: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9233 -q -t 20
chains.sh: #2658: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123012 (0x310fdc44)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:11 2017
            Not After : Tue Aug 23 12:30:11 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:20:3d:19:47:5c:c6:76:c7:0e:10:42:66:c1:b7:ea:
                    e0:3b:a0:ef:29:ae:eb:18:94:1e:af:76:f7:38:fb:b0:
                    76:74:b5:81:32:dc:b7:d6:cd:3f:44:c2:17:1d:98:f4:
                    78:64:dc:46:81:bc:81:dd:1b:da:38:63:a8:a8:82:d8:
                    dd:59:5e:84:04:39:6a:9b:4e:f1:06:e0:62:96:42:72:
                    34:7c:a8:55:e1:11:12:4e:12:46:0d:05:14:8b:57:58:
                    9f:63:b8:2b:22:47:1c:5d:f4:c9:49:68:a3:59:2c:61:
                    58:09:da:fa:9c:a6:96:09:dd:45:5d:f0:d4:40:0b:67:
                    ef:8d:54:33:52:41:30:bf:c3:c0:ab:f2:35:fe:85:12:
                    c9:ee:ad:ba:b8:b2:b9:1e:0b:e2:ca:86:43:a8:ef:5c:
                    a5:db:38:83:b9:db:01:2f:76:ab:7f:f7:e7:ce:b0:a3:
                    01:af:3f:85:02:e6:e5:5d:bc:29:e9:23:0b:2f:a8:5b:
                    b6:e7:4a:18:f7:b3:18:dc:39:f4:73:0c:73:ae:31:d4:
                    2a:ed:da:84:48:9d:8d:ef:e4:41:80:4b:fe:e9:f8:48:
                    01:29:2d:ec:0c:4e:14:8e:cc:11:c0:70:73:ad:ea:12:
                    f1:80:fc:6f:8c:5d:eb:ae:ae:45:98:fe:0e:b1:f7:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:27:9f:70:ef:2f:47:16:2e:79:5b:51:ea:72:ba:d7:
        16:04:51:c2:ec:07:0b:d1:32:f2:96:7a:ee:31:7e:eb:
        48:12:6c:cb:ef:42:6e:70:aa:c6:bf:bb:a1:78:b7:81:
        5c:59:18:30:a2:63:84:48:90:68:e9:78:30:19:8b:ad:
        25:f9:96:da:0e:b0:6a:47:55:1d:27:a6:69:fb:b4:ab:
        c5:85:4c:20:07:e9:33:48:30:c8:02:7c:8a:a9:3c:0d:
        14:9c:6c:60:df:3b:1e:7e:4a:0a:54:87:fb:dc:7f:78:
        40:ae:7d:f1:c0:a0:5f:68:ab:79:fd:e4:1f:59:27:86:
        41:41:8a:eb:5e:2a:d7:14:bf:67:2b:97:28:5e:01:56:
        47:36:75:75:f3:27:b7:d6:36:02:d2:58:f2:37:4a:d0:
        25:98:48:02:2a:cd:4b:2f:14:a6:20:01:d7:f1:10:09:
        14:f4:fa:c4:45:4d:f1:e8:f1:ab:65:81:8e:f4:c2:8d:
        1b:e3:4f:9c:a3:fd:f0:43:96:fe:5c:7f:04:25:85:c0:
        c7:bb:36:b6:47:39:7f:bc:4e:2d:85:9c:00:32:71:e8:
        ac:ac:7e:2e:6c:a9:5b:d8:b3:af:a7:89:2a:0e:73:da:
        d6:a3:6c:ef:ae:e0:11:86:92:04:55:b1:73:f7:09:83
    Fingerprint (SHA-256):
        AA:F8:21:5C:FB:21:C2:49:19:AF:99:78:7E:35:D4:3F:3D:03:4C:0A:ED:48:90:75:8D:89:B3:D5:AC:7A:B5:C1
    Fingerprint (SHA1):
        38:FE:D9:E8:AE:19:93:2E:43:EF:3A:69:E8:AB:6C:84:EF:76:11:44
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2659: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2660: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2661: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 6319 at Wed Aug 23 12:30:22 UTC 2017
kill -USR1 6319
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 6319 killed at Wed Aug 23 12:30:22 UTC 2017
httpserv starting at Wed Aug 23 12:30:22 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:30:22 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 6566 >/dev/null 2>/dev/null
httpserv with PID 6566 found at Wed Aug 23 12:30:22 UTC 2017
httpserv with PID 6566 started at Wed Aug 23 12:30:22 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2662: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2663: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123013 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2664: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2665: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2666: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123014 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2667: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2668: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2669: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2670: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123015 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2671: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2672: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123016 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2673: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2674: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2675: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2676: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2677: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 823123017   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2678: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2679: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2680: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2681: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2682: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123014 (0x310fdc46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:80:0c:9b:ea:ba:d9:fe:9f:ad:62:40:87:96:16:21:
                    72:68:5f:5e:24:5d:1f:e7:c6:9c:32:4e:2f:48:c1:71:
                    65:08:83:72:68:b9:20:6c:14:4c:8a:69:0e:6a:74:19:
                    6e:b1:0b:6a:dd:2b:50:c7:bc:09:fa:16:4e:a2:9b:c1:
                    2d:6e:4f:0e:48:a9:63:a2:4f:8d:44:bb:a0:50:6f:b0:
                    31:93:2b:4e:e5:95:13:35:7c:fc:c4:71:e3:7a:74:dc:
                    a7:48:a0:ab:7e:b8:c6:62:9f:c4:a2:0a:89:2e:4c:51:
                    65:70:3b:73:18:c2:46:20:0c:ee:3e:24:a0:53:ec:c8:
                    2f:a6:a6:8a:a4:a2:c5:f7:6d:e8:b2:65:cc:a3:a8:52:
                    30:62:c2:6b:85:c7:c0:54:1f:c1:a0:85:ca:a6:89:0d:
                    49:f7:28:3f:f6:8c:ee:f2:70:b4:24:3a:0b:ba:08:bd:
                    87:07:18:04:dd:92:07:c8:31:22:f7:56:50:f5:d9:ca:
                    ea:a2:cb:04:49:ae:7e:b5:7d:55:d0:8d:04:b1:4d:6d:
                    ff:81:fb:54:d6:e3:96:a2:e7:d3:38:a1:6d:1f:6e:cf:
                    d0:bc:48:0d:2e:50:1e:93:0c:2d:91:b3:bb:92:fd:31:
                    50:68:ee:f5:21:d3:c7:89:bc:8e:ef:6f:38:9a:15:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:ae:e3:e1:0a:aa:1c:93:5d:43:6b:ff:7f:9b:c7:00:
        1a:3e:46:21:95:9d:3f:cc:ad:ae:35:09:2c:58:ea:ab:
        a0:05:42:af:47:e2:81:38:7f:19:78:18:bd:28:f5:f6:
        50:6c:1b:3f:87:cb:70:a8:e4:70:fb:9e:0b:f9:df:13:
        97:23:9d:8a:57:ef:0b:46:53:c1:f0:28:ca:ca:82:42:
        f1:74:52:4c:de:c0:8b:a4:cd:87:45:fd:89:b0:3f:e2:
        00:69:0c:a5:11:22:68:8a:52:86:9a:5c:cd:6b:8c:cd:
        99:d1:8b:58:eb:eb:12:d1:03:f9:28:fe:7d:d7:da:0d:
        99:75:0c:60:17:44:dd:f1:b3:cf:0d:f5:e9:e2:23:2f:
        3f:7f:86:42:84:51:43:93:11:d0:db:27:99:bd:a6:7a:
        b5:2b:aa:e3:f1:41:00:eb:cd:26:27:5a:a8:bb:9d:ac:
        b6:8f:63:41:18:fe:2b:c1:00:b4:70:6e:0d:b5:2a:05:
        b2:45:f0:84:03:90:8c:66:94:98:d5:e1:d0:b7:15:53:
        0f:06:22:dc:96:26:b5:db:1e:f3:55:2e:ca:09:a2:b2:
        38:fb:4f:19:db:c9:df:2a:a1:b3:3e:2e:6e:27:52:9c:
        12:0d:e5:72:b6:39:0d:c0:b9:d4:f0:df:95:7c:7c:bf
    Fingerprint (SHA-256):
        06:91:71:83:A8:3B:5B:A6:F5:69:46:1B:A7:71:FA:00:77:E4:24:7F:A3:11:49:4A:AF:B7:3B:6E:0A:6C:78:30
    Fingerprint (SHA1):
        C9:6C:DC:70:E4:D1:E0:E6:B1:A0:12:8A:2E:76:60:44:8F:35:95:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2683: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123013 (0x310fdc45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:83:0b:e6:6f:83:cf:62:90:23:7f:73:94:52:8f:e1:
                    e6:3a:ee:7d:c4:ba:2c:9d:02:ae:9c:27:95:40:ff:5f:
                    0f:10:4b:92:d4:6d:ea:26:f4:42:83:88:05:83:a5:c0:
                    2f:bb:21:71:d0:d5:73:3d:c6:77:39:9e:a9:11:b9:8d:
                    00:b0:0b:0d:83:31:dd:60:88:d4:42:f4:fd:27:0e:77:
                    51:c3:d8:5d:8d:6a:ae:5b:cb:39:fe:7a:15:52:63:a4:
                    00:0b:1d:5e:0c:26:bd:0b:89:20:14:a4:cf:df:cc:81:
                    ad:a2:12:b6:9e:1c:7e:59:df:cc:39:82:03:ae:52:7a:
                    d5:33:4c:91:32:9d:ba:65:a7:5f:f5:e1:14:bf:6a:ef:
                    ca:26:8c:87:ed:db:30:8f:33:22:6b:63:c5:d0:4e:de:
                    a9:66:0b:59:d2:27:2e:ab:3a:7d:01:31:35:a1:d5:97:
                    5a:f7:a7:0e:ab:b5:f0:df:e5:4f:b0:8e:7e:21:4d:92:
                    93:2c:51:4e:c3:07:b4:c4:28:00:2b:1a:1d:e7:69:70:
                    5e:e4:fc:85:8c:25:95:c4:b8:a6:ad:78:ec:ef:36:c6:
                    f1:24:f1:ed:a0:10:ed:73:dc:ce:01:e4:d4:d6:0c:96:
                    d7:33:a9:b6:ae:d3:c0:e0:ab:40:8f:f7:2a:ee:32:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:b6:97:b0:4e:b9:13:57:84:b9:f3:a7:9f:d2:5b:3e:
        b1:1b:29:50:7c:b6:9c:49:f5:d7:c4:72:b5:46:b5:9f:
        78:b3:b4:d2:50:de:69:b5:2a:59:f8:b4:84:3a:d2:da:
        3b:60:34:39:ac:a4:4e:f9:18:3b:6e:7f:39:23:8d:4a:
        a7:2d:f4:4b:7d:ae:97:e0:17:bf:36:87:2c:38:bd:c6:
        ea:38:49:98:e0:91:aa:55:ed:8e:41:71:76:a9:24:29:
        b0:a1:27:64:dd:bd:b8:3f:0f:2a:cc:c8:12:d5:df:f0:
        83:49:b4:c4:b6:c4:b3:32:fb:d3:a4:e0:c9:60:f8:70:
        ca:95:dc:48:f1:9b:b1:ac:c8:ce:cd:25:ff:5c:05:9b:
        87:63:2e:d5:f1:bc:1d:b9:09:5a:5c:1e:b2:3c:4e:11:
        e9:0c:d7:cc:56:9c:16:90:f1:56:d2:c0:cd:20:5f:f4:
        a7:53:38:c3:da:cd:f5:bc:5f:80:8e:f4:33:a4:c8:d9:
        b4:67:4f:c0:80:57:cd:c1:19:7c:48:ea:b1:b7:2d:cb:
        82:a9:84:79:8a:84:8b:76:38:e4:df:73:c0:87:fb:1c:
        47:e9:35:db:33:0a:94:14:81:66:88:de:d4:73:bf:bc:
        da:30:15:63:41:42:18:19:51:d5:f4:0a:de:7d:19:a0
    Fingerprint (SHA-256):
        31:AD:2D:AB:72:90:07:66:9B:C8:99:13:46:AC:CD:AF:EE:54:F8:CF:C5:FE:77:20:BE:54:CC:67:F4:50:F5:4D
    Fingerprint (SHA1):
        30:9C:96:DD:4A:CA:33:AE:65:7A:E2:1D:10:B4:11:82:6D:2F:55:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2684: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2685: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2686: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2687: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123013 (0x310fdc45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:83:0b:e6:6f:83:cf:62:90:23:7f:73:94:52:8f:e1:
                    e6:3a:ee:7d:c4:ba:2c:9d:02:ae:9c:27:95:40:ff:5f:
                    0f:10:4b:92:d4:6d:ea:26:f4:42:83:88:05:83:a5:c0:
                    2f:bb:21:71:d0:d5:73:3d:c6:77:39:9e:a9:11:b9:8d:
                    00:b0:0b:0d:83:31:dd:60:88:d4:42:f4:fd:27:0e:77:
                    51:c3:d8:5d:8d:6a:ae:5b:cb:39:fe:7a:15:52:63:a4:
                    00:0b:1d:5e:0c:26:bd:0b:89:20:14:a4:cf:df:cc:81:
                    ad:a2:12:b6:9e:1c:7e:59:df:cc:39:82:03:ae:52:7a:
                    d5:33:4c:91:32:9d:ba:65:a7:5f:f5:e1:14:bf:6a:ef:
                    ca:26:8c:87:ed:db:30:8f:33:22:6b:63:c5:d0:4e:de:
                    a9:66:0b:59:d2:27:2e:ab:3a:7d:01:31:35:a1:d5:97:
                    5a:f7:a7:0e:ab:b5:f0:df:e5:4f:b0:8e:7e:21:4d:92:
                    93:2c:51:4e:c3:07:b4:c4:28:00:2b:1a:1d:e7:69:70:
                    5e:e4:fc:85:8c:25:95:c4:b8:a6:ad:78:ec:ef:36:c6:
                    f1:24:f1:ed:a0:10:ed:73:dc:ce:01:e4:d4:d6:0c:96:
                    d7:33:a9:b6:ae:d3:c0:e0:ab:40:8f:f7:2a:ee:32:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:b6:97:b0:4e:b9:13:57:84:b9:f3:a7:9f:d2:5b:3e:
        b1:1b:29:50:7c:b6:9c:49:f5:d7:c4:72:b5:46:b5:9f:
        78:b3:b4:d2:50:de:69:b5:2a:59:f8:b4:84:3a:d2:da:
        3b:60:34:39:ac:a4:4e:f9:18:3b:6e:7f:39:23:8d:4a:
        a7:2d:f4:4b:7d:ae:97:e0:17:bf:36:87:2c:38:bd:c6:
        ea:38:49:98:e0:91:aa:55:ed:8e:41:71:76:a9:24:29:
        b0:a1:27:64:dd:bd:b8:3f:0f:2a:cc:c8:12:d5:df:f0:
        83:49:b4:c4:b6:c4:b3:32:fb:d3:a4:e0:c9:60:f8:70:
        ca:95:dc:48:f1:9b:b1:ac:c8:ce:cd:25:ff:5c:05:9b:
        87:63:2e:d5:f1:bc:1d:b9:09:5a:5c:1e:b2:3c:4e:11:
        e9:0c:d7:cc:56:9c:16:90:f1:56:d2:c0:cd:20:5f:f4:
        a7:53:38:c3:da:cd:f5:bc:5f:80:8e:f4:33:a4:c8:d9:
        b4:67:4f:c0:80:57:cd:c1:19:7c:48:ea:b1:b7:2d:cb:
        82:a9:84:79:8a:84:8b:76:38:e4:df:73:c0:87:fb:1c:
        47:e9:35:db:33:0a:94:14:81:66:88:de:d4:73:bf:bc:
        da:30:15:63:41:42:18:19:51:d5:f4:0a:de:7d:19:a0
    Fingerprint (SHA-256):
        31:AD:2D:AB:72:90:07:66:9B:C8:99:13:46:AC:CD:AF:EE:54:F8:CF:C5:FE:77:20:BE:54:CC:67:F4:50:F5:4D
    Fingerprint (SHA1):
        30:9C:96:DD:4A:CA:33:AE:65:7A:E2:1D:10:B4:11:82:6D:2F:55:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2688: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123014 (0x310fdc46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:80:0c:9b:ea:ba:d9:fe:9f:ad:62:40:87:96:16:21:
                    72:68:5f:5e:24:5d:1f:e7:c6:9c:32:4e:2f:48:c1:71:
                    65:08:83:72:68:b9:20:6c:14:4c:8a:69:0e:6a:74:19:
                    6e:b1:0b:6a:dd:2b:50:c7:bc:09:fa:16:4e:a2:9b:c1:
                    2d:6e:4f:0e:48:a9:63:a2:4f:8d:44:bb:a0:50:6f:b0:
                    31:93:2b:4e:e5:95:13:35:7c:fc:c4:71:e3:7a:74:dc:
                    a7:48:a0:ab:7e:b8:c6:62:9f:c4:a2:0a:89:2e:4c:51:
                    65:70:3b:73:18:c2:46:20:0c:ee:3e:24:a0:53:ec:c8:
                    2f:a6:a6:8a:a4:a2:c5:f7:6d:e8:b2:65:cc:a3:a8:52:
                    30:62:c2:6b:85:c7:c0:54:1f:c1:a0:85:ca:a6:89:0d:
                    49:f7:28:3f:f6:8c:ee:f2:70:b4:24:3a:0b:ba:08:bd:
                    87:07:18:04:dd:92:07:c8:31:22:f7:56:50:f5:d9:ca:
                    ea:a2:cb:04:49:ae:7e:b5:7d:55:d0:8d:04:b1:4d:6d:
                    ff:81:fb:54:d6:e3:96:a2:e7:d3:38:a1:6d:1f:6e:cf:
                    d0:bc:48:0d:2e:50:1e:93:0c:2d:91:b3:bb:92:fd:31:
                    50:68:ee:f5:21:d3:c7:89:bc:8e:ef:6f:38:9a:15:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:ae:e3:e1:0a:aa:1c:93:5d:43:6b:ff:7f:9b:c7:00:
        1a:3e:46:21:95:9d:3f:cc:ad:ae:35:09:2c:58:ea:ab:
        a0:05:42:af:47:e2:81:38:7f:19:78:18:bd:28:f5:f6:
        50:6c:1b:3f:87:cb:70:a8:e4:70:fb:9e:0b:f9:df:13:
        97:23:9d:8a:57:ef:0b:46:53:c1:f0:28:ca:ca:82:42:
        f1:74:52:4c:de:c0:8b:a4:cd:87:45:fd:89:b0:3f:e2:
        00:69:0c:a5:11:22:68:8a:52:86:9a:5c:cd:6b:8c:cd:
        99:d1:8b:58:eb:eb:12:d1:03:f9:28:fe:7d:d7:da:0d:
        99:75:0c:60:17:44:dd:f1:b3:cf:0d:f5:e9:e2:23:2f:
        3f:7f:86:42:84:51:43:93:11:d0:db:27:99:bd:a6:7a:
        b5:2b:aa:e3:f1:41:00:eb:cd:26:27:5a:a8:bb:9d:ac:
        b6:8f:63:41:18:fe:2b:c1:00:b4:70:6e:0d:b5:2a:05:
        b2:45:f0:84:03:90:8c:66:94:98:d5:e1:d0:b7:15:53:
        0f:06:22:dc:96:26:b5:db:1e:f3:55:2e:ca:09:a2:b2:
        38:fb:4f:19:db:c9:df:2a:a1:b3:3e:2e:6e:27:52:9c:
        12:0d:e5:72:b6:39:0d:c0:b9:d4:f0:df:95:7c:7c:bf
    Fingerprint (SHA-256):
        06:91:71:83:A8:3B:5B:A6:F5:69:46:1B:A7:71:FA:00:77:E4:24:7F:A3:11:49:4A:AF:B7:3B:6E:0A:6C:78:30
    Fingerprint (SHA1):
        C9:6C:DC:70:E4:D1:E0:E6:B1:A0:12:8A:2E:76:60:44:8F:35:95:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2689: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2690: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2691: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2692: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2693: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2694: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123014 (0x310fdc46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:80:0c:9b:ea:ba:d9:fe:9f:ad:62:40:87:96:16:21:
                    72:68:5f:5e:24:5d:1f:e7:c6:9c:32:4e:2f:48:c1:71:
                    65:08:83:72:68:b9:20:6c:14:4c:8a:69:0e:6a:74:19:
                    6e:b1:0b:6a:dd:2b:50:c7:bc:09:fa:16:4e:a2:9b:c1:
                    2d:6e:4f:0e:48:a9:63:a2:4f:8d:44:bb:a0:50:6f:b0:
                    31:93:2b:4e:e5:95:13:35:7c:fc:c4:71:e3:7a:74:dc:
                    a7:48:a0:ab:7e:b8:c6:62:9f:c4:a2:0a:89:2e:4c:51:
                    65:70:3b:73:18:c2:46:20:0c:ee:3e:24:a0:53:ec:c8:
                    2f:a6:a6:8a:a4:a2:c5:f7:6d:e8:b2:65:cc:a3:a8:52:
                    30:62:c2:6b:85:c7:c0:54:1f:c1:a0:85:ca:a6:89:0d:
                    49:f7:28:3f:f6:8c:ee:f2:70:b4:24:3a:0b:ba:08:bd:
                    87:07:18:04:dd:92:07:c8:31:22:f7:56:50:f5:d9:ca:
                    ea:a2:cb:04:49:ae:7e:b5:7d:55:d0:8d:04:b1:4d:6d:
                    ff:81:fb:54:d6:e3:96:a2:e7:d3:38:a1:6d:1f:6e:cf:
                    d0:bc:48:0d:2e:50:1e:93:0c:2d:91:b3:bb:92:fd:31:
                    50:68:ee:f5:21:d3:c7:89:bc:8e:ef:6f:38:9a:15:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:ae:e3:e1:0a:aa:1c:93:5d:43:6b:ff:7f:9b:c7:00:
        1a:3e:46:21:95:9d:3f:cc:ad:ae:35:09:2c:58:ea:ab:
        a0:05:42:af:47:e2:81:38:7f:19:78:18:bd:28:f5:f6:
        50:6c:1b:3f:87:cb:70:a8:e4:70:fb:9e:0b:f9:df:13:
        97:23:9d:8a:57:ef:0b:46:53:c1:f0:28:ca:ca:82:42:
        f1:74:52:4c:de:c0:8b:a4:cd:87:45:fd:89:b0:3f:e2:
        00:69:0c:a5:11:22:68:8a:52:86:9a:5c:cd:6b:8c:cd:
        99:d1:8b:58:eb:eb:12:d1:03:f9:28:fe:7d:d7:da:0d:
        99:75:0c:60:17:44:dd:f1:b3:cf:0d:f5:e9:e2:23:2f:
        3f:7f:86:42:84:51:43:93:11:d0:db:27:99:bd:a6:7a:
        b5:2b:aa:e3:f1:41:00:eb:cd:26:27:5a:a8:bb:9d:ac:
        b6:8f:63:41:18:fe:2b:c1:00:b4:70:6e:0d:b5:2a:05:
        b2:45:f0:84:03:90:8c:66:94:98:d5:e1:d0:b7:15:53:
        0f:06:22:dc:96:26:b5:db:1e:f3:55:2e:ca:09:a2:b2:
        38:fb:4f:19:db:c9:df:2a:a1:b3:3e:2e:6e:27:52:9c:
        12:0d:e5:72:b6:39:0d:c0:b9:d4:f0:df:95:7c:7c:bf
    Fingerprint (SHA-256):
        06:91:71:83:A8:3B:5B:A6:F5:69:46:1B:A7:71:FA:00:77:E4:24:7F:A3:11:49:4A:AF:B7:3B:6E:0A:6C:78:30
    Fingerprint (SHA1):
        C9:6C:DC:70:E4:D1:E0:E6:B1:A0:12:8A:2E:76:60:44:8F:35:95:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2695: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123014 (0x310fdc46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:80:0c:9b:ea:ba:d9:fe:9f:ad:62:40:87:96:16:21:
                    72:68:5f:5e:24:5d:1f:e7:c6:9c:32:4e:2f:48:c1:71:
                    65:08:83:72:68:b9:20:6c:14:4c:8a:69:0e:6a:74:19:
                    6e:b1:0b:6a:dd:2b:50:c7:bc:09:fa:16:4e:a2:9b:c1:
                    2d:6e:4f:0e:48:a9:63:a2:4f:8d:44:bb:a0:50:6f:b0:
                    31:93:2b:4e:e5:95:13:35:7c:fc:c4:71:e3:7a:74:dc:
                    a7:48:a0:ab:7e:b8:c6:62:9f:c4:a2:0a:89:2e:4c:51:
                    65:70:3b:73:18:c2:46:20:0c:ee:3e:24:a0:53:ec:c8:
                    2f:a6:a6:8a:a4:a2:c5:f7:6d:e8:b2:65:cc:a3:a8:52:
                    30:62:c2:6b:85:c7:c0:54:1f:c1:a0:85:ca:a6:89:0d:
                    49:f7:28:3f:f6:8c:ee:f2:70:b4:24:3a:0b:ba:08:bd:
                    87:07:18:04:dd:92:07:c8:31:22:f7:56:50:f5:d9:ca:
                    ea:a2:cb:04:49:ae:7e:b5:7d:55:d0:8d:04:b1:4d:6d:
                    ff:81:fb:54:d6:e3:96:a2:e7:d3:38:a1:6d:1f:6e:cf:
                    d0:bc:48:0d:2e:50:1e:93:0c:2d:91:b3:bb:92:fd:31:
                    50:68:ee:f5:21:d3:c7:89:bc:8e:ef:6f:38:9a:15:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:ae:e3:e1:0a:aa:1c:93:5d:43:6b:ff:7f:9b:c7:00:
        1a:3e:46:21:95:9d:3f:cc:ad:ae:35:09:2c:58:ea:ab:
        a0:05:42:af:47:e2:81:38:7f:19:78:18:bd:28:f5:f6:
        50:6c:1b:3f:87:cb:70:a8:e4:70:fb:9e:0b:f9:df:13:
        97:23:9d:8a:57:ef:0b:46:53:c1:f0:28:ca:ca:82:42:
        f1:74:52:4c:de:c0:8b:a4:cd:87:45:fd:89:b0:3f:e2:
        00:69:0c:a5:11:22:68:8a:52:86:9a:5c:cd:6b:8c:cd:
        99:d1:8b:58:eb:eb:12:d1:03:f9:28:fe:7d:d7:da:0d:
        99:75:0c:60:17:44:dd:f1:b3:cf:0d:f5:e9:e2:23:2f:
        3f:7f:86:42:84:51:43:93:11:d0:db:27:99:bd:a6:7a:
        b5:2b:aa:e3:f1:41:00:eb:cd:26:27:5a:a8:bb:9d:ac:
        b6:8f:63:41:18:fe:2b:c1:00:b4:70:6e:0d:b5:2a:05:
        b2:45:f0:84:03:90:8c:66:94:98:d5:e1:d0:b7:15:53:
        0f:06:22:dc:96:26:b5:db:1e:f3:55:2e:ca:09:a2:b2:
        38:fb:4f:19:db:c9:df:2a:a1:b3:3e:2e:6e:27:52:9c:
        12:0d:e5:72:b6:39:0d:c0:b9:d4:f0:df:95:7c:7c:bf
    Fingerprint (SHA-256):
        06:91:71:83:A8:3B:5B:A6:F5:69:46:1B:A7:71:FA:00:77:E4:24:7F:A3:11:49:4A:AF:B7:3B:6E:0A:6C:78:30
    Fingerprint (SHA1):
        C9:6C:DC:70:E4:D1:E0:E6:B1:A0:12:8A:2E:76:60:44:8F:35:95:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2696: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2697: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2698: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2699: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2700: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2701: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123013 (0x310fdc45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:83:0b:e6:6f:83:cf:62:90:23:7f:73:94:52:8f:e1:
                    e6:3a:ee:7d:c4:ba:2c:9d:02:ae:9c:27:95:40:ff:5f:
                    0f:10:4b:92:d4:6d:ea:26:f4:42:83:88:05:83:a5:c0:
                    2f:bb:21:71:d0:d5:73:3d:c6:77:39:9e:a9:11:b9:8d:
                    00:b0:0b:0d:83:31:dd:60:88:d4:42:f4:fd:27:0e:77:
                    51:c3:d8:5d:8d:6a:ae:5b:cb:39:fe:7a:15:52:63:a4:
                    00:0b:1d:5e:0c:26:bd:0b:89:20:14:a4:cf:df:cc:81:
                    ad:a2:12:b6:9e:1c:7e:59:df:cc:39:82:03:ae:52:7a:
                    d5:33:4c:91:32:9d:ba:65:a7:5f:f5:e1:14:bf:6a:ef:
                    ca:26:8c:87:ed:db:30:8f:33:22:6b:63:c5:d0:4e:de:
                    a9:66:0b:59:d2:27:2e:ab:3a:7d:01:31:35:a1:d5:97:
                    5a:f7:a7:0e:ab:b5:f0:df:e5:4f:b0:8e:7e:21:4d:92:
                    93:2c:51:4e:c3:07:b4:c4:28:00:2b:1a:1d:e7:69:70:
                    5e:e4:fc:85:8c:25:95:c4:b8:a6:ad:78:ec:ef:36:c6:
                    f1:24:f1:ed:a0:10:ed:73:dc:ce:01:e4:d4:d6:0c:96:
                    d7:33:a9:b6:ae:d3:c0:e0:ab:40:8f:f7:2a:ee:32:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:b6:97:b0:4e:b9:13:57:84:b9:f3:a7:9f:d2:5b:3e:
        b1:1b:29:50:7c:b6:9c:49:f5:d7:c4:72:b5:46:b5:9f:
        78:b3:b4:d2:50:de:69:b5:2a:59:f8:b4:84:3a:d2:da:
        3b:60:34:39:ac:a4:4e:f9:18:3b:6e:7f:39:23:8d:4a:
        a7:2d:f4:4b:7d:ae:97:e0:17:bf:36:87:2c:38:bd:c6:
        ea:38:49:98:e0:91:aa:55:ed:8e:41:71:76:a9:24:29:
        b0:a1:27:64:dd:bd:b8:3f:0f:2a:cc:c8:12:d5:df:f0:
        83:49:b4:c4:b6:c4:b3:32:fb:d3:a4:e0:c9:60:f8:70:
        ca:95:dc:48:f1:9b:b1:ac:c8:ce:cd:25:ff:5c:05:9b:
        87:63:2e:d5:f1:bc:1d:b9:09:5a:5c:1e:b2:3c:4e:11:
        e9:0c:d7:cc:56:9c:16:90:f1:56:d2:c0:cd:20:5f:f4:
        a7:53:38:c3:da:cd:f5:bc:5f:80:8e:f4:33:a4:c8:d9:
        b4:67:4f:c0:80:57:cd:c1:19:7c:48:ea:b1:b7:2d:cb:
        82:a9:84:79:8a:84:8b:76:38:e4:df:73:c0:87:fb:1c:
        47:e9:35:db:33:0a:94:14:81:66:88:de:d4:73:bf:bc:
        da:30:15:63:41:42:18:19:51:d5:f4:0a:de:7d:19:a0
    Fingerprint (SHA-256):
        31:AD:2D:AB:72:90:07:66:9B:C8:99:13:46:AC:CD:AF:EE:54:F8:CF:C5:FE:77:20:BE:54:CC:67:F4:50:F5:4D
    Fingerprint (SHA1):
        30:9C:96:DD:4A:CA:33:AE:65:7A:E2:1D:10:B4:11:82:6D:2F:55:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2702: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123013 (0x310fdc45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:22 2017
            Not After : Tue Aug 23 12:30:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:83:0b:e6:6f:83:cf:62:90:23:7f:73:94:52:8f:e1:
                    e6:3a:ee:7d:c4:ba:2c:9d:02:ae:9c:27:95:40:ff:5f:
                    0f:10:4b:92:d4:6d:ea:26:f4:42:83:88:05:83:a5:c0:
                    2f:bb:21:71:d0:d5:73:3d:c6:77:39:9e:a9:11:b9:8d:
                    00:b0:0b:0d:83:31:dd:60:88:d4:42:f4:fd:27:0e:77:
                    51:c3:d8:5d:8d:6a:ae:5b:cb:39:fe:7a:15:52:63:a4:
                    00:0b:1d:5e:0c:26:bd:0b:89:20:14:a4:cf:df:cc:81:
                    ad:a2:12:b6:9e:1c:7e:59:df:cc:39:82:03:ae:52:7a:
                    d5:33:4c:91:32:9d:ba:65:a7:5f:f5:e1:14:bf:6a:ef:
                    ca:26:8c:87:ed:db:30:8f:33:22:6b:63:c5:d0:4e:de:
                    a9:66:0b:59:d2:27:2e:ab:3a:7d:01:31:35:a1:d5:97:
                    5a:f7:a7:0e:ab:b5:f0:df:e5:4f:b0:8e:7e:21:4d:92:
                    93:2c:51:4e:c3:07:b4:c4:28:00:2b:1a:1d:e7:69:70:
                    5e:e4:fc:85:8c:25:95:c4:b8:a6:ad:78:ec:ef:36:c6:
                    f1:24:f1:ed:a0:10:ed:73:dc:ce:01:e4:d4:d6:0c:96:
                    d7:33:a9:b6:ae:d3:c0:e0:ab:40:8f:f7:2a:ee:32:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:b6:97:b0:4e:b9:13:57:84:b9:f3:a7:9f:d2:5b:3e:
        b1:1b:29:50:7c:b6:9c:49:f5:d7:c4:72:b5:46:b5:9f:
        78:b3:b4:d2:50:de:69:b5:2a:59:f8:b4:84:3a:d2:da:
        3b:60:34:39:ac:a4:4e:f9:18:3b:6e:7f:39:23:8d:4a:
        a7:2d:f4:4b:7d:ae:97:e0:17:bf:36:87:2c:38:bd:c6:
        ea:38:49:98:e0:91:aa:55:ed:8e:41:71:76:a9:24:29:
        b0:a1:27:64:dd:bd:b8:3f:0f:2a:cc:c8:12:d5:df:f0:
        83:49:b4:c4:b6:c4:b3:32:fb:d3:a4:e0:c9:60:f8:70:
        ca:95:dc:48:f1:9b:b1:ac:c8:ce:cd:25:ff:5c:05:9b:
        87:63:2e:d5:f1:bc:1d:b9:09:5a:5c:1e:b2:3c:4e:11:
        e9:0c:d7:cc:56:9c:16:90:f1:56:d2:c0:cd:20:5f:f4:
        a7:53:38:c3:da:cd:f5:bc:5f:80:8e:f4:33:a4:c8:d9:
        b4:67:4f:c0:80:57:cd:c1:19:7c:48:ea:b1:b7:2d:cb:
        82:a9:84:79:8a:84:8b:76:38:e4:df:73:c0:87:fb:1c:
        47:e9:35:db:33:0a:94:14:81:66:88:de:d4:73:bf:bc:
        da:30:15:63:41:42:18:19:51:d5:f4:0a:de:7d:19:a0
    Fingerprint (SHA-256):
        31:AD:2D:AB:72:90:07:66:9B:C8:99:13:46:AC:CD:AF:EE:54:F8:CF:C5:FE:77:20:BE:54:CC:67:F4:50:F5:4D
    Fingerprint (SHA1):
        30:9C:96:DD:4A:CA:33:AE:65:7A:E2:1D:10:B4:11:82:6D:2F:55:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2704: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123018 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2705: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2706: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2707: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123019 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2708: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2709: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2710: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123020 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2711: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2712: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2713: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123021 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2714: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2715: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2716: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123022 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2717: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2718: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2719: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123023 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2720: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2721: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2722: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123024 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2723: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2724: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2725: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123025 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2726: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2727: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2728: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123026 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2729: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2730: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2731: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2732: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 823123027 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2733: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2734: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 823123028 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2735: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2736: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 823123029 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2737: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2738: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2739: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2740: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2741: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 823123030 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2742: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2743: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 823123031 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2744: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2745: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 823123032 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2746: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2747: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2748: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2749: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2750: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 823123033 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2751: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2752: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 823123034 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2753: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2754: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 823123035 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2755: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2756: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2757: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2758: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2759: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 823123036 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2760: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2761: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 823123037 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2762: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2763: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 823123038 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2764: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2765: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2766: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2767: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2768: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 823123039   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2769: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2770: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2771: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2772: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123040   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2773: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2774: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123018 (0x310fdc4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:24 2017
            Not After : Tue Aug 23 12:30:24 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:f6:8e:00:95:2d:e7:1a:e9:78:a4:1c:fa:5b:6a:e9:
                    c5:73:7d:33:bf:2a:ff:57:e9:da:ee:25:38:b0:c2:3b:
                    79:e1:79:e3:b2:8a:0d:9b:77:41:8c:7a:9c:be:bd:82:
                    ea:f9:3b:40:fc:20:26:d5:dc:7f:03:69:fa:03:72:41:
                    1f:5c:0f:8d:8f:eb:72:f0:2f:bf:8f:57:a9:9e:40:9a:
                    75:fc:96:07:9a:48:ff:10:db:80:65:eb:7d:d1:d2:d4:
                    b1:41:7a:40:98:a0:3c:d0:28:f8:99:8c:d5:61:94:0b:
                    be:82:94:36:43:a3:af:4c:e4:33:e0:5a:32:7a:53:0b:
                    a9:22:ce:08:f3:37:22:8e:7f:97:aa:e0:2d:05:6e:47:
                    d6:8a:d7:da:6b:f1:4a:16:0d:77:0f:8a:63:a5:2e:02:
                    7e:75:bc:39:26:7b:34:15:59:4f:59:b8:c9:44:10:5b:
                    82:55:1e:62:de:9e:b3:8f:d8:61:5e:47:d7:a0:3c:4d:
                    04:e6:a6:03:e9:82:4c:83:2f:6c:b0:92:09:1c:7c:3d:
                    ee:6d:fc:40:5e:2d:94:97:4d:d9:07:76:ae:b5:95:71:
                    56:ad:f2:2a:ed:e9:c2:67:a8:fd:f2:c7:5a:e2:80:53:
                    99:c2:ea:f2:32:a8:03:1a:5a:4f:4d:28:eb:4a:c8:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:c3:d1:60:a1:8b:51:4c:be:bd:a3:30:0e:05:f9:b7:
        cd:33:8b:e0:11:ba:f5:7a:6e:de:e8:0d:d2:48:2c:87:
        e2:1d:8c:1e:84:ef:aa:cd:24:3c:51:56:56:c9:97:f7:
        98:51:0a:3a:ef:13:6b:64:d5:52:b6:35:3e:d1:eb:34:
        4d:d6:38:a0:d9:b1:80:72:11:c1:93:d2:6c:1d:ec:33:
        e7:7a:98:31:dc:7e:8c:cc:e4:6d:30:05:26:b4:71:8d:
        0d:99:06:a0:86:03:a3:ae:54:7c:80:d2:3d:eb:4b:e8:
        d7:2a:74:fe:db:c2:ad:eb:e3:fa:9c:b9:da:81:01:2e:
        51:23:53:43:e4:cd:13:43:c4:4c:42:0a:f1:f6:30:de:
        01:d3:9c:c8:aa:13:73:10:f7:d5:79:cc:46:1a:2d:d5:
        50:12:2d:03:2d:0e:a6:f6:1b:c6:76:06:c9:b3:ed:ca:
        a9:37:34:a4:b8:2f:8e:ae:43:9c:6c:67:1a:50:1b:06:
        ff:20:71:4d:68:8d:b7:c1:8c:f3:42:e7:ac:95:de:14:
        6a:55:f6:97:2c:76:fe:52:8d:44:13:4f:3d:bc:36:77:
        ce:24:bf:3d:8a:08:3b:24:c7:9c:81:57:d8:20:1e:36:
        fb:99:aa:e5:c8:f1:9e:03:9c:90:b0:49:0b:04:01:4f
    Fingerprint (SHA-256):
        01:62:4D:A0:E6:32:10:FA:50:6B:CC:84:7D:EC:B7:E5:48:B1:F9:13:2B:6C:80:EF:53:3E:86:E6:49:BA:54:43
    Fingerprint (SHA1):
        F8:04:3F:AB:25:7B:FE:A7:24:CB:43:12:8C:1F:B9:04:3A:72:1B:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2775: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123019 (0x310fdc4b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:24 2017
            Not After : Tue Aug 23 12:30:24 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:a8:4b:99:1f:98:08:7a:45:5e:f1:65:9e:60:48:bd:
                    51:a8:03:c0:6c:fd:fc:50:5a:2c:22:43:35:09:b4:1a:
                    bb:4d:19:4c:60:dc:a3:48:3e:39:81:2e:60:1a:8e:34:
                    63:8f:7c:94:2d:bd:5f:ec:a2:6b:35:0c:67:1a:8e:ac:
                    f2:fa:1e:87:89:34:43:aa:4d:6d:56:e9:84:5a:8e:56:
                    20:e4:c8:57:ae:f1:88:dc:13:98:5c:2e:c4:b3:95:c7:
                    be:4d:01:00:9c:72:99:69:de:53:ab:1b:1a:26:b2:51:
                    b9:2b:15:a7:7d:f3:e4:f2:be:23:9c:21:b6:24:33:d2:
                    d0:85:ae:34:d3:a1:35:00:fe:b8:eb:58:f4:9e:fb:8e:
                    28:e6:ec:f9:a5:ce:09:c8:7b:0c:ad:fe:d6:c5:47:8d:
                    5f:2d:fe:ef:2e:8e:9f:fb:b9:bd:0f:37:c9:03:3d:34:
                    51:1a:5b:d4:7f:be:cd:f6:66:ae:8c:30:75:ae:27:ae:
                    b3:a3:61:cf:85:1a:ea:91:21:03:59:64:db:2e:e6:a2:
                    f3:c8:56:d7:f1:44:c1:33:86:42:83:ec:f5:f4:f1:b4:
                    6b:e3:f3:1c:2c:5e:d9:12:92:21:44:61:78:71:cf:1c:
                    87:02:65:ea:cd:44:0c:50:fb:f6:9f:72:54:6e:2b:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:a9:c4:e1:cc:58:d8:bb:7d:24:84:de:c9:49:af:8a:
        6b:15:8c:57:14:a5:a7:66:0d:2f:67:24:d3:6b:6f:55:
        93:4b:93:49:11:a3:32:05:93:47:c7:9f:8e:06:03:ad:
        08:06:48:32:e5:c9:60:f0:7d:ed:aa:aa:1b:23:32:07:
        81:d0:f4:8d:74:35:f3:b3:f5:10:93:fc:61:a3:2a:14:
        6f:5d:0b:44:1a:a7:fe:cd:fb:0e:84:d5:15:37:e3:bd:
        e1:ec:43:cf:6c:69:65:f9:a5:27:84:bc:7a:98:cd:2b:
        09:5b:d0:7f:e2:5e:32:c1:32:aa:22:96:c4:e4:54:6a:
        51:59:09:27:c4:45:c0:e0:eb:20:07:c0:44:2c:31:48:
        4b:bb:2c:45:a7:e2:4c:c2:c9:a9:0a:bb:2e:bc:6f:bb:
        fe:7f:7d:fb:46:cc:4e:b3:5e:39:99:67:29:73:89:92:
        12:55:da:5b:e5:e5:30:bd:1f:05:ce:f8:7d:f0:cd:35:
        fa:29:4c:d9:30:cc:5f:bd:db:03:b8:5e:4b:25:9c:19:
        2b:0d:bb:54:0b:db:01:a3:7d:49:9a:4e:b0:8c:e6:a3:
        a4:84:3e:04:b1:ce:be:45:76:9f:62:12:c3:dc:ec:68:
        9b:ea:0b:c2:ec:65:61:da:cd:33:27:c5:1d:95:6c:6a
    Fingerprint (SHA-256):
        AD:89:16:4D:64:75:E2:C0:39:98:2C:40:C7:58:20:F9:9D:0E:EC:DA:11:DE:09:2C:8F:51:22:59:A2:2E:3D:F6
    Fingerprint (SHA1):
        E1:8A:EB:4C:6D:08:5D:55:F9:2F:06:8C:F0:14:81:32:87:82:DF:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123020 (0x310fdc4c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:24 2017
            Not After : Tue Aug 23 12:30:24 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:a3:cd:b1:df:7e:28:08:4c:7b:65:50:a8:b2:c1:5e:
                    0d:45:cb:f0:c4:9b:78:8f:98:79:62:b9:35:e5:09:70:
                    d6:89:6a:b4:47:48:42:f5:ec:3e:0b:4a:be:98:8e:ce:
                    f3:37:10:57:51:1f:0c:aa:8f:9c:47:47:d6:04:1f:4c:
                    90:b3:04:d9:5d:c4:9f:a5:a8:42:87:14:60:9c:79:39:
                    30:6e:e1:3f:ba:ac:d0:8b:85:51:84:a3:f4:1f:4b:61:
                    b6:72:8e:1a:24:13:bc:21:2e:a2:a1:d4:c3:f1:39:95:
                    7e:3c:a5:69:93:56:67:6a:d9:bf:f0:84:45:b4:c7:54:
                    e4:3b:b0:a3:3a:8c:ff:4f:99:f6:77:ed:06:36:d7:02:
                    68:f0:d5:79:75:2b:21:f2:14:e1:01:5d:6e:1c:74:69:
                    24:4d:eb:4f:65:69:0c:15:ee:af:5d:18:6d:60:b5:bd:
                    92:e1:6e:3e:28:22:ec:31:c5:4b:cd:d9:d5:64:1a:4b:
                    bd:1b:cf:be:c5:28:a1:78:49:6e:38:e4:21:6e:60:3a:
                    62:2c:fa:00:17:ce:b4:5b:68:e2:30:49:09:7f:a9:23:
                    46:45:17:d3:d8:2d:b3:d7:04:cb:22:ca:dd:84:10:ac:
                    1e:bf:af:07:b1:f7:ae:f5:3c:1c:54:da:f8:7d:17:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:2f:aa:b4:e6:52:03:31:de:33:25:27:1a:2e:1f:ad:
        9c:e0:6d:34:db:d1:9b:14:48:ba:49:46:70:13:72:8f:
        d2:71:be:df:e3:fd:c4:43:85:05:a1:9f:af:68:aa:4b:
        c3:c6:03:90:47:bd:16:e8:29:c6:72:c8:1d:b0:b6:f0:
        e3:da:2f:c4:5e:51:2b:f5:9b:f3:89:1f:0b:54:a8:a6:
        68:6c:15:db:35:91:ba:b5:18:c4:57:fb:57:94:11:f9:
        f9:4f:f0:a9:32:c6:65:8e:0b:36:e0:62:09:29:2c:12:
        ab:8b:b1:eb:1b:9b:7f:7c:d9:0c:e7:a3:20:e6:3e:4a:
        de:74:38:d8:3c:04:9c:5f:1d:64:f5:e9:15:49:7d:d4:
        22:85:5b:20:fa:1c:d9:f8:be:02:99:57:36:d8:08:27:
        6d:9f:9d:01:97:08:c4:6d:cb:93:a9:3a:15:a4:d5:60:
        6c:f9:76:e8:ab:c4:8e:8a:18:56:b8:68:19:58:61:70:
        35:72:8b:e2:35:6e:a5:44:23:b2:d4:fd:6b:6c:bc:4a:
        f5:a7:9a:28:d4:18:37:f4:51:c9:9f:6a:00:ee:77:ed:
        c2:14:aa:e5:5c:b0:1a:11:54:b5:7e:b6:e1:94:7c:71:
        16:a2:08:13:e1:5e:9a:2b:3c:c9:e9:68:22:89:ca:aa
    Fingerprint (SHA-256):
        D9:20:A9:65:07:98:78:F4:9E:CA:19:A4:9D:77:C7:50:C1:B2:FF:4F:E4:8C:0B:EF:74:96:02:55:C3:9D:93:7C
    Fingerprint (SHA1):
        F7:BF:2B:1D:07:EF:DD:B6:9F:84:12:1A:08:3D:52:06:20:87:5A:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2777: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123021 (0x310fdc4d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:24 2017
            Not After : Tue Aug 23 12:30:24 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:de:5a:01:ca:e7:f7:fd:c6:fe:ef:0d:ca:fe:f6:66:
                    36:d9:13:09:d7:8a:85:10:b7:15:cb:04:35:2b:65:89:
                    26:b3:c9:3e:f2:6e:09:97:be:39:f7:74:4f:0a:b9:9e:
                    bf:cd:f0:aa:6b:eb:a0:08:36:4c:bd:d7:b8:ad:56:5c:
                    e1:5c:44:62:18:23:1b:a8:ec:47:fc:a3:69:bf:17:ac:
                    b6:28:99:02:9a:b2:c8:ed:22:22:29:5b:77:a5:6a:ed:
                    e9:2c:eb:df:83:6c:f0:9e:ca:e6:87:a6:24:89:f2:1a:
                    1b:33:69:83:f6:b2:47:d8:18:39:42:f2:8c:a8:42:ac:
                    ac:f6:38:83:1d:e4:81:54:d9:74:23:93:1c:22:49:5f:
                    e7:b9:c0:43:17:39:c9:c5:1e:d2:a9:6e:b7:e5:28:fe:
                    4b:95:7b:d3:39:5e:21:7a:22:0c:35:13:5b:9f:5d:18:
                    48:5c:4e:3f:9c:eb:97:c8:a0:dd:15:cb:2a:b7:8b:65:
                    29:01:74:26:5a:da:7a:be:47:b9:cb:25:a3:cf:cb:1e:
                    cf:1a:1c:4e:6b:e1:4a:30:ef:a0:bc:3b:61:99:84:ca:
                    ed:63:f6:f3:24:f6:50:b0:b1:83:0e:dc:c1:2e:c3:01:
                    ca:5c:30:ba:f0:e4:40:fa:8b:25:c5:93:83:43:76:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:81:52:74:8a:b5:7f:65:94:2f:b6:1a:f3:3b:ed:fd:
        b6:c2:6c:69:1c:76:64:2f:de:aa:f3:9a:82:8f:8e:62:
        26:ee:54:70:fd:8b:ca:1b:ca:ea:ed:3c:88:1c:06:84:
        f5:29:a4:75:01:14:2b:91:7b:cd:29:46:c1:c9:8b:25:
        e8:1c:b2:08:37:8f:18:bd:7a:2f:9d:60:3c:7f:67:0d:
        0a:72:ce:cc:fc:35:fe:2b:46:91:5d:3b:55:fb:1e:df:
        84:01:0a:bf:c9:1b:46:fd:4c:12:b9:d7:f7:05:d4:ab:
        01:16:d2:22:ef:66:91:21:f4:f6:c9:f7:0a:b6:4b:dc:
        f0:8f:0a:97:e5:67:bf:59:be:0b:fb:35:4e:b3:59:63:
        a9:51:61:5c:0b:14:83:a6:cf:8a:29:2b:78:2e:27:f7:
        66:ff:bc:dc:f6:e2:25:b9:a7:e9:bd:1a:a4:09:86:c4:
        30:5f:88:4b:7f:4e:53:72:ef:f9:6d:49:81:54:9f:a4:
        6f:5a:82:ec:74:be:e1:32:85:c3:2d:94:6a:67:a7:04:
        6a:ee:e6:a8:9a:75:cb:99:2e:95:c2:75:86:0b:b2:9d:
        76:ef:73:5f:29:6f:2d:5b:9e:38:24:bf:43:07:28:f8:
        2f:c0:37:6f:d4:f3:43:1c:c2:fa:42:ef:79:f0:27:3d
    Fingerprint (SHA-256):
        B6:E7:16:BF:54:EB:5A:03:73:1E:CE:0C:40:D8:F3:CE:9D:37:15:E5:F3:EF:41:CB:76:AF:B2:E6:66:B7:B7:25
    Fingerprint (SHA1):
        78:9F:E4:23:1D:40:CE:70:5F:D6:BB:E5:B8:8A:61:7A:6C:21:48:35
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123022 (0x310fdc4e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:24 2017
            Not After : Tue Aug 23 12:30:24 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:47:9d:d9:95:fd:b9:1b:02:68:be:9f:86:e6:fd:d4:
                    f3:24:9d:0e:4f:64:5f:80:c0:99:38:b3:8d:17:0d:0c:
                    e0:64:20:22:da:25:1c:e8:b8:a4:c2:16:eb:f1:3f:a4:
                    ab:ce:00:77:85:c5:5f:2f:d4:27:87:90:de:56:45:61:
                    2f:1f:58:0c:a9:04:41:87:06:cb:8a:1d:61:ed:cf:0d:
                    9c:11:29:48:ce:89:2e:c6:d7:23:eb:e7:42:ab:af:04:
                    9d:3c:3d:95:c5:2a:dc:ec:a8:8e:34:ca:2f:95:11:19:
                    65:8b:f2:dd:2e:3d:79:e1:a5:71:eb:9e:7f:0b:b0:85:
                    46:f2:10:d0:9f:13:c8:40:46:b3:a3:f6:06:d4:da:37:
                    f2:4e:6e:a9:45:a5:d7:ff:12:48:b7:6a:e0:5e:8b:ae:
                    64:37:fa:10:fe:03:f4:fc:01:c9:51:8b:e6:8f:fe:96:
                    9d:15:ca:7e:10:a2:90:f4:49:f1:e8:86:59:2a:8d:f2:
                    23:c7:67:5a:66:b6:ed:86:31:a3:c5:bc:49:7f:d7:fc:
                    84:12:70:15:b5:c0:7c:79:c9:e7:7b:0e:a4:88:26:31:
                    8a:c3:e1:d7:20:30:88:71:ce:b6:6a:76:c3:e3:c4:41:
                    2b:7e:9c:b9:9f:9e:47:ba:4a:17:3d:76:be:88:48:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:4c:87:f7:cc:01:3c:d0:1c:bb:86:77:97:bf:5e:cb:
        81:8b:e1:30:ec:c0:d8:dd:ca:e6:58:b9:66:61:e6:d4:
        4d:6b:8c:37:7d:c0:d1:d2:ff:3e:52:15:f6:cd:7e:99:
        df:f3:18:5d:7f:12:84:f8:10:3c:01:28:58:37:d1:d0:
        e8:ea:ed:b6:d6:78:96:7a:13:7d:c1:ae:20:ae:38:d1:
        f6:18:66:e4:4b:7f:c5:df:df:28:2f:88:e5:b8:0f:05:
        c2:4f:54:09:03:8b:55:7d:9d:ef:ff:67:7c:19:de:e9:
        45:8d:62:c1:02:8b:dd:9d:8b:23:26:8b:af:cb:80:4e:
        9d:13:11:91:2d:e8:78:4a:a8:83:8a:d4:c9:5b:e4:e7:
        c2:8e:c7:83:02:2f:ba:66:55:f5:1a:cb:e6:d0:00:7b:
        6f:8e:1d:dd:a1:b9:87:b3:74:de:dc:7f:7d:2f:36:de:
        33:1c:72:7e:ec:23:f1:48:02:96:dc:3f:b8:1d:33:c3:
        10:7d:5f:f8:6b:e5:7e:15:6a:f6:f2:34:d4:69:ac:81:
        c1:95:e5:e2:18:8d:27:ff:43:7c:b1:59:11:a7:6b:7a:
        04:2a:cf:e6:dc:35:4e:22:e6:3b:4f:60:67:0e:c0:98:
        e5:46:be:d8:12:0f:9e:99:9f:aa:bd:eb:68:6b:ad:17
    Fingerprint (SHA-256):
        6A:3D:F3:6C:C2:22:0A:17:E0:36:D4:08:C7:B7:FF:F4:86:C0:D5:66:98:75:71:06:91:72:FD:B7:E7:14:AE:B5
    Fingerprint (SHA1):
        9D:BE:22:E1:A6:0C:37:8A:1E:40:C2:47:31:E5:74:16:37:51:2B:B2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123023 (0x310fdc4f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:24 2017
            Not After : Tue Aug 23 12:30:24 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:93:d5:1e:9a:fa:c9:8f:88:2a:87:d5:3f:4c:0f:d9:
                    69:5c:0f:f4:55:9a:13:0e:5c:c7:31:d2:cb:b4:e8:0e:
                    f2:c7:53:b4:d6:e4:b8:2c:a2:a7:2f:05:45:49:60:19:
                    ea:79:92:96:6a:7a:14:8c:eb:cb:a0:4b:4c:ce:1f:32:
                    7e:ec:aa:38:b0:b3:4d:47:fa:a8:ad:78:f7:ae:cc:9f:
                    07:01:69:10:83:d7:9c:c9:d5:38:94:dd:fc:0d:e1:a3:
                    35:05:47:98:60:29:81:f4:0d:c9:f1:2c:77:7b:ba:24:
                    6e:db:a2:b9:1c:65:95:5c:8e:13:44:38:e3:36:de:47:
                    f1:d3:a8:ad:80:0e:ee:5e:1d:e7:53:ce:08:f1:cf:6d:
                    2b:d7:4d:4b:33:d9:f3:9f:8f:e7:2f:c5:cc:ad:f0:28:
                    fb:19:ff:4a:ca:29:df:c2:31:85:1b:26:3a:04:8f:e1:
                    83:da:60:c9:48:bf:e8:ae:02:90:35:3a:aa:ef:b6:59:
                    c0:41:48:e8:50:fa:13:f7:b9:cc:ed:c9:9c:f5:6e:99:
                    eb:1a:c5:eb:99:34:0e:9b:8d:8d:61:39:cd:42:de:d3:
                    b7:fb:53:52:ca:0e:70:ee:a9:ee:d7:ea:9d:e8:82:59:
                    9c:52:6f:07:80:90:19:50:30:44:e2:44:bd:02:0a:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:5a:24:dd:7f:4a:d9:3d:7d:7d:da:b6:24:7a:03:1a:
        7f:bd:0e:5b:b2:ac:56:0f:c9:96:a9:9f:5c:67:98:0c:
        9f:8b:65:0e:e7:4d:b6:6c:e4:e8:6c:68:ac:dc:cf:a4:
        4f:a0:e7:88:f1:44:1c:ab:0c:95:a2:1f:bf:cd:ce:d5:
        85:3c:af:c4:87:9e:81:46:40:5a:7a:66:a2:8a:70:7b:
        5b:83:aa:79:d2:07:6c:bb:d7:30:08:84:73:33:85:65:
        00:39:d1:23:05:88:c6:cf:c7:0a:10:68:87:7b:e7:80:
        7f:23:60:83:94:f0:77:ff:f3:9b:1a:5f:3f:a9:71:dd:
        90:86:b2:ce:16:5b:a0:81:99:b2:9f:ba:e1:fe:00:37:
        fb:43:2d:a9:32:84:5b:ea:c8:68:46:42:ed:8d:62:3e:
        bb:1b:cc:ec:8a:1b:7d:04:a0:2f:c7:4b:d7:87:a1:fd:
        ce:97:d4:e9:62:db:24:d7:44:40:b4:e0:3d:6c:5a:10:
        ef:22:df:9f:0d:fe:b0:a1:3f:db:4a:58:c3:72:18:4f:
        65:7c:b3:16:9b:62:fe:fc:d1:af:7a:39:bb:a6:94:d5:
        09:e2:15:6f:d1:5e:ff:2f:55:79:8b:4a:d0:93:a5:04:
        9f:eb:37:2b:68:d9:e4:a9:11:8c:3a:47:0a:db:53:6b
    Fingerprint (SHA-256):
        67:48:4D:4B:C6:65:22:C2:36:FF:6B:F7:C8:C6:6C:43:5F:23:82:86:B8:DE:EE:DE:4A:12:71:2E:7C:F7:28:67
    Fingerprint (SHA1):
        43:0A:14:8E:5C:3B:C6:B5:FC:A7:54:92:81:F2:97:A3:7C:B1:39:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123024 (0x310fdc50)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:25 2017
            Not After : Tue Aug 23 12:30:25 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:59:bf:8c:f7:a7:a6:a5:ed:53:67:7a:e0:b4:a0:cb:
                    4b:76:46:a8:d3:6a:87:53:27:30:d4:ce:b9:90:da:2c:
                    ca:e7:6e:79:4e:23:60:4f:3f:c0:f2:12:49:0d:89:88:
                    a7:2a:8f:b4:13:66:6f:9f:92:78:d6:2b:5a:64:0e:53:
                    e6:2c:7f:3d:b7:1a:98:1a:44:11:d1:c7:41:10:d2:cc:
                    68:4a:0a:56:e5:c0:2c:2f:ab:9f:65:c5:47:9c:df:8f:
                    60:a9:ae:a9:5d:ea:7a:6b:ac:f7:25:06:d1:0e:2d:49:
                    04:fd:9f:a1:e6:9b:9f:10:fa:d4:84:13:4c:f7:84:75:
                    ef:59:a9:08:13:f5:92:d8:e0:78:c9:85:5d:16:7d:fa:
                    52:96:58:cd:61:a4:ed:12:c1:e1:52:1b:04:b2:04:38:
                    15:6e:e4:99:e4:02:59:4c:23:04:08:bf:77:9e:84:15:
                    18:cc:f8:ba:a6:20:3e:2d:e0:87:dc:9d:dd:95:c9:3e:
                    5d:56:c5:25:b4:1f:2d:1c:4e:69:bb:cf:8b:ee:4b:d9:
                    19:e8:cf:86:22:e5:74:30:a4:0d:01:a7:0a:9c:6e:ce:
                    2e:71:56:82:5f:c4:04:88:66:8a:00:ee:8a:cc:13:17:
                    22:ad:f8:b5:8c:77:bc:93:59:77:10:e0:f7:41:a8:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:84:9a:55:9c:83:c2:19:0b:b7:96:b7:50:a5:99:54:
        f6:aa:24:19:72:ba:55:9f:d7:27:15:83:92:49:c5:d9:
        61:e3:50:cc:33:82:b2:74:5b:d5:77:b3:5b:18:a0:36:
        a4:9b:5f:c3:68:a0:8a:09:0b:a7:1f:e4:99:ee:26:16:
        b6:41:da:b6:0f:24:d4:2e:cd:ad:8d:dc:bb:33:f7:95:
        aa:2f:94:44:d5:45:76:e2:bc:46:a1:89:87:24:e7:4a:
        4e:e6:3c:aa:f6:80:bb:91:47:46:bc:1c:c3:c6:bb:9b:
        4f:24:3d:ad:f7:85:c7:4c:fb:30:ce:1d:ee:02:9a:11:
        85:a5:0a:82:d1:ea:37:e5:ff:e3:e5:83:9a:97:ad:dc:
        31:cb:36:72:08:6c:e1:b6:2d:f8:a3:62:e8:d5:8d:79:
        61:1a:c6:71:b7:e6:71:97:a0:48:66:b1:81:8c:72:9c:
        b1:ed:c0:87:1f:da:f6:1a:62:69:29:10:f5:5f:16:39:
        22:b8:a3:92:09:65:e9:dd:bc:e6:1a:3b:16:d5:1b:d4:
        d1:fa:bf:b6:69:b1:d8:89:6f:54:01:07:37:fb:ba:5e:
        b5:52:a4:9e:7e:87:78:c7:70:88:a1:a0:0a:cb:ba:3a:
        b5:1d:e8:5d:d9:65:63:fb:72:c7:d6:db:9f:d3:cb:c4
    Fingerprint (SHA-256):
        5C:14:79:2B:6C:01:67:A4:8C:08:D7:8B:B3:2D:6C:6F:99:C9:79:5C:BC:C5:99:7E:E2:00:65:2B:85:33:31:DB
    Fingerprint (SHA1):
        D1:B5:B0:80:1E:23:C5:B9:D7:AC:7B:0D:E6:26:DF:F0:A4:60:BD:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123025 (0x310fdc51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:25 2017
            Not After : Tue Aug 23 12:30:25 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:5d:d4:f9:0b:aa:f8:d3:d9:d0:b9:cd:13:27:08:75:
                    da:33:87:52:e4:82:39:41:03:0a:1e:8f:57:c9:03:fc:
                    6a:20:5e:70:16:2b:a6:ad:6e:84:52:d1:38:44:75:a8:
                    2d:dd:ac:5a:5e:be:89:08:f9:cc:c1:69:cd:38:c6:e1:
                    af:ed:b1:02:f8:1d:7b:9c:5a:57:9d:65:72:76:be:d3:
                    e4:81:ff:d2:fb:e7:ae:5b:24:ab:da:c8:ca:ed:08:88:
                    93:d8:69:1e:7b:69:69:c0:2d:bb:8f:50:39:8f:f4:40:
                    c6:6b:db:53:a1:ad:b8:b0:14:d0:d4:0d:b8:c2:db:6d:
                    30:d6:b5:8c:ef:12:f7:19:fb:64:5f:31:33:ab:47:0a:
                    6d:9a:1b:a2:e1:82:0c:7f:c6:3b:c0:b7:03:64:b9:c2:
                    e5:c9:ed:57:02:50:b4:a3:9f:b1:ce:9a:7d:25:63:a0:
                    a7:e0:68:0d:51:bb:15:ba:a7:57:cd:08:38:90:be:17:
                    1c:bb:68:be:72:d2:82:6f:f5:42:39:d2:7b:2e:7e:a3:
                    4f:e9:47:5f:a4:1e:50:1e:12:2d:d4:09:80:59:59:98:
                    d0:7e:03:bf:a7:45:b9:be:9c:3e:d7:7e:55:c4:ce:a9:
                    c9:53:c3:af:0c:40:14:96:f2:4a:bf:0d:53:ad:17:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:93:19:9b:c1:15:e4:8f:60:81:ef:30:8a:d2:33:8e:
        52:54:9b:1b:78:5a:b3:44:cd:c8:0e:dc:7f:43:a9:a0:
        42:a7:fd:00:f6:71:87:af:41:74:c5:58:22:25:6b:ba:
        be:a6:2e:07:a7:43:97:34:08:db:a2:49:2e:16:85:e6:
        66:3c:71:b9:69:62:e2:eb:22:95:ad:8b:b4:c5:02:b8:
        9b:b6:13:97:d1:b2:57:73:22:26:7a:72:64:75:81:d1:
        15:92:6f:35:6e:85:a4:3c:26:cb:e6:89:c3:94:41:68:
        b8:38:ea:22:23:a5:b4:4d:a2:31:4a:59:2a:3b:68:d4:
        0c:8a:ce:24:d7:5c:18:8d:05:b0:e1:ed:e7:98:16:92:
        24:46:40:a1:ba:02:8b:3d:d9:05:81:6d:77:ed:63:c5:
        05:f3:10:3d:11:af:07:2a:bb:c7:54:2a:be:a0:57:a3:
        29:da:82:ec:b1:2e:b0:e2:f5:11:0f:ae:19:d3:11:e3:
        d7:61:5d:1a:39:2e:cc:49:b7:c1:20:3e:1a:19:fd:17:
        26:aa:ab:73:9c:1a:68:b5:7c:b7:2f:ef:be:6b:a3:76:
        0d:46:00:75:cb:05:09:2c:cd:f8:e7:92:cc:0e:df:61:
        22:9d:c9:f1:20:c2:7a:3b:be:8b:f2:99:81:2b:2c:e7
    Fingerprint (SHA-256):
        58:EC:7F:BA:95:5D:B2:D2:34:49:2A:B9:2E:87:89:77:FE:A7:A2:44:6E:01:45:7F:65:D9:B9:30:0C:37:5E:DF
    Fingerprint (SHA1):
        C4:9A:E0:74:D3:15:82:34:20:7B:2E:11:25:CA:59:1F:9A:D4:AD:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123026 (0x310fdc52)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:25 2017
            Not After : Tue Aug 23 12:30:25 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:0a:9c:8a:5a:00:16:93:b7:6a:1c:3c:4d:87:07:b2:
                    13:88:2b:7c:79:8a:95:af:25:76:c0:bb:3a:d1:f2:b3:
                    cf:3b:7b:2a:01:e0:78:de:54:eb:51:45:00:d4:76:3b:
                    03:dd:59:6c:65:1c:6b:56:37:70:cb:ae:fd:2e:4c:9c:
                    21:43:e6:33:4b:02:a4:c3:8c:55:38:d7:af:93:1b:6d:
                    c9:5c:77:95:7f:3b:de:5a:58:cd:55:e6:e3:e4:e2:1b:
                    bd:b6:14:2c:5f:73:9d:b5:6e:05:8f:09:f3:f9:cf:a5:
                    a0:f4:16:8a:13:3b:1e:7d:91:87:02:cf:9c:d9:36:d3:
                    13:6a:d9:b5:7c:26:92:97:2d:f7:40:27:19:9f:1c:ff:
                    1c:05:3e:92:22:ac:02:55:5b:37:ad:71:1f:d8:4d:51:
                    55:4e:96:6e:07:3a:75:fd:cb:aa:78:c2:24:e7:1e:78:
                    25:5a:70:42:df:36:30:3a:81:0e:2e:b4:6a:19:51:be:
                    a8:d0:8f:ec:52:72:af:9f:6e:28:d7:91:02:8d:67:bd:
                    60:ba:aa:01:68:af:c7:7d:77:9e:75:ff:e6:ae:2e:de:
                    52:06:73:8d:62:1d:4b:48:25:ad:b2:f7:57:48:52:5d:
                    f8:a2:46:ff:fc:4e:ac:b5:7e:37:46:19:eb:57:54:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:18:e4:8f:2f:d8:e3:aa:14:ed:65:69:9e:a2:d7:99:
        2c:8a:ae:18:4d:d3:bd:84:17:7c:70:a4:63:2a:2f:6a:
        67:a4:82:1e:a2:4f:95:66:22:08:09:c7:e2:6e:05:58:
        19:c0:80:d4:0f:16:70:5b:14:ef:da:18:10:9e:65:ff:
        44:3c:f6:2b:ac:7d:2e:e0:6b:ba:9a:64:35:be:b1:cd:
        d0:4b:dd:46:b9:0b:55:50:d0:46:a7:10:14:cd:56:45:
        35:ab:b4:4e:2d:76:cf:bd:ea:7f:b5:46:df:2f:df:33:
        1a:bd:64:a3:cd:75:5c:bd:80:0d:56:8b:de:cf:4e:96:
        72:cd:9f:1a:8f:9a:9b:55:f8:80:83:bb:3b:a9:23:77:
        fa:94:ac:3e:06:d8:d9:86:89:c4:a8:38:30:a5:0b:0c:
        3e:c8:f0:98:76:66:7d:3b:7b:ac:b4:4d:f6:8b:d1:df:
        c6:3a:a1:80:f6:a3:6d:23:0d:14:06:7c:52:4f:f7:35:
        40:73:46:c7:00:0f:d3:49:d2:e6:39:91:03:52:f4:ba:
        25:76:91:d9:a4:21:52:eb:44:d9:78:ab:a6:8f:39:6c:
        34:d3:dd:f0:18:00:f6:77:5d:37:a2:a1:6d:0c:1d:03:
        5b:ac:37:56:41:83:d3:fa:ea:19:c0:ed:0b:33:ea:70
    Fingerprint (SHA-256):
        F2:64:AA:56:44:77:AB:5D:67:8F:F8:B6:2F:DA:8B:CF:17:3D:D4:CD:37:A9:6E:FC:B3:30:1E:BB:40:C5:15:7D
    Fingerprint (SHA1):
        47:9C:DC:58:85:32:5F:80:B2:BF:70:7F:6B:EF:76:76:33:6A:71:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2784: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123041 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2785: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2786: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2787: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2788: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123042   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2789: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2790: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2791: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2792: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123043   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2793: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2794: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2795: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2796: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123044   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2797: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2798: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2799: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123041 (0x310fdc61)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:27 2017
            Not After : Tue Aug 23 12:30:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:7c:e9:09:73:c1:46:30:1f:9b:85:8a:40:90:c2:34:
                    4e:b0:3b:1b:1b:cc:22:3a:84:34:9d:36:a4:c6:dd:c9:
                    48:c2:7c:de:c4:6b:af:fd:20:fb:b5:4b:a6:d9:7c:79:
                    17:57:40:5b:9d:a8:be:87:2b:c4:54:10:44:cc:f9:ad:
                    48:d7:3c:e0:d0:55:ed:6f:6c:c6:9c:f5:1b:a1:5e:13:
                    51:9a:9a:b1:e7:03:6a:44:26:e0:54:73:cf:18:2b:3c:
                    33:bb:4f:b9:1f:cf:84:da:08:ec:24:3c:59:55:ad:20:
                    c4:24:c2:44:4e:de:6c:1f:c3:c1:fa:c6:f1:99:97:4d:
                    fa:f1:a9:12:bc:6c:f4:a4:44:37:e2:ed:d3:13:a5:8f:
                    62:66:0b:da:5a:7d:d8:4d:6e:33:20:5a:e9:61:a3:28:
                    34:ef:53:95:05:e1:23:31:ff:a2:ef:73:53:f8:a4:85:
                    5b:a1:13:76:69:2f:bf:8f:63:23:4e:c0:22:1c:3e:7c:
                    bb:e1:10:d9:23:53:87:a9:53:1a:c8:74:4f:d5:3e:bc:
                    e9:b0:03:94:2d:77:b0:81:42:94:c0:75:d7:b4:68:f4:
                    c6:0f:1a:e1:72:18:58:14:dd:44:a1:3b:e6:43:47:ee:
                    02:23:86:be:78:05:b9:a1:59:55:e9:2a:6c:20:43:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:22:1f:ec:13:f7:c3:1a:c0:7a:0d:8d:dc:c4:5e:24:
        d7:69:a8:93:92:3c:22:84:a4:bf:34:b5:4e:65:63:7c:
        b4:8c:f2:77:58:cd:5e:29:4a:68:0f:08:06:57:2d:51:
        9e:bb:63:94:89:40:52:ec:7c:20:40:da:01:1d:ff:24:
        3e:d5:39:e3:65:00:1c:6b:45:1d:bc:70:56:3a:5c:70:
        51:63:03:56:09:50:e5:c5:a1:58:77:5f:54:2b:b6:ec:
        61:12:2b:69:04:3c:31:50:e1:9e:78:b9:79:17:67:94:
        92:f2:bd:3b:1b:9e:d0:79:35:55:a9:d3:b7:19:92:92:
        72:1e:14:08:e9:bf:95:4e:fd:c9:e9:78:65:2d:73:43:
        f1:87:fd:44:f6:5e:67:49:4f:20:98:75:3b:2b:66:bf:
        ee:bd:54:98:9f:ef:47:29:b9:ab:25:15:f6:92:00:f7:
        fd:34:07:01:a7:39:e4:1f:c1:2f:fe:06:49:6a:9f:ca:
        5c:57:ff:23:3e:ea:d7:65:f6:fc:bd:21:70:27:81:74:
        d1:9e:e9:67:55:9a:36:2c:b1:62:57:25:d6:b6:b3:91:
        60:70:e6:67:04:b5:b0:c9:66:65:c7:1a:3e:db:35:e9:
        b5:39:cd:f0:cf:34:60:50:20:66:d1:c8:6c:7b:fa:87
    Fingerprint (SHA-256):
        B1:46:0D:D3:A5:B2:54:20:11:65:75:8C:0A:BA:E6:6F:3A:49:AB:42:4C:0C:11:19:DA:63:6E:C8:E8:36:0E:16
    Fingerprint (SHA1):
        FE:19:B6:10:18:2B:A8:F3:6C:C9:AF:BC:95:EA:5C:D0:CE:70:83:33
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2800: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2801: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123042 (0x310fdc62)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:27 2017
            Not After : Tue Aug 23 12:30:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:9c:dd:93:50:19:f9:62:10:02:11:e2:bc:b8:88:c2:
                    35:59:5e:62:ff:5f:57:5d:88:15:d2:79:d5:d3:32:3d:
                    43:19:f5:26:9d:e4:3f:06:e3:ce:68:3b:39:af:7f:82:
                    77:13:c5:f9:73:4d:7e:d8:b5:28:48:53:db:61:d8:8e:
                    e1:04:c5:59:39:33:00:24:58:50:78:38:83:fd:27:cd:
                    26:10:63:69:32:29:bf:77:27:18:f3:51:d5:ee:21:e0:
                    f6:b2:45:62:3e:12:ac:9d:cb:cb:be:d2:6e:c6:8d:b9:
                    95:76:db:c0:76:ed:43:dd:31:27:45:58:30:90:ac:54:
                    32:7e:83:d9:7b:d8:6e:68:9b:79:59:69:07:fb:e6:6e:
                    5a:9a:df:04:af:06:b3:7b:2e:7d:30:78:59:ef:bd:f6:
                    f3:88:1b:ae:f1:46:81:91:0c:fb:d5:71:86:0e:3f:6f:
                    e6:81:b8:47:05:ac:12:af:e5:58:de:ea:92:a1:50:07:
                    60:ec:28:e4:4e:50:ac:02:8a:1e:1f:fc:a9:94:5c:a4:
                    bc:c4:9d:44:c1:cf:22:7b:86:2c:e6:20:aa:b6:74:d3:
                    16:37:da:f4:ce:e6:a8:ac:e6:c1:b3:15:5d:9d:40:9d:
                    da:d4:64:49:2e:3d:9f:ce:8b:c0:33:51:82:b0:ed:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:f4:93:e8:cc:f8:09:0b:11:de:75:2f:77:89:da:20:
        9a:eb:ef:ab:5d:35:eb:5e:1b:83:34:68:65:b4:5c:af:
        dc:41:c5:58:82:cd:eb:a4:57:60:a4:b1:a3:a9:47:d9:
        a5:83:a1:84:80:d8:48:6e:8e:03:a6:ee:54:ae:62:b2:
        1a:14:c7:f8:ec:e7:47:13:3e:8b:a2:54:50:bc:37:da:
        37:b0:29:8d:53:03:ce:22:7c:bd:b0:31:47:9c:db:c5:
        8c:54:f6:7b:bb:4f:8c:93:07:f7:15:43:81:2b:a7:05:
        6c:cf:c5:cd:6c:0a:2b:ed:12:f7:d7:c0:8e:a5:c5:a4:
        a4:02:6e:c9:2f:39:76:2c:31:a1:2c:08:a0:2f:93:c3:
        7c:0a:be:c8:51:ed:ad:f0:64:c1:b4:b8:99:a3:aa:50:
        a8:6c:04:89:26:f0:f3:8a:76:3b:fa:6b:bb:4f:03:78:
        b1:c4:cd:4d:5b:51:bd:08:8f:6d:9b:0f:ec:bb:7a:67:
        e0:f7:a2:4e:d7:40:95:79:34:d5:49:15:21:3e:7d:ff:
        d8:0b:34:54:b1:13:a5:74:b7:96:10:c4:a6:22:8b:77:
        f1:70:e2:2e:2f:fb:28:a7:54:21:59:65:a3:7a:2b:de:
        5d:a6:d7:e8:b8:57:7a:60:8e:91:fa:ff:93:06:fd:4d
    Fingerprint (SHA-256):
        BB:39:76:41:7E:ED:F5:0D:AB:1E:67:21:5A:15:F8:F2:7E:74:AA:B6:F4:60:DE:1C:83:FC:4C:59:28:9C:53:EF
    Fingerprint (SHA1):
        F7:25:1A:35:C5:B5:34:36:0E:F8:EF:0A:8F:2D:26:BE:1E:52:69:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2802: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2803: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123043 (0x310fdc63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:27 2017
            Not After : Tue Aug 23 12:30:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:94:7f:d0:85:07:3c:66:91:47:8d:ec:3c:46:8a:e6:
                    9e:34:ce:bc:ec:58:28:d7:f4:90:57:d8:92:46:55:e1:
                    ef:1d:5a:13:f6:c1:bb:90:af:06:a1:0e:4c:c5:61:b9:
                    38:22:64:6f:f2:f7:71:41:f6:03:16:57:66:ea:30:eb:
                    83:22:48:ef:76:07:af:86:77:a4:0a:bc:33:91:e4:e2:
                    fd:8e:65:d9:45:8e:1e:cc:07:7e:40:59:31:00:c2:26:
                    e8:54:73:97:d3:21:a8:a8:d1:b3:92:b1:bb:54:f1:4a:
                    67:14:e5:fa:72:c4:16:f9:f9:4d:f9:7a:64:03:4e:08:
                    ba:67:8f:e2:72:87:ce:98:95:e9:1b:4d:09:01:ab:e2:
                    46:9a:71:6a:28:48:05:3d:55:3d:62:16:c1:1a:5b:5f:
                    b8:96:c1:49:18:6b:a6:6a:81:1d:c8:d8:5b:fb:b9:e6:
                    6e:30:91:b8:95:ab:af:53:5e:21:6c:f2:af:31:1f:dc:
                    5d:3e:e2:91:61:7a:6f:e1:c8:2a:7e:65:41:af:0f:2a:
                    b5:d5:d1:a2:cf:98:29:22:ed:0d:0c:39:a5:fa:1c:be:
                    79:d5:82:7d:a9:bf:a6:2f:0b:17:54:cd:8f:7c:db:f8:
                    2f:c2:d1:3f:22:df:c6:92:4e:09:a4:7f:2d:af:28:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:f7:99:59:46:b9:f8:f2:29:ad:c8:d0:87:4d:4f:3d:
        55:97:d0:68:49:1b:17:d6:37:d5:61:96:91:30:3b:06:
        eb:83:ba:17:fb:51:8d:4a:f4:5b:1c:19:7d:11:19:38:
        6e:55:4a:c3:76:ba:0d:57:98:44:e3:72:4a:a6:83:12:
        00:39:7f:08:d6:7d:b0:69:48:f5:7b:3c:e0:e3:15:9d:
        97:5e:61:72:e6:1a:f5:da:72:43:ef:84:8e:3e:26:96:
        5f:37:f3:47:df:34:d0:7f:b8:86:c4:2b:c4:25:ee:0c:
        f4:35:c3:6c:b8:ad:d4:11:54:b7:e6:3b:58:71:e8:e1:
        06:45:c9:86:f0:61:19:bd:7d:02:20:f6:24:34:db:12:
        96:e7:ca:01:86:94:a5:b5:0c:44:ed:d2:7c:63:c4:72:
        ef:bc:68:cb:02:84:10:09:aa:b3:cf:63:a1:87:4a:73:
        66:0b:e5:e3:fe:94:2a:d8:3f:99:20:b8:68:22:da:42:
        22:80:b0:b7:29:0d:0c:9a:a4:c0:42:ef:43:ed:7b:25:
        de:1d:54:32:de:65:40:ff:e3:1c:fe:23:03:ed:7e:f0:
        60:b6:7e:a3:54:f8:05:b2:12:12:f4:d6:67:5e:50:23:
        c6:32:f5:92:e9:c3:42:31:4d:bf:82:b0:c8:af:08:a3
    Fingerprint (SHA-256):
        B7:BB:4E:DA:41:13:4F:39:FB:ED:83:EA:09:84:8F:E9:98:80:DB:A3:2D:AE:D6:F1:4B:C3:AC:1D:76:26:A2:1F
    Fingerprint (SHA1):
        03:2B:5D:5B:F3:B5:F0:2C:E6:4F:B5:C1:58:DD:97:F8:81:82:0D:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2804: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2805: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2806: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2807: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2808: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123041 (0x310fdc61)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:27 2017
            Not After : Tue Aug 23 12:30:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:7c:e9:09:73:c1:46:30:1f:9b:85:8a:40:90:c2:34:
                    4e:b0:3b:1b:1b:cc:22:3a:84:34:9d:36:a4:c6:dd:c9:
                    48:c2:7c:de:c4:6b:af:fd:20:fb:b5:4b:a6:d9:7c:79:
                    17:57:40:5b:9d:a8:be:87:2b:c4:54:10:44:cc:f9:ad:
                    48:d7:3c:e0:d0:55:ed:6f:6c:c6:9c:f5:1b:a1:5e:13:
                    51:9a:9a:b1:e7:03:6a:44:26:e0:54:73:cf:18:2b:3c:
                    33:bb:4f:b9:1f:cf:84:da:08:ec:24:3c:59:55:ad:20:
                    c4:24:c2:44:4e:de:6c:1f:c3:c1:fa:c6:f1:99:97:4d:
                    fa:f1:a9:12:bc:6c:f4:a4:44:37:e2:ed:d3:13:a5:8f:
                    62:66:0b:da:5a:7d:d8:4d:6e:33:20:5a:e9:61:a3:28:
                    34:ef:53:95:05:e1:23:31:ff:a2:ef:73:53:f8:a4:85:
                    5b:a1:13:76:69:2f:bf:8f:63:23:4e:c0:22:1c:3e:7c:
                    bb:e1:10:d9:23:53:87:a9:53:1a:c8:74:4f:d5:3e:bc:
                    e9:b0:03:94:2d:77:b0:81:42:94:c0:75:d7:b4:68:f4:
                    c6:0f:1a:e1:72:18:58:14:dd:44:a1:3b:e6:43:47:ee:
                    02:23:86:be:78:05:b9:a1:59:55:e9:2a:6c:20:43:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:22:1f:ec:13:f7:c3:1a:c0:7a:0d:8d:dc:c4:5e:24:
        d7:69:a8:93:92:3c:22:84:a4:bf:34:b5:4e:65:63:7c:
        b4:8c:f2:77:58:cd:5e:29:4a:68:0f:08:06:57:2d:51:
        9e:bb:63:94:89:40:52:ec:7c:20:40:da:01:1d:ff:24:
        3e:d5:39:e3:65:00:1c:6b:45:1d:bc:70:56:3a:5c:70:
        51:63:03:56:09:50:e5:c5:a1:58:77:5f:54:2b:b6:ec:
        61:12:2b:69:04:3c:31:50:e1:9e:78:b9:79:17:67:94:
        92:f2:bd:3b:1b:9e:d0:79:35:55:a9:d3:b7:19:92:92:
        72:1e:14:08:e9:bf:95:4e:fd:c9:e9:78:65:2d:73:43:
        f1:87:fd:44:f6:5e:67:49:4f:20:98:75:3b:2b:66:bf:
        ee:bd:54:98:9f:ef:47:29:b9:ab:25:15:f6:92:00:f7:
        fd:34:07:01:a7:39:e4:1f:c1:2f:fe:06:49:6a:9f:ca:
        5c:57:ff:23:3e:ea:d7:65:f6:fc:bd:21:70:27:81:74:
        d1:9e:e9:67:55:9a:36:2c:b1:62:57:25:d6:b6:b3:91:
        60:70:e6:67:04:b5:b0:c9:66:65:c7:1a:3e:db:35:e9:
        b5:39:cd:f0:cf:34:60:50:20:66:d1:c8:6c:7b:fa:87
    Fingerprint (SHA-256):
        B1:46:0D:D3:A5:B2:54:20:11:65:75:8C:0A:BA:E6:6F:3A:49:AB:42:4C:0C:11:19:DA:63:6E:C8:E8:36:0E:16
    Fingerprint (SHA1):
        FE:19:B6:10:18:2B:A8:F3:6C:C9:AF:BC:95:EA:5C:D0:CE:70:83:33
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2809: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2810: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123042 (0x310fdc62)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:27 2017
            Not After : Tue Aug 23 12:30:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:9c:dd:93:50:19:f9:62:10:02:11:e2:bc:b8:88:c2:
                    35:59:5e:62:ff:5f:57:5d:88:15:d2:79:d5:d3:32:3d:
                    43:19:f5:26:9d:e4:3f:06:e3:ce:68:3b:39:af:7f:82:
                    77:13:c5:f9:73:4d:7e:d8:b5:28:48:53:db:61:d8:8e:
                    e1:04:c5:59:39:33:00:24:58:50:78:38:83:fd:27:cd:
                    26:10:63:69:32:29:bf:77:27:18:f3:51:d5:ee:21:e0:
                    f6:b2:45:62:3e:12:ac:9d:cb:cb:be:d2:6e:c6:8d:b9:
                    95:76:db:c0:76:ed:43:dd:31:27:45:58:30:90:ac:54:
                    32:7e:83:d9:7b:d8:6e:68:9b:79:59:69:07:fb:e6:6e:
                    5a:9a:df:04:af:06:b3:7b:2e:7d:30:78:59:ef:bd:f6:
                    f3:88:1b:ae:f1:46:81:91:0c:fb:d5:71:86:0e:3f:6f:
                    e6:81:b8:47:05:ac:12:af:e5:58:de:ea:92:a1:50:07:
                    60:ec:28:e4:4e:50:ac:02:8a:1e:1f:fc:a9:94:5c:a4:
                    bc:c4:9d:44:c1:cf:22:7b:86:2c:e6:20:aa:b6:74:d3:
                    16:37:da:f4:ce:e6:a8:ac:e6:c1:b3:15:5d:9d:40:9d:
                    da:d4:64:49:2e:3d:9f:ce:8b:c0:33:51:82:b0:ed:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:f4:93:e8:cc:f8:09:0b:11:de:75:2f:77:89:da:20:
        9a:eb:ef:ab:5d:35:eb:5e:1b:83:34:68:65:b4:5c:af:
        dc:41:c5:58:82:cd:eb:a4:57:60:a4:b1:a3:a9:47:d9:
        a5:83:a1:84:80:d8:48:6e:8e:03:a6:ee:54:ae:62:b2:
        1a:14:c7:f8:ec:e7:47:13:3e:8b:a2:54:50:bc:37:da:
        37:b0:29:8d:53:03:ce:22:7c:bd:b0:31:47:9c:db:c5:
        8c:54:f6:7b:bb:4f:8c:93:07:f7:15:43:81:2b:a7:05:
        6c:cf:c5:cd:6c:0a:2b:ed:12:f7:d7:c0:8e:a5:c5:a4:
        a4:02:6e:c9:2f:39:76:2c:31:a1:2c:08:a0:2f:93:c3:
        7c:0a:be:c8:51:ed:ad:f0:64:c1:b4:b8:99:a3:aa:50:
        a8:6c:04:89:26:f0:f3:8a:76:3b:fa:6b:bb:4f:03:78:
        b1:c4:cd:4d:5b:51:bd:08:8f:6d:9b:0f:ec:bb:7a:67:
        e0:f7:a2:4e:d7:40:95:79:34:d5:49:15:21:3e:7d:ff:
        d8:0b:34:54:b1:13:a5:74:b7:96:10:c4:a6:22:8b:77:
        f1:70:e2:2e:2f:fb:28:a7:54:21:59:65:a3:7a:2b:de:
        5d:a6:d7:e8:b8:57:7a:60:8e:91:fa:ff:93:06:fd:4d
    Fingerprint (SHA-256):
        BB:39:76:41:7E:ED:F5:0D:AB:1E:67:21:5A:15:F8:F2:7E:74:AA:B6:F4:60:DE:1C:83:FC:4C:59:28:9C:53:EF
    Fingerprint (SHA1):
        F7:25:1A:35:C5:B5:34:36:0E:F8:EF:0A:8F:2D:26:BE:1E:52:69:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2811: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2812: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123043 (0x310fdc63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:27 2017
            Not After : Tue Aug 23 12:30:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:94:7f:d0:85:07:3c:66:91:47:8d:ec:3c:46:8a:e6:
                    9e:34:ce:bc:ec:58:28:d7:f4:90:57:d8:92:46:55:e1:
                    ef:1d:5a:13:f6:c1:bb:90:af:06:a1:0e:4c:c5:61:b9:
                    38:22:64:6f:f2:f7:71:41:f6:03:16:57:66:ea:30:eb:
                    83:22:48:ef:76:07:af:86:77:a4:0a:bc:33:91:e4:e2:
                    fd:8e:65:d9:45:8e:1e:cc:07:7e:40:59:31:00:c2:26:
                    e8:54:73:97:d3:21:a8:a8:d1:b3:92:b1:bb:54:f1:4a:
                    67:14:e5:fa:72:c4:16:f9:f9:4d:f9:7a:64:03:4e:08:
                    ba:67:8f:e2:72:87:ce:98:95:e9:1b:4d:09:01:ab:e2:
                    46:9a:71:6a:28:48:05:3d:55:3d:62:16:c1:1a:5b:5f:
                    b8:96:c1:49:18:6b:a6:6a:81:1d:c8:d8:5b:fb:b9:e6:
                    6e:30:91:b8:95:ab:af:53:5e:21:6c:f2:af:31:1f:dc:
                    5d:3e:e2:91:61:7a:6f:e1:c8:2a:7e:65:41:af:0f:2a:
                    b5:d5:d1:a2:cf:98:29:22:ed:0d:0c:39:a5:fa:1c:be:
                    79:d5:82:7d:a9:bf:a6:2f:0b:17:54:cd:8f:7c:db:f8:
                    2f:c2:d1:3f:22:df:c6:92:4e:09:a4:7f:2d:af:28:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:f7:99:59:46:b9:f8:f2:29:ad:c8:d0:87:4d:4f:3d:
        55:97:d0:68:49:1b:17:d6:37:d5:61:96:91:30:3b:06:
        eb:83:ba:17:fb:51:8d:4a:f4:5b:1c:19:7d:11:19:38:
        6e:55:4a:c3:76:ba:0d:57:98:44:e3:72:4a:a6:83:12:
        00:39:7f:08:d6:7d:b0:69:48:f5:7b:3c:e0:e3:15:9d:
        97:5e:61:72:e6:1a:f5:da:72:43:ef:84:8e:3e:26:96:
        5f:37:f3:47:df:34:d0:7f:b8:86:c4:2b:c4:25:ee:0c:
        f4:35:c3:6c:b8:ad:d4:11:54:b7:e6:3b:58:71:e8:e1:
        06:45:c9:86:f0:61:19:bd:7d:02:20:f6:24:34:db:12:
        96:e7:ca:01:86:94:a5:b5:0c:44:ed:d2:7c:63:c4:72:
        ef:bc:68:cb:02:84:10:09:aa:b3:cf:63:a1:87:4a:73:
        66:0b:e5:e3:fe:94:2a:d8:3f:99:20:b8:68:22:da:42:
        22:80:b0:b7:29:0d:0c:9a:a4:c0:42:ef:43:ed:7b:25:
        de:1d:54:32:de:65:40:ff:e3:1c:fe:23:03:ed:7e:f0:
        60:b6:7e:a3:54:f8:05:b2:12:12:f4:d6:67:5e:50:23:
        c6:32:f5:92:e9:c3:42:31:4d:bf:82:b0:c8:af:08:a3
    Fingerprint (SHA-256):
        B7:BB:4E:DA:41:13:4F:39:FB:ED:83:EA:09:84:8F:E9:98:80:DB:A3:2D:AE:D6:F1:4B:C3:AC:1D:76:26:A2:1F
    Fingerprint (SHA1):
        03:2B:5D:5B:F3:B5:F0:2C:E6:4F:B5:C1:58:DD:97:F8:81:82:0D:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2813: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2814: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2815: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123045 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2816: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2817: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2818: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2819: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123046   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2820: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2821: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2822: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2823: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123047   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2824: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2825: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2826: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2827: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123048   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2828: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2829: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2830: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2831: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123049   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2832: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2833: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2834: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123045 (0x310fdc65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:19:db:25:2e:61:44:43:48:31:9b:9e:8a:47:31:26:
                    c0:98:ed:a4:4b:5c:22:a3:ca:5f:35:4f:df:44:c4:b2:
                    b8:5a:5d:1d:8b:90:97:5b:4d:45:24:c6:87:8c:7b:95:
                    3b:d0:ba:76:4e:16:5e:1d:ce:0d:31:59:bd:21:52:8a:
                    fa:55:c3:42:6f:aa:e5:65:72:d9:95:52:e7:d7:1f:a1:
                    61:5f:97:e1:81:29:42:4a:c1:90:d5:e8:80:03:fd:30:
                    ba:e8:5c:9a:53:5c:d4:ce:cb:f0:87:39:72:64:42:58:
                    ed:ca:51:1d:51:41:5f:7e:fe:5c:91:2d:1c:f1:00:aa:
                    73:9a:31:25:42:00:6d:eb:38:6c:77:8f:d8:ea:b3:d0:
                    b3:28:46:d2:51:5f:47:cb:74:34:32:90:91:30:28:e6:
                    72:2e:b7:fa:7c:7e:b1:1c:33:f0:dd:c8:9e:29:a1:4e:
                    38:56:8c:7f:5e:d0:21:ea:8c:57:ea:da:64:f8:6c:96:
                    fb:ec:f3:3f:6a:7a:a2:4b:58:d7:4c:37:ff:cc:bd:aa:
                    91:e8:18:67:fe:d1:be:1f:d4:b6:65:2f:6b:ee:6d:db:
                    a5:aa:cf:fa:cf:b0:73:ce:18:8e:24:8c:c2:10:02:9b:
                    49:b3:31:3f:65:da:4e:d2:51:99:eb:0f:3c:7f:99:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:12:a6:99:bc:35:23:57:0b:7b:10:0f:9d:b7:be:3a:
        c2:8c:6d:34:b0:3d:e6:50:84:ce:20:ef:18:6e:56:de:
        7f:81:2d:1a:7e:84:f4:8f:63:70:5e:c4:96:4f:2d:61:
        da:1f:27:1e:90:b4:90:71:30:45:6d:f7:33:7c:6b:65:
        cb:74:45:7a:e9:de:55:dc:36:6d:a4:61:96:f7:88:70:
        f2:da:34:e0:85:df:0b:40:a7:26:e8:4c:40:e8:a7:c2:
        5e:ad:e7:03:7b:b0:07:29:09:ba:5f:a8:6f:ee:ee:d9:
        7e:72:5d:2f:f5:59:6d:ab:90:5c:b7:91:40:9b:63:53:
        35:ad:43:0d:1b:64:4f:eb:d6:86:fc:a3:f7:92:06:e2:
        1f:b7:77:b9:ab:35:58:8d:21:fb:bd:20:84:e3:0f:38:
        1c:63:25:d6:b4:f4:6e:3a:3f:47:03:c0:9f:4c:7c:66:
        4c:34:d8:ed:96:1b:59:57:bb:d2:fa:85:2e:57:f8:9b:
        7a:79:01:d4:ae:23:0f:e5:72:a6:3b:c6:68:7f:99:e1:
        35:07:67:15:9c:00:8d:c7:85:de:fd:0c:e7:15:5b:fe:
        f0:13:32:a9:b8:7b:43:5d:2a:f5:db:d2:f6:db:0e:f3:
        ac:a7:2e:69:72:e8:3d:8f:51:04:59:eb:0e:bf:e8:9b
    Fingerprint (SHA-256):
        94:2E:A1:2F:08:8E:96:BD:5E:D1:1D:08:2F:91:5A:29:C0:F5:10:5B:9F:CD:10:42:06:19:90:2C:ED:5C:7A:60
    Fingerprint (SHA1):
        32:EB:04:88:D7:D5:5D:09:5B:73:CF:FD:EA:2A:E8:8C:F2:45:CE:E9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2835: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2836: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123046 (0x310fdc66)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:66:52:01:8d:e4:63:c7:56:7e:8a:73:73:fe:e7:e0:
                    95:eb:33:fe:7f:9e:cd:47:66:f8:6a:28:ac:3b:7d:6c:
                    bd:e8:7f:75:b5:63:f3:b4:a1:44:9b:60:fb:c8:5f:f2:
                    d3:59:72:b5:ab:71:40:ad:ce:a4:12:2a:e4:ad:74:06:
                    24:ed:72:53:7d:35:fd:06:47:f3:9c:63:13:fd:19:69:
                    48:29:45:8f:19:2b:f8:3f:9c:a7:88:ce:eb:db:6e:22:
                    e9:9f:e6:e7:fe:e8:7e:48:79:30:44:21:95:c7:35:35:
                    47:91:d5:63:99:fc:1d:d3:7d:4b:20:ce:5e:32:0d:e5:
                    e7:fe:3a:4a:17:45:ff:2d:b4:8e:a9:71:7f:2c:a6:ca:
                    5c:94:30:36:fa:cd:7c:d8:4f:61:d5:d2:c8:88:cc:fe:
                    22:22:79:93:ab:20:ac:07:cc:ad:96:f3:20:76:59:6c:
                    30:64:23:a2:31:d2:34:6c:06:01:02:94:58:5f:5c:9b:
                    b0:07:4a:1a:70:2f:ae:e0:80:c3:62:4e:40:29:d0:18:
                    33:c2:b1:e7:7c:50:61:92:e7:31:e2:4f:4a:22:45:e1:
                    39:1c:4d:64:d7:73:1c:54:d8:bd:03:fe:76:be:58:98:
                    1a:33:b3:3d:7d:c5:74:69:e3:41:a9:20:32:2d:66:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:c9:08:76:a9:6c:e8:07:68:97:0a:7b:f5:e9:0e:8d:
        e1:ee:9b:e0:ab:98:dd:42:78:89:97:f5:df:47:c6:d9:
        1e:52:0d:d6:33:54:18:d7:d3:5a:56:62:4a:0b:bc:2c:
        0c:43:ad:22:1f:d3:cc:37:a5:f9:06:30:bf:71:2c:51:
        87:62:68:ce:40:a3:22:5d:9a:e8:0c:ea:34:ee:40:4d:
        8e:43:26:68:d0:9d:3f:e2:55:c3:43:47:36:b0:6c:7c:
        ba:9d:0c:bb:01:de:c8:ba:a2:d1:05:5a:10:52:7a:25:
        7a:36:c6:56:7b:a0:e7:c7:4d:5a:f2:77:d0:e9:1f:80:
        b1:82:ae:dd:3f:e8:00:d5:4d:fa:ed:ca:7b:b2:78:6b:
        39:9c:10:70:8d:4a:32:55:ee:2c:ad:9f:be:24:12:3b:
        20:45:ae:d3:d5:9d:00:85:4f:60:56:1b:ed:ec:f8:b5:
        e8:a0:21:99:be:d1:2f:3d:5e:68:a4:d3:ac:0a:45:ef:
        a7:fc:43:70:b7:47:d9:45:f1:24:f4:55:7e:f4:b4:85:
        97:29:7d:95:95:e7:6f:bc:0c:9e:a0:bf:bc:08:22:9b:
        ed:5f:18:eb:c1:5f:90:7c:e5:6c:36:1f:97:ea:bd:30:
        a1:ba:72:f2:ec:3a:c3:dd:0f:8c:90:de:76:9c:f0:51
    Fingerprint (SHA-256):
        C4:B1:C6:57:E2:9A:22:61:03:53:98:97:17:B1:87:4E:CB:95:3C:D1:E2:48:46:F9:C2:88:7B:25:06:F0:9F:3A
    Fingerprint (SHA1):
        B9:5B:F0:7E:34:C2:3E:03:7D:7F:D0:A5:9C:F5:93:AD:19:BB:21:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2837: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2838: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123047 (0x310fdc67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:29 2017
            Not After : Tue Aug 23 12:30:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:25:14:38:af:b5:f8:dc:83:18:fc:7e:88:fd:bc:97:
                    74:97:dd:f1:0d:d1:aa:96:11:af:80:3a:67:19:59:24:
                    65:70:3f:84:26:0d:97:90:42:8b:32:31:69:c6:94:fc:
                    9d:fe:91:96:b7:38:d6:33:16:94:16:a5:ca:8c:23:ed:
                    fb:bb:bf:4d:cb:9e:e7:78:4b:e5:5c:6b:67:1b:84:7b:
                    4f:6b:bf:c6:9c:f4:74:8f:f5:e8:9c:b3:d0:1f:9a:6b:
                    d1:ab:e8:f6:3c:58:cc:f2:22:3e:21:26:32:93:59:17:
                    0c:7d:ae:b0:dc:c7:b3:78:5d:cc:02:06:8c:b8:34:0d:
                    92:bb:5e:0d:40:93:84:d0:7a:00:39:b7:34:83:b7:3c:
                    c6:07:88:37:14:12:58:0e:47:5a:aa:b4:96:48:5a:15:
                    31:3b:89:d3:67:a0:3e:fb:01:e3:56:88:2b:a7:13:88:
                    4a:ba:64:a5:70:c1:44:74:14:05:81:81:77:9a:fd:d9:
                    3c:f0:9b:84:f3:76:91:ce:d3:ea:9a:48:24:d7:e0:29:
                    e5:5e:74:c3:7a:76:fc:41:2f:03:7f:2f:b6:5c:d7:c3:
                    ff:c1:a8:2c:44:52:f5:49:6d:e1:76:2f:e6:99:0d:13:
                    49:64:bd:24:2f:6d:1c:13:49:59:78:3b:be:6f:b9:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:a6:b6:20:58:70:41:0b:21:28:22:bd:e6:a0:bf:bc:
        5c:c2:32:60:0c:04:eb:20:12:b2:33:63:52:47:70:74:
        53:45:3f:da:41:98:03:54:e1:e6:4f:0f:ed:2a:dc:89:
        d1:45:c2:e3:1a:2f:b5:c5:47:89:b4:86:03:b8:36:8b:
        20:7e:7d:60:13:10:3f:d2:11:f8:1b:fc:70:09:11:a7:
        5d:a6:3e:68:1f:4e:05:c6:46:b2:31:cf:f5:bc:60:d3:
        f7:f7:5d:fa:53:2e:51:ce:03:4e:2a:89:a0:6a:29:28:
        02:70:c6:8e:7e:42:03:f1:a6:9c:f9:f4:2a:bc:79:70:
        cc:2d:5d:8a:57:30:59:b3:ee:de:3e:e0:59:a0:e2:4c:
        a1:81:17:4a:f8:91:11:b7:c9:23:21:45:50:66:b7:6e:
        4b:65:6e:23:b2:e4:c2:5c:41:90:0a:9b:41:23:7a:ff:
        00:cf:57:87:7c:b7:a4:23:97:94:8e:fd:c6:aa:69:e6:
        dc:55:42:4e:a2:62:52:3f:b7:73:fe:33:7a:7a:1f:51:
        70:b3:f5:a4:62:47:8b:91:c4:82:97:6a:85:b1:e5:5e:
        da:ce:e3:6a:f8:fd:68:6c:91:d8:a2:3b:d1:06:8a:27:
        4e:11:1e:53:4b:c9:1d:e8:cd:85:6b:1f:c0:eb:9a:e1
    Fingerprint (SHA-256):
        83:31:EA:9D:A7:71:6D:B5:91:4B:DA:36:90:91:8B:80:8A:B9:10:AC:6A:A9:FA:E3:6E:24:B7:96:4C:10:9E:31
    Fingerprint (SHA1):
        2B:8E:FD:09:CE:1F:5B:59:65:B1:BC:BD:3C:47:A9:0D:3B:E0:F3:07
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2839: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2840: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2841: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2842: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2843: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123045 (0x310fdc65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:19:db:25:2e:61:44:43:48:31:9b:9e:8a:47:31:26:
                    c0:98:ed:a4:4b:5c:22:a3:ca:5f:35:4f:df:44:c4:b2:
                    b8:5a:5d:1d:8b:90:97:5b:4d:45:24:c6:87:8c:7b:95:
                    3b:d0:ba:76:4e:16:5e:1d:ce:0d:31:59:bd:21:52:8a:
                    fa:55:c3:42:6f:aa:e5:65:72:d9:95:52:e7:d7:1f:a1:
                    61:5f:97:e1:81:29:42:4a:c1:90:d5:e8:80:03:fd:30:
                    ba:e8:5c:9a:53:5c:d4:ce:cb:f0:87:39:72:64:42:58:
                    ed:ca:51:1d:51:41:5f:7e:fe:5c:91:2d:1c:f1:00:aa:
                    73:9a:31:25:42:00:6d:eb:38:6c:77:8f:d8:ea:b3:d0:
                    b3:28:46:d2:51:5f:47:cb:74:34:32:90:91:30:28:e6:
                    72:2e:b7:fa:7c:7e:b1:1c:33:f0:dd:c8:9e:29:a1:4e:
                    38:56:8c:7f:5e:d0:21:ea:8c:57:ea:da:64:f8:6c:96:
                    fb:ec:f3:3f:6a:7a:a2:4b:58:d7:4c:37:ff:cc:bd:aa:
                    91:e8:18:67:fe:d1:be:1f:d4:b6:65:2f:6b:ee:6d:db:
                    a5:aa:cf:fa:cf:b0:73:ce:18:8e:24:8c:c2:10:02:9b:
                    49:b3:31:3f:65:da:4e:d2:51:99:eb:0f:3c:7f:99:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:12:a6:99:bc:35:23:57:0b:7b:10:0f:9d:b7:be:3a:
        c2:8c:6d:34:b0:3d:e6:50:84:ce:20:ef:18:6e:56:de:
        7f:81:2d:1a:7e:84:f4:8f:63:70:5e:c4:96:4f:2d:61:
        da:1f:27:1e:90:b4:90:71:30:45:6d:f7:33:7c:6b:65:
        cb:74:45:7a:e9:de:55:dc:36:6d:a4:61:96:f7:88:70:
        f2:da:34:e0:85:df:0b:40:a7:26:e8:4c:40:e8:a7:c2:
        5e:ad:e7:03:7b:b0:07:29:09:ba:5f:a8:6f:ee:ee:d9:
        7e:72:5d:2f:f5:59:6d:ab:90:5c:b7:91:40:9b:63:53:
        35:ad:43:0d:1b:64:4f:eb:d6:86:fc:a3:f7:92:06:e2:
        1f:b7:77:b9:ab:35:58:8d:21:fb:bd:20:84:e3:0f:38:
        1c:63:25:d6:b4:f4:6e:3a:3f:47:03:c0:9f:4c:7c:66:
        4c:34:d8:ed:96:1b:59:57:bb:d2:fa:85:2e:57:f8:9b:
        7a:79:01:d4:ae:23:0f:e5:72:a6:3b:c6:68:7f:99:e1:
        35:07:67:15:9c:00:8d:c7:85:de:fd:0c:e7:15:5b:fe:
        f0:13:32:a9:b8:7b:43:5d:2a:f5:db:d2:f6:db:0e:f3:
        ac:a7:2e:69:72:e8:3d:8f:51:04:59:eb:0e:bf:e8:9b
    Fingerprint (SHA-256):
        94:2E:A1:2F:08:8E:96:BD:5E:D1:1D:08:2F:91:5A:29:C0:F5:10:5B:9F:CD:10:42:06:19:90:2C:ED:5C:7A:60
    Fingerprint (SHA1):
        32:EB:04:88:D7:D5:5D:09:5B:73:CF:FD:EA:2A:E8:8C:F2:45:CE:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2844: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2845: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123046 (0x310fdc66)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:66:52:01:8d:e4:63:c7:56:7e:8a:73:73:fe:e7:e0:
                    95:eb:33:fe:7f:9e:cd:47:66:f8:6a:28:ac:3b:7d:6c:
                    bd:e8:7f:75:b5:63:f3:b4:a1:44:9b:60:fb:c8:5f:f2:
                    d3:59:72:b5:ab:71:40:ad:ce:a4:12:2a:e4:ad:74:06:
                    24:ed:72:53:7d:35:fd:06:47:f3:9c:63:13:fd:19:69:
                    48:29:45:8f:19:2b:f8:3f:9c:a7:88:ce:eb:db:6e:22:
                    e9:9f:e6:e7:fe:e8:7e:48:79:30:44:21:95:c7:35:35:
                    47:91:d5:63:99:fc:1d:d3:7d:4b:20:ce:5e:32:0d:e5:
                    e7:fe:3a:4a:17:45:ff:2d:b4:8e:a9:71:7f:2c:a6:ca:
                    5c:94:30:36:fa:cd:7c:d8:4f:61:d5:d2:c8:88:cc:fe:
                    22:22:79:93:ab:20:ac:07:cc:ad:96:f3:20:76:59:6c:
                    30:64:23:a2:31:d2:34:6c:06:01:02:94:58:5f:5c:9b:
                    b0:07:4a:1a:70:2f:ae:e0:80:c3:62:4e:40:29:d0:18:
                    33:c2:b1:e7:7c:50:61:92:e7:31:e2:4f:4a:22:45:e1:
                    39:1c:4d:64:d7:73:1c:54:d8:bd:03:fe:76:be:58:98:
                    1a:33:b3:3d:7d:c5:74:69:e3:41:a9:20:32:2d:66:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:c9:08:76:a9:6c:e8:07:68:97:0a:7b:f5:e9:0e:8d:
        e1:ee:9b:e0:ab:98:dd:42:78:89:97:f5:df:47:c6:d9:
        1e:52:0d:d6:33:54:18:d7:d3:5a:56:62:4a:0b:bc:2c:
        0c:43:ad:22:1f:d3:cc:37:a5:f9:06:30:bf:71:2c:51:
        87:62:68:ce:40:a3:22:5d:9a:e8:0c:ea:34:ee:40:4d:
        8e:43:26:68:d0:9d:3f:e2:55:c3:43:47:36:b0:6c:7c:
        ba:9d:0c:bb:01:de:c8:ba:a2:d1:05:5a:10:52:7a:25:
        7a:36:c6:56:7b:a0:e7:c7:4d:5a:f2:77:d0:e9:1f:80:
        b1:82:ae:dd:3f:e8:00:d5:4d:fa:ed:ca:7b:b2:78:6b:
        39:9c:10:70:8d:4a:32:55:ee:2c:ad:9f:be:24:12:3b:
        20:45:ae:d3:d5:9d:00:85:4f:60:56:1b:ed:ec:f8:b5:
        e8:a0:21:99:be:d1:2f:3d:5e:68:a4:d3:ac:0a:45:ef:
        a7:fc:43:70:b7:47:d9:45:f1:24:f4:55:7e:f4:b4:85:
        97:29:7d:95:95:e7:6f:bc:0c:9e:a0:bf:bc:08:22:9b:
        ed:5f:18:eb:c1:5f:90:7c:e5:6c:36:1f:97:ea:bd:30:
        a1:ba:72:f2:ec:3a:c3:dd:0f:8c:90:de:76:9c:f0:51
    Fingerprint (SHA-256):
        C4:B1:C6:57:E2:9A:22:61:03:53:98:97:17:B1:87:4E:CB:95:3C:D1:E2:48:46:F9:C2:88:7B:25:06:F0:9F:3A
    Fingerprint (SHA1):
        B9:5B:F0:7E:34:C2:3E:03:7D:7F:D0:A5:9C:F5:93:AD:19:BB:21:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2846: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2847: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123047 (0x310fdc67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:29 2017
            Not After : Tue Aug 23 12:30:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:25:14:38:af:b5:f8:dc:83:18:fc:7e:88:fd:bc:97:
                    74:97:dd:f1:0d:d1:aa:96:11:af:80:3a:67:19:59:24:
                    65:70:3f:84:26:0d:97:90:42:8b:32:31:69:c6:94:fc:
                    9d:fe:91:96:b7:38:d6:33:16:94:16:a5:ca:8c:23:ed:
                    fb:bb:bf:4d:cb:9e:e7:78:4b:e5:5c:6b:67:1b:84:7b:
                    4f:6b:bf:c6:9c:f4:74:8f:f5:e8:9c:b3:d0:1f:9a:6b:
                    d1:ab:e8:f6:3c:58:cc:f2:22:3e:21:26:32:93:59:17:
                    0c:7d:ae:b0:dc:c7:b3:78:5d:cc:02:06:8c:b8:34:0d:
                    92:bb:5e:0d:40:93:84:d0:7a:00:39:b7:34:83:b7:3c:
                    c6:07:88:37:14:12:58:0e:47:5a:aa:b4:96:48:5a:15:
                    31:3b:89:d3:67:a0:3e:fb:01:e3:56:88:2b:a7:13:88:
                    4a:ba:64:a5:70:c1:44:74:14:05:81:81:77:9a:fd:d9:
                    3c:f0:9b:84:f3:76:91:ce:d3:ea:9a:48:24:d7:e0:29:
                    e5:5e:74:c3:7a:76:fc:41:2f:03:7f:2f:b6:5c:d7:c3:
                    ff:c1:a8:2c:44:52:f5:49:6d:e1:76:2f:e6:99:0d:13:
                    49:64:bd:24:2f:6d:1c:13:49:59:78:3b:be:6f:b9:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:a6:b6:20:58:70:41:0b:21:28:22:bd:e6:a0:bf:bc:
        5c:c2:32:60:0c:04:eb:20:12:b2:33:63:52:47:70:74:
        53:45:3f:da:41:98:03:54:e1:e6:4f:0f:ed:2a:dc:89:
        d1:45:c2:e3:1a:2f:b5:c5:47:89:b4:86:03:b8:36:8b:
        20:7e:7d:60:13:10:3f:d2:11:f8:1b:fc:70:09:11:a7:
        5d:a6:3e:68:1f:4e:05:c6:46:b2:31:cf:f5:bc:60:d3:
        f7:f7:5d:fa:53:2e:51:ce:03:4e:2a:89:a0:6a:29:28:
        02:70:c6:8e:7e:42:03:f1:a6:9c:f9:f4:2a:bc:79:70:
        cc:2d:5d:8a:57:30:59:b3:ee:de:3e:e0:59:a0:e2:4c:
        a1:81:17:4a:f8:91:11:b7:c9:23:21:45:50:66:b7:6e:
        4b:65:6e:23:b2:e4:c2:5c:41:90:0a:9b:41:23:7a:ff:
        00:cf:57:87:7c:b7:a4:23:97:94:8e:fd:c6:aa:69:e6:
        dc:55:42:4e:a2:62:52:3f:b7:73:fe:33:7a:7a:1f:51:
        70:b3:f5:a4:62:47:8b:91:c4:82:97:6a:85:b1:e5:5e:
        da:ce:e3:6a:f8:fd:68:6c:91:d8:a2:3b:d1:06:8a:27:
        4e:11:1e:53:4b:c9:1d:e8:cd:85:6b:1f:c0:eb:9a:e1
    Fingerprint (SHA-256):
        83:31:EA:9D:A7:71:6D:B5:91:4B:DA:36:90:91:8B:80:8A:B9:10:AC:6A:A9:FA:E3:6E:24:B7:96:4C:10:9E:31
    Fingerprint (SHA1):
        2B:8E:FD:09:CE:1F:5B:59:65:B1:BC:BD:3C:47:A9:0D:3B:E0:F3:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2848: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2849: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123045 (0x310fdc65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:19:db:25:2e:61:44:43:48:31:9b:9e:8a:47:31:26:
                    c0:98:ed:a4:4b:5c:22:a3:ca:5f:35:4f:df:44:c4:b2:
                    b8:5a:5d:1d:8b:90:97:5b:4d:45:24:c6:87:8c:7b:95:
                    3b:d0:ba:76:4e:16:5e:1d:ce:0d:31:59:bd:21:52:8a:
                    fa:55:c3:42:6f:aa:e5:65:72:d9:95:52:e7:d7:1f:a1:
                    61:5f:97:e1:81:29:42:4a:c1:90:d5:e8:80:03:fd:30:
                    ba:e8:5c:9a:53:5c:d4:ce:cb:f0:87:39:72:64:42:58:
                    ed:ca:51:1d:51:41:5f:7e:fe:5c:91:2d:1c:f1:00:aa:
                    73:9a:31:25:42:00:6d:eb:38:6c:77:8f:d8:ea:b3:d0:
                    b3:28:46:d2:51:5f:47:cb:74:34:32:90:91:30:28:e6:
                    72:2e:b7:fa:7c:7e:b1:1c:33:f0:dd:c8:9e:29:a1:4e:
                    38:56:8c:7f:5e:d0:21:ea:8c:57:ea:da:64:f8:6c:96:
                    fb:ec:f3:3f:6a:7a:a2:4b:58:d7:4c:37:ff:cc:bd:aa:
                    91:e8:18:67:fe:d1:be:1f:d4:b6:65:2f:6b:ee:6d:db:
                    a5:aa:cf:fa:cf:b0:73:ce:18:8e:24:8c:c2:10:02:9b:
                    49:b3:31:3f:65:da:4e:d2:51:99:eb:0f:3c:7f:99:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:12:a6:99:bc:35:23:57:0b:7b:10:0f:9d:b7:be:3a:
        c2:8c:6d:34:b0:3d:e6:50:84:ce:20:ef:18:6e:56:de:
        7f:81:2d:1a:7e:84:f4:8f:63:70:5e:c4:96:4f:2d:61:
        da:1f:27:1e:90:b4:90:71:30:45:6d:f7:33:7c:6b:65:
        cb:74:45:7a:e9:de:55:dc:36:6d:a4:61:96:f7:88:70:
        f2:da:34:e0:85:df:0b:40:a7:26:e8:4c:40:e8:a7:c2:
        5e:ad:e7:03:7b:b0:07:29:09:ba:5f:a8:6f:ee:ee:d9:
        7e:72:5d:2f:f5:59:6d:ab:90:5c:b7:91:40:9b:63:53:
        35:ad:43:0d:1b:64:4f:eb:d6:86:fc:a3:f7:92:06:e2:
        1f:b7:77:b9:ab:35:58:8d:21:fb:bd:20:84:e3:0f:38:
        1c:63:25:d6:b4:f4:6e:3a:3f:47:03:c0:9f:4c:7c:66:
        4c:34:d8:ed:96:1b:59:57:bb:d2:fa:85:2e:57:f8:9b:
        7a:79:01:d4:ae:23:0f:e5:72:a6:3b:c6:68:7f:99:e1:
        35:07:67:15:9c:00:8d:c7:85:de:fd:0c:e7:15:5b:fe:
        f0:13:32:a9:b8:7b:43:5d:2a:f5:db:d2:f6:db:0e:f3:
        ac:a7:2e:69:72:e8:3d:8f:51:04:59:eb:0e:bf:e8:9b
    Fingerprint (SHA-256):
        94:2E:A1:2F:08:8E:96:BD:5E:D1:1D:08:2F:91:5A:29:C0:F5:10:5B:9F:CD:10:42:06:19:90:2C:ED:5C:7A:60
    Fingerprint (SHA1):
        32:EB:04:88:D7:D5:5D:09:5B:73:CF:FD:EA:2A:E8:8C:F2:45:CE:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2850: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123045 (0x310fdc65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:19:db:25:2e:61:44:43:48:31:9b:9e:8a:47:31:26:
                    c0:98:ed:a4:4b:5c:22:a3:ca:5f:35:4f:df:44:c4:b2:
                    b8:5a:5d:1d:8b:90:97:5b:4d:45:24:c6:87:8c:7b:95:
                    3b:d0:ba:76:4e:16:5e:1d:ce:0d:31:59:bd:21:52:8a:
                    fa:55:c3:42:6f:aa:e5:65:72:d9:95:52:e7:d7:1f:a1:
                    61:5f:97:e1:81:29:42:4a:c1:90:d5:e8:80:03:fd:30:
                    ba:e8:5c:9a:53:5c:d4:ce:cb:f0:87:39:72:64:42:58:
                    ed:ca:51:1d:51:41:5f:7e:fe:5c:91:2d:1c:f1:00:aa:
                    73:9a:31:25:42:00:6d:eb:38:6c:77:8f:d8:ea:b3:d0:
                    b3:28:46:d2:51:5f:47:cb:74:34:32:90:91:30:28:e6:
                    72:2e:b7:fa:7c:7e:b1:1c:33:f0:dd:c8:9e:29:a1:4e:
                    38:56:8c:7f:5e:d0:21:ea:8c:57:ea:da:64:f8:6c:96:
                    fb:ec:f3:3f:6a:7a:a2:4b:58:d7:4c:37:ff:cc:bd:aa:
                    91:e8:18:67:fe:d1:be:1f:d4:b6:65:2f:6b:ee:6d:db:
                    a5:aa:cf:fa:cf:b0:73:ce:18:8e:24:8c:c2:10:02:9b:
                    49:b3:31:3f:65:da:4e:d2:51:99:eb:0f:3c:7f:99:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:12:a6:99:bc:35:23:57:0b:7b:10:0f:9d:b7:be:3a:
        c2:8c:6d:34:b0:3d:e6:50:84:ce:20:ef:18:6e:56:de:
        7f:81:2d:1a:7e:84:f4:8f:63:70:5e:c4:96:4f:2d:61:
        da:1f:27:1e:90:b4:90:71:30:45:6d:f7:33:7c:6b:65:
        cb:74:45:7a:e9:de:55:dc:36:6d:a4:61:96:f7:88:70:
        f2:da:34:e0:85:df:0b:40:a7:26:e8:4c:40:e8:a7:c2:
        5e:ad:e7:03:7b:b0:07:29:09:ba:5f:a8:6f:ee:ee:d9:
        7e:72:5d:2f:f5:59:6d:ab:90:5c:b7:91:40:9b:63:53:
        35:ad:43:0d:1b:64:4f:eb:d6:86:fc:a3:f7:92:06:e2:
        1f:b7:77:b9:ab:35:58:8d:21:fb:bd:20:84:e3:0f:38:
        1c:63:25:d6:b4:f4:6e:3a:3f:47:03:c0:9f:4c:7c:66:
        4c:34:d8:ed:96:1b:59:57:bb:d2:fa:85:2e:57:f8:9b:
        7a:79:01:d4:ae:23:0f:e5:72:a6:3b:c6:68:7f:99:e1:
        35:07:67:15:9c:00:8d:c7:85:de:fd:0c:e7:15:5b:fe:
        f0:13:32:a9:b8:7b:43:5d:2a:f5:db:d2:f6:db:0e:f3:
        ac:a7:2e:69:72:e8:3d:8f:51:04:59:eb:0e:bf:e8:9b
    Fingerprint (SHA-256):
        94:2E:A1:2F:08:8E:96:BD:5E:D1:1D:08:2F:91:5A:29:C0:F5:10:5B:9F:CD:10:42:06:19:90:2C:ED:5C:7A:60
    Fingerprint (SHA1):
        32:EB:04:88:D7:D5:5D:09:5B:73:CF:FD:EA:2A:E8:8C:F2:45:CE:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2851: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123046 (0x310fdc66)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:66:52:01:8d:e4:63:c7:56:7e:8a:73:73:fe:e7:e0:
                    95:eb:33:fe:7f:9e:cd:47:66:f8:6a:28:ac:3b:7d:6c:
                    bd:e8:7f:75:b5:63:f3:b4:a1:44:9b:60:fb:c8:5f:f2:
                    d3:59:72:b5:ab:71:40:ad:ce:a4:12:2a:e4:ad:74:06:
                    24:ed:72:53:7d:35:fd:06:47:f3:9c:63:13:fd:19:69:
                    48:29:45:8f:19:2b:f8:3f:9c:a7:88:ce:eb:db:6e:22:
                    e9:9f:e6:e7:fe:e8:7e:48:79:30:44:21:95:c7:35:35:
                    47:91:d5:63:99:fc:1d:d3:7d:4b:20:ce:5e:32:0d:e5:
                    e7:fe:3a:4a:17:45:ff:2d:b4:8e:a9:71:7f:2c:a6:ca:
                    5c:94:30:36:fa:cd:7c:d8:4f:61:d5:d2:c8:88:cc:fe:
                    22:22:79:93:ab:20:ac:07:cc:ad:96:f3:20:76:59:6c:
                    30:64:23:a2:31:d2:34:6c:06:01:02:94:58:5f:5c:9b:
                    b0:07:4a:1a:70:2f:ae:e0:80:c3:62:4e:40:29:d0:18:
                    33:c2:b1:e7:7c:50:61:92:e7:31:e2:4f:4a:22:45:e1:
                    39:1c:4d:64:d7:73:1c:54:d8:bd:03:fe:76:be:58:98:
                    1a:33:b3:3d:7d:c5:74:69:e3:41:a9:20:32:2d:66:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:c9:08:76:a9:6c:e8:07:68:97:0a:7b:f5:e9:0e:8d:
        e1:ee:9b:e0:ab:98:dd:42:78:89:97:f5:df:47:c6:d9:
        1e:52:0d:d6:33:54:18:d7:d3:5a:56:62:4a:0b:bc:2c:
        0c:43:ad:22:1f:d3:cc:37:a5:f9:06:30:bf:71:2c:51:
        87:62:68:ce:40:a3:22:5d:9a:e8:0c:ea:34:ee:40:4d:
        8e:43:26:68:d0:9d:3f:e2:55:c3:43:47:36:b0:6c:7c:
        ba:9d:0c:bb:01:de:c8:ba:a2:d1:05:5a:10:52:7a:25:
        7a:36:c6:56:7b:a0:e7:c7:4d:5a:f2:77:d0:e9:1f:80:
        b1:82:ae:dd:3f:e8:00:d5:4d:fa:ed:ca:7b:b2:78:6b:
        39:9c:10:70:8d:4a:32:55:ee:2c:ad:9f:be:24:12:3b:
        20:45:ae:d3:d5:9d:00:85:4f:60:56:1b:ed:ec:f8:b5:
        e8:a0:21:99:be:d1:2f:3d:5e:68:a4:d3:ac:0a:45:ef:
        a7:fc:43:70:b7:47:d9:45:f1:24:f4:55:7e:f4:b4:85:
        97:29:7d:95:95:e7:6f:bc:0c:9e:a0:bf:bc:08:22:9b:
        ed:5f:18:eb:c1:5f:90:7c:e5:6c:36:1f:97:ea:bd:30:
        a1:ba:72:f2:ec:3a:c3:dd:0f:8c:90:de:76:9c:f0:51
    Fingerprint (SHA-256):
        C4:B1:C6:57:E2:9A:22:61:03:53:98:97:17:B1:87:4E:CB:95:3C:D1:E2:48:46:F9:C2:88:7B:25:06:F0:9F:3A
    Fingerprint (SHA1):
        B9:5B:F0:7E:34:C2:3E:03:7D:7F:D0:A5:9C:F5:93:AD:19:BB:21:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2852: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123046 (0x310fdc66)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:28 2017
            Not After : Tue Aug 23 12:30:28 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:66:52:01:8d:e4:63:c7:56:7e:8a:73:73:fe:e7:e0:
                    95:eb:33:fe:7f:9e:cd:47:66:f8:6a:28:ac:3b:7d:6c:
                    bd:e8:7f:75:b5:63:f3:b4:a1:44:9b:60:fb:c8:5f:f2:
                    d3:59:72:b5:ab:71:40:ad:ce:a4:12:2a:e4:ad:74:06:
                    24:ed:72:53:7d:35:fd:06:47:f3:9c:63:13:fd:19:69:
                    48:29:45:8f:19:2b:f8:3f:9c:a7:88:ce:eb:db:6e:22:
                    e9:9f:e6:e7:fe:e8:7e:48:79:30:44:21:95:c7:35:35:
                    47:91:d5:63:99:fc:1d:d3:7d:4b:20:ce:5e:32:0d:e5:
                    e7:fe:3a:4a:17:45:ff:2d:b4:8e:a9:71:7f:2c:a6:ca:
                    5c:94:30:36:fa:cd:7c:d8:4f:61:d5:d2:c8:88:cc:fe:
                    22:22:79:93:ab:20:ac:07:cc:ad:96:f3:20:76:59:6c:
                    30:64:23:a2:31:d2:34:6c:06:01:02:94:58:5f:5c:9b:
                    b0:07:4a:1a:70:2f:ae:e0:80:c3:62:4e:40:29:d0:18:
                    33:c2:b1:e7:7c:50:61:92:e7:31:e2:4f:4a:22:45:e1:
                    39:1c:4d:64:d7:73:1c:54:d8:bd:03:fe:76:be:58:98:
                    1a:33:b3:3d:7d:c5:74:69:e3:41:a9:20:32:2d:66:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:c9:08:76:a9:6c:e8:07:68:97:0a:7b:f5:e9:0e:8d:
        e1:ee:9b:e0:ab:98:dd:42:78:89:97:f5:df:47:c6:d9:
        1e:52:0d:d6:33:54:18:d7:d3:5a:56:62:4a:0b:bc:2c:
        0c:43:ad:22:1f:d3:cc:37:a5:f9:06:30:bf:71:2c:51:
        87:62:68:ce:40:a3:22:5d:9a:e8:0c:ea:34:ee:40:4d:
        8e:43:26:68:d0:9d:3f:e2:55:c3:43:47:36:b0:6c:7c:
        ba:9d:0c:bb:01:de:c8:ba:a2:d1:05:5a:10:52:7a:25:
        7a:36:c6:56:7b:a0:e7:c7:4d:5a:f2:77:d0:e9:1f:80:
        b1:82:ae:dd:3f:e8:00:d5:4d:fa:ed:ca:7b:b2:78:6b:
        39:9c:10:70:8d:4a:32:55:ee:2c:ad:9f:be:24:12:3b:
        20:45:ae:d3:d5:9d:00:85:4f:60:56:1b:ed:ec:f8:b5:
        e8:a0:21:99:be:d1:2f:3d:5e:68:a4:d3:ac:0a:45:ef:
        a7:fc:43:70:b7:47:d9:45:f1:24:f4:55:7e:f4:b4:85:
        97:29:7d:95:95:e7:6f:bc:0c:9e:a0:bf:bc:08:22:9b:
        ed:5f:18:eb:c1:5f:90:7c:e5:6c:36:1f:97:ea:bd:30:
        a1:ba:72:f2:ec:3a:c3:dd:0f:8c:90:de:76:9c:f0:51
    Fingerprint (SHA-256):
        C4:B1:C6:57:E2:9A:22:61:03:53:98:97:17:B1:87:4E:CB:95:3C:D1:E2:48:46:F9:C2:88:7B:25:06:F0:9F:3A
    Fingerprint (SHA1):
        B9:5B:F0:7E:34:C2:3E:03:7D:7F:D0:A5:9C:F5:93:AD:19:BB:21:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2853: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123047 (0x310fdc67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:29 2017
            Not After : Tue Aug 23 12:30:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:25:14:38:af:b5:f8:dc:83:18:fc:7e:88:fd:bc:97:
                    74:97:dd:f1:0d:d1:aa:96:11:af:80:3a:67:19:59:24:
                    65:70:3f:84:26:0d:97:90:42:8b:32:31:69:c6:94:fc:
                    9d:fe:91:96:b7:38:d6:33:16:94:16:a5:ca:8c:23:ed:
                    fb:bb:bf:4d:cb:9e:e7:78:4b:e5:5c:6b:67:1b:84:7b:
                    4f:6b:bf:c6:9c:f4:74:8f:f5:e8:9c:b3:d0:1f:9a:6b:
                    d1:ab:e8:f6:3c:58:cc:f2:22:3e:21:26:32:93:59:17:
                    0c:7d:ae:b0:dc:c7:b3:78:5d:cc:02:06:8c:b8:34:0d:
                    92:bb:5e:0d:40:93:84:d0:7a:00:39:b7:34:83:b7:3c:
                    c6:07:88:37:14:12:58:0e:47:5a:aa:b4:96:48:5a:15:
                    31:3b:89:d3:67:a0:3e:fb:01:e3:56:88:2b:a7:13:88:
                    4a:ba:64:a5:70:c1:44:74:14:05:81:81:77:9a:fd:d9:
                    3c:f0:9b:84:f3:76:91:ce:d3:ea:9a:48:24:d7:e0:29:
                    e5:5e:74:c3:7a:76:fc:41:2f:03:7f:2f:b6:5c:d7:c3:
                    ff:c1:a8:2c:44:52:f5:49:6d:e1:76:2f:e6:99:0d:13:
                    49:64:bd:24:2f:6d:1c:13:49:59:78:3b:be:6f:b9:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:a6:b6:20:58:70:41:0b:21:28:22:bd:e6:a0:bf:bc:
        5c:c2:32:60:0c:04:eb:20:12:b2:33:63:52:47:70:74:
        53:45:3f:da:41:98:03:54:e1:e6:4f:0f:ed:2a:dc:89:
        d1:45:c2:e3:1a:2f:b5:c5:47:89:b4:86:03:b8:36:8b:
        20:7e:7d:60:13:10:3f:d2:11:f8:1b:fc:70:09:11:a7:
        5d:a6:3e:68:1f:4e:05:c6:46:b2:31:cf:f5:bc:60:d3:
        f7:f7:5d:fa:53:2e:51:ce:03:4e:2a:89:a0:6a:29:28:
        02:70:c6:8e:7e:42:03:f1:a6:9c:f9:f4:2a:bc:79:70:
        cc:2d:5d:8a:57:30:59:b3:ee:de:3e:e0:59:a0:e2:4c:
        a1:81:17:4a:f8:91:11:b7:c9:23:21:45:50:66:b7:6e:
        4b:65:6e:23:b2:e4:c2:5c:41:90:0a:9b:41:23:7a:ff:
        00:cf:57:87:7c:b7:a4:23:97:94:8e:fd:c6:aa:69:e6:
        dc:55:42:4e:a2:62:52:3f:b7:73:fe:33:7a:7a:1f:51:
        70:b3:f5:a4:62:47:8b:91:c4:82:97:6a:85:b1:e5:5e:
        da:ce:e3:6a:f8:fd:68:6c:91:d8:a2:3b:d1:06:8a:27:
        4e:11:1e:53:4b:c9:1d:e8:cd:85:6b:1f:c0:eb:9a:e1
    Fingerprint (SHA-256):
        83:31:EA:9D:A7:71:6D:B5:91:4B:DA:36:90:91:8B:80:8A:B9:10:AC:6A:A9:FA:E3:6E:24:B7:96:4C:10:9E:31
    Fingerprint (SHA1):
        2B:8E:FD:09:CE:1F:5B:59:65:B1:BC:BD:3C:47:A9:0D:3B:E0:F3:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2854: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123047 (0x310fdc67)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:29 2017
            Not After : Tue Aug 23 12:30:29 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:25:14:38:af:b5:f8:dc:83:18:fc:7e:88:fd:bc:97:
                    74:97:dd:f1:0d:d1:aa:96:11:af:80:3a:67:19:59:24:
                    65:70:3f:84:26:0d:97:90:42:8b:32:31:69:c6:94:fc:
                    9d:fe:91:96:b7:38:d6:33:16:94:16:a5:ca:8c:23:ed:
                    fb:bb:bf:4d:cb:9e:e7:78:4b:e5:5c:6b:67:1b:84:7b:
                    4f:6b:bf:c6:9c:f4:74:8f:f5:e8:9c:b3:d0:1f:9a:6b:
                    d1:ab:e8:f6:3c:58:cc:f2:22:3e:21:26:32:93:59:17:
                    0c:7d:ae:b0:dc:c7:b3:78:5d:cc:02:06:8c:b8:34:0d:
                    92:bb:5e:0d:40:93:84:d0:7a:00:39:b7:34:83:b7:3c:
                    c6:07:88:37:14:12:58:0e:47:5a:aa:b4:96:48:5a:15:
                    31:3b:89:d3:67:a0:3e:fb:01:e3:56:88:2b:a7:13:88:
                    4a:ba:64:a5:70:c1:44:74:14:05:81:81:77:9a:fd:d9:
                    3c:f0:9b:84:f3:76:91:ce:d3:ea:9a:48:24:d7:e0:29:
                    e5:5e:74:c3:7a:76:fc:41:2f:03:7f:2f:b6:5c:d7:c3:
                    ff:c1:a8:2c:44:52:f5:49:6d:e1:76:2f:e6:99:0d:13:
                    49:64:bd:24:2f:6d:1c:13:49:59:78:3b:be:6f:b9:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:a6:b6:20:58:70:41:0b:21:28:22:bd:e6:a0:bf:bc:
        5c:c2:32:60:0c:04:eb:20:12:b2:33:63:52:47:70:74:
        53:45:3f:da:41:98:03:54:e1:e6:4f:0f:ed:2a:dc:89:
        d1:45:c2:e3:1a:2f:b5:c5:47:89:b4:86:03:b8:36:8b:
        20:7e:7d:60:13:10:3f:d2:11:f8:1b:fc:70:09:11:a7:
        5d:a6:3e:68:1f:4e:05:c6:46:b2:31:cf:f5:bc:60:d3:
        f7:f7:5d:fa:53:2e:51:ce:03:4e:2a:89:a0:6a:29:28:
        02:70:c6:8e:7e:42:03:f1:a6:9c:f9:f4:2a:bc:79:70:
        cc:2d:5d:8a:57:30:59:b3:ee:de:3e:e0:59:a0:e2:4c:
        a1:81:17:4a:f8:91:11:b7:c9:23:21:45:50:66:b7:6e:
        4b:65:6e:23:b2:e4:c2:5c:41:90:0a:9b:41:23:7a:ff:
        00:cf:57:87:7c:b7:a4:23:97:94:8e:fd:c6:aa:69:e6:
        dc:55:42:4e:a2:62:52:3f:b7:73:fe:33:7a:7a:1f:51:
        70:b3:f5:a4:62:47:8b:91:c4:82:97:6a:85:b1:e5:5e:
        da:ce:e3:6a:f8:fd:68:6c:91:d8:a2:3b:d1:06:8a:27:
        4e:11:1e:53:4b:c9:1d:e8:cd:85:6b:1f:c0:eb:9a:e1
    Fingerprint (SHA-256):
        83:31:EA:9D:A7:71:6D:B5:91:4B:DA:36:90:91:8B:80:8A:B9:10:AC:6A:A9:FA:E3:6E:24:B7:96:4C:10:9E:31
    Fingerprint (SHA1):
        2B:8E:FD:09:CE:1F:5B:59:65:B1:BC:BD:3C:47:A9:0D:3B:E0:F3:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2855: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2856: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123050 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2857: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2858: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2859: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2860: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123051   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2861: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2862: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2863: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2864: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123052   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2865: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2866: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2867: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2868: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 823123053   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2869: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2870: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2871: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2872: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123054   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2873: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2874: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2875: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2876: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123055   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2877: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2878: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2879: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2880: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 823123056   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2881: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2882: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2883: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2884: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2885: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2886: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2887: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123050 (0x310fdc6a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:30 2017
            Not After : Tue Aug 23 12:30:30 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:f6:1d:f8:b1:19:55:67:1f:19:4c:4f:ae:a8:7a:c7:
                    75:4f:e4:5c:83:fe:77:b0:e7:ca:3e:e3:2b:63:e2:74:
                    2e:e4:0b:bc:f4:0e:22:ae:36:75:5a:85:08:49:0d:2f:
                    60:e7:01:8e:06:59:69:92:71:3d:eb:a3:3d:70:87:cd:
                    13:57:7b:07:75:a9:c5:c2:cd:2e:6b:5a:d7:e5:09:55:
                    78:27:c7:29:d0:ab:26:be:97:a3:e9:e3:42:ae:8b:08:
                    bb:0a:a5:6a:0c:06:a4:0c:ce:46:ce:c4:41:a7:66:fc:
                    da:ed:5a:12:7a:9a:cc:3a:27:ed:26:73:4f:28:d5:27:
                    e9:4e:77:28:68:b0:92:9c:8b:94:8f:42:b5:06:47:46:
                    a1:8f:d0:16:b4:2c:f0:84:9f:6d:27:10:74:32:b2:23:
                    3d:5b:8c:18:ef:99:e0:fe:cc:58:fa:7a:50:a2:d8:fd:
                    e2:bb:fe:13:3e:5d:57:6f:ea:b8:4a:51:90:63:51:4c:
                    b7:a5:74:92:c5:a9:b4:0f:6a:70:d7:6c:f5:1a:d8:a5:
                    30:fd:6a:79:df:c0:0d:b8:48:14:e2:2d:ee:4f:bc:ad:
                    11:9b:ef:78:d9:47:02:f7:a0:b5:ba:15:6b:f1:f0:df:
                    e3:82:f9:a4:7f:28:d6:cc:b0:09:4c:f1:67:6a:3b:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:59:8b:40:b8:c3:2b:39:e1:6b:99:b8:3c:75:bd:d2:
        6e:c4:0f:a9:b1:ee:eb:07:15:a7:69:fa:cf:c3:37:c7:
        a9:54:bd:0d:e9:75:65:57:8f:1b:7f:3d:e4:a0:39:21:
        c8:da:09:1e:66:54:66:b1:ab:33:d7:bb:68:ba:1b:5c:
        a5:17:da:e1:a0:13:96:79:8d:85:60:9f:6a:34:38:ba:
        3a:27:3f:34:61:8c:b3:fe:0c:d7:8c:b0:60:ef:5c:66:
        d4:3f:a0:d1:34:1b:04:e2:5e:cb:6c:69:95:d6:aa:5e:
        cd:e5:c6:8c:dd:3e:35:66:ce:de:a8:db:66:e8:6c:58:
        18:93:66:1d:99:4a:b9:42:43:54:92:c9:88:42:82:c9:
        dc:0b:ec:65:bc:20:e3:27:c8:b0:81:8d:22:da:64:ae:
        2a:54:6b:a6:f7:2c:2b:3c:41:17:f4:e7:64:cc:81:75:
        bd:82:6b:7b:e4:a5:c3:a7:7d:26:0f:f3:5b:6b:24:3e:
        b6:53:96:e0:b4:b8:3f:db:f8:b9:87:fb:5b:c6:77:2b:
        c4:4a:1f:6c:1b:24:bc:7b:dc:57:ad:d2:c0:07:0f:68:
        d8:60:58:39:31:a0:1a:d5:56:8c:43:37:b0:24:f7:22:
        43:9b:d1:c9:a6:10:a7:c4:e7:a4:b7:d7:6a:50:6e:29
    Fingerprint (SHA-256):
        78:74:92:A1:DC:35:08:C0:D4:84:11:BB:47:2D:91:E5:6A:4F:51:32:5A:71:AD:0F:42:77:A9:AC:DE:58:1C:DF
    Fingerprint (SHA1):
        56:93:A4:FE:37:09:CF:BC:42:14:3F:1C:90:22:52:4E:A8:53:52:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2888: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2889: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2890: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2891: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123050 (0x310fdc6a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:30 2017
            Not After : Tue Aug 23 12:30:30 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:f6:1d:f8:b1:19:55:67:1f:19:4c:4f:ae:a8:7a:c7:
                    75:4f:e4:5c:83:fe:77:b0:e7:ca:3e:e3:2b:63:e2:74:
                    2e:e4:0b:bc:f4:0e:22:ae:36:75:5a:85:08:49:0d:2f:
                    60:e7:01:8e:06:59:69:92:71:3d:eb:a3:3d:70:87:cd:
                    13:57:7b:07:75:a9:c5:c2:cd:2e:6b:5a:d7:e5:09:55:
                    78:27:c7:29:d0:ab:26:be:97:a3:e9:e3:42:ae:8b:08:
                    bb:0a:a5:6a:0c:06:a4:0c:ce:46:ce:c4:41:a7:66:fc:
                    da:ed:5a:12:7a:9a:cc:3a:27:ed:26:73:4f:28:d5:27:
                    e9:4e:77:28:68:b0:92:9c:8b:94:8f:42:b5:06:47:46:
                    a1:8f:d0:16:b4:2c:f0:84:9f:6d:27:10:74:32:b2:23:
                    3d:5b:8c:18:ef:99:e0:fe:cc:58:fa:7a:50:a2:d8:fd:
                    e2:bb:fe:13:3e:5d:57:6f:ea:b8:4a:51:90:63:51:4c:
                    b7:a5:74:92:c5:a9:b4:0f:6a:70:d7:6c:f5:1a:d8:a5:
                    30:fd:6a:79:df:c0:0d:b8:48:14:e2:2d:ee:4f:bc:ad:
                    11:9b:ef:78:d9:47:02:f7:a0:b5:ba:15:6b:f1:f0:df:
                    e3:82:f9:a4:7f:28:d6:cc:b0:09:4c:f1:67:6a:3b:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:59:8b:40:b8:c3:2b:39:e1:6b:99:b8:3c:75:bd:d2:
        6e:c4:0f:a9:b1:ee:eb:07:15:a7:69:fa:cf:c3:37:c7:
        a9:54:bd:0d:e9:75:65:57:8f:1b:7f:3d:e4:a0:39:21:
        c8:da:09:1e:66:54:66:b1:ab:33:d7:bb:68:ba:1b:5c:
        a5:17:da:e1:a0:13:96:79:8d:85:60:9f:6a:34:38:ba:
        3a:27:3f:34:61:8c:b3:fe:0c:d7:8c:b0:60:ef:5c:66:
        d4:3f:a0:d1:34:1b:04:e2:5e:cb:6c:69:95:d6:aa:5e:
        cd:e5:c6:8c:dd:3e:35:66:ce:de:a8:db:66:e8:6c:58:
        18:93:66:1d:99:4a:b9:42:43:54:92:c9:88:42:82:c9:
        dc:0b:ec:65:bc:20:e3:27:c8:b0:81:8d:22:da:64:ae:
        2a:54:6b:a6:f7:2c:2b:3c:41:17:f4:e7:64:cc:81:75:
        bd:82:6b:7b:e4:a5:c3:a7:7d:26:0f:f3:5b:6b:24:3e:
        b6:53:96:e0:b4:b8:3f:db:f8:b9:87:fb:5b:c6:77:2b:
        c4:4a:1f:6c:1b:24:bc:7b:dc:57:ad:d2:c0:07:0f:68:
        d8:60:58:39:31:a0:1a:d5:56:8c:43:37:b0:24:f7:22:
        43:9b:d1:c9:a6:10:a7:c4:e7:a4:b7:d7:6a:50:6e:29
    Fingerprint (SHA-256):
        78:74:92:A1:DC:35:08:C0:D4:84:11:BB:47:2D:91:E5:6A:4F:51:32:5A:71:AD:0F:42:77:A9:AC:DE:58:1C:DF
    Fingerprint (SHA1):
        56:93:A4:FE:37:09:CF:BC:42:14:3F:1C:90:22:52:4E:A8:53:52:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2892: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2893: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2894: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123057 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2895: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2896: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2897: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2898: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123058   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2900: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2901: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2902: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 823123059   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2904: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2905: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2906: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 823123060   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2908: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2909: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2910: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 823123061   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2911: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2912: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2913: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2914: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 823123062   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2916: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2917: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2918: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 823123063   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2920: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2921: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2922: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 823123064   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2923: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2924: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2925: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2926: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 823123065   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2928: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2929: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2930: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 823123066   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2932: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2933: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2934: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 823123067   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2935: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2936: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2937: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2938: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 823123068   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2940: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2941: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2942: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 823123069   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2943: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2944: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2945: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2946: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 823123070   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2947: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2948: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2949: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2950: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 823123071   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2951: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2952: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2953: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2954: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 823123072   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2955: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2956: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2957: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2958: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 823123073   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2959: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2960: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2961: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2962: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 823123074   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2963: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2964: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2965: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2966: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 823123075   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2967: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2968: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2969: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2970: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 823123076   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2971: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2972: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2973: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2974: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 823123077   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2975: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2976: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2977: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2978: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 823123078   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2979: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2980: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2981: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2982: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 823123079   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2983: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2984: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2985: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2986: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 823123080   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2987: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2988: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2989: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2990: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 823123081   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2991: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2992: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2993: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2994: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 823123082   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2995: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2996: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2997: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2998: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 823123083   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2999: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3000: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3001: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3002: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 823123084   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3003: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3004: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3005: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3006: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 823123085   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3007: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3008: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3009: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3010: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 823123086   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3011: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3012: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3013: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3014: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3015: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3016: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3017: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3018: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3019: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3020: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3021: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3023: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3024: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3026: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3027: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3028: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3029: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3030: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3031: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3032: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3033: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3034: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3035: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123057 (0x310fdc71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:32 2017
            Not After : Tue Aug 23 12:30:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:67:92:42:8c:88:e5:a5:73:8a:02:24:c6:b9:c7:41:
                    fe:93:f2:03:33:27:d9:6c:96:74:98:2e:f2:36:4c:9d:
                    63:8d:c5:77:13:df:33:e0:fb:7d:4e:e2:8e:1f:5f:1b:
                    ac:57:9c:c5:7f:2f:28:3a:62:14:93:fa:cd:46:67:c1:
                    53:7c:03:9e:54:fa:1e:31:c6:f8:73:c2:9c:51:6a:9e:
                    20:41:fa:18:1e:aa:52:e1:0e:5c:a9:e0:c6:e6:ab:ca:
                    5c:76:db:31:14:a9:35:ea:ad:7e:1d:7c:4c:89:14:d8:
                    84:a8:cb:6e:d3:41:b4:3a:99:a2:3d:3f:41:8d:67:e4:
                    88:00:12:8e:df:f4:fb:b7:e7:83:7b:c4:23:f2:01:3c:
                    6c:27:d7:fe:10:cc:a5:fa:d5:a9:c4:22:bd:19:d5:73:
                    49:d1:35:d1:01:75:e2:2d:25:85:2e:bf:03:9b:27:8b:
                    82:a0:3e:da:65:9c:b2:00:12:fa:b4:0c:62:be:9b:08:
                    a3:98:f3:e9:07:6f:03:05:77:2e:89:28:e2:91:fd:2d:
                    21:ac:01:a4:01:d7:49:d5:98:79:ed:3d:b0:be:98:01:
                    4a:df:60:50:ca:df:45:c5:57:37:18:50:a6:1b:6d:1e:
                    85:a6:d2:5c:3a:19:c4:a7:34:0b:85:4c:ba:76:cc:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7c:28:97:52:d7:37:6b:35:e6:d5:7d:6e:14:bc:a2:
        ab:b5:39:6c:e0:a4:99:fc:da:e2:82:33:96:40:1e:5a:
        3e:58:ce:9b:c6:9a:77:80:95:44:88:75:14:17:77:01:
        62:dd:12:5b:5b:60:e6:7d:97:b3:75:86:a5:e5:b7:6a:
        b2:f0:32:31:22:22:7e:cb:7c:13:59:8e:e9:07:d3:59:
        53:08:39:3b:54:41:7d:3b:ea:c3:16:db:ca:c0:ce:42:
        98:5a:21:ea:11:a1:6f:3d:4b:6a:18:7d:47:23:37:ae:
        8d:eb:e2:c2:85:c8:03:d7:30:19:54:af:b0:2d:6b:b3:
        df:1f:6b:3a:95:e4:bd:f7:7d:ea:fd:43:0b:7f:c4:8a:
        fd:3b:95:45:ea:0d:00:79:b9:44:3d:77:27:5a:7e:24:
        c6:6b:f6:58:6c:17:d3:af:be:9e:6e:c9:77:89:15:31:
        1e:26:b2:35:05:bb:dd:fc:25:10:48:6f:6b:d1:3a:a9:
        82:c6:00:c3:09:e7:e9:64:29:72:5c:49:22:84:9c:04:
        c6:f2:3b:25:39:73:15:a4:7a:f8:f0:35:b7:1e:dc:c8:
        d6:14:99:e7:2d:15:a9:9b:ba:4b:18:14:81:3a:ea:f6:
        fc:48:47:4a:fe:40:a7:5d:7b:ae:6e:49:a8:82:9d:a3
    Fingerprint (SHA-256):
        3F:40:4A:5D:A8:B8:C6:BA:20:26:4F:6C:3F:FF:BC:A5:E4:5B:93:E2:4E:1F:C5:34:CD:F4:38:90:C5:D0:FC:16
    Fingerprint (SHA1):
        54:75:29:2B:CD:96:00:B3:0B:5C:B2:2B:8F:0F:D4:61:10:EC:60:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3036: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3037: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3038: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123087 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3039: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3040: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3041: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3042: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 823123088   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3043: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3044: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3045: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3046: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 823123089   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3047: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3048: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3049: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3050: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 823123090   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3051: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3052: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3053: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3054: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 823123091   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3055: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3056: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3057: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3058: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 823123092   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3059: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3060: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3061: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3062: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 823123093   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3063: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3064: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3065: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123087 (0x310fdc8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:39 2017
            Not After : Tue Aug 23 12:30:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1f:e4:b7:8c:1d:58:e1:b4:e2:0a:b0:08:6e:34:32:
                    96:52:77:f0:b6:5a:fe:95:10:b6:e5:91:ad:5e:d8:0b:
                    da:6f:5f:50:fb:9e:0c:7e:da:49:b7:ea:ea:ed:86:fe:
                    77:61:f6:95:95:28:e6:ef:90:8e:fd:78:de:89:98:4c:
                    b2:06:2c:c1:52:1f:35:42:29:c3:11:8d:48:c7:1f:97:
                    f7:26:9d:24:c5:b1:dd:68:43:2e:de:eb:90:3a:b5:aa:
                    d6:7f:5f:b3:d1:a4:4b:54:d7:de:a8:e2:fd:d1:ec:db:
                    94:07:84:2c:46:e2:1e:0d:25:52:d3:db:92:37:08:74:
                    a6:d9:d2:67:d4:6c:fb:c9:fe:b6:e4:76:e4:d5:d2:a4:
                    b4:32:a4:5f:db:e8:5b:b5:ce:70:98:d8:84:01:1b:6f:
                    99:6a:0a:03:4d:9f:2d:da:25:67:59:62:0e:a1:af:02:
                    ec:da:e2:b3:c1:74:5a:c5:73:9b:63:c5:d5:a8:be:f7:
                    28:9d:ad:79:f5:1d:85:0e:dc:af:c2:29:22:f9:b4:37:
                    d7:97:94:49:d3:55:c0:4c:25:ac:ac:fe:50:76:2e:0c:
                    b3:65:89:31:7e:d9:bd:01:b9:55:f3:85:05:89:59:95:
                    4f:a1:45:24:50:ba:b0:49:b2:9a:ee:99:b1:02:6d:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:53:20:f9:34:3e:ea:20:23:60:65:e9:bc:9b:21:7b:
        65:51:6f:cf:82:8a:39:76:17:c5:4b:d1:97:8a:b1:3f:
        70:5d:fb:7a:3c:a4:9b:b7:7c:f0:96:93:d9:56:d2:e8:
        0b:be:ab:74:54:e6:ac:5a:f6:7a:72:b9:cb:ae:84:1e:
        2c:ed:f3:ac:87:8a:35:ce:32:8c:e2:3f:ef:37:78:85:
        c6:29:10:16:be:4b:7b:24:6e:96:f3:8f:96:2c:a0:12:
        06:77:ec:05:db:60:67:d1:3f:a9:66:5d:0a:d6:b6:00:
        bb:77:b5:44:58:5c:b7:1e:01:61:b4:db:83:8f:11:f1:
        74:8e:f1:29:2a:cf:04:55:b8:72:b8:39:ce:46:d7:24:
        3f:ce:3e:22:0c:81:11:65:c0:17:a2:7f:5d:1f:73:2d:
        d9:cc:87:d9:45:ae:45:24:c6:2c:ce:2a:d7:f4:54:c3:
        a5:79:6f:2c:4b:84:b9:88:42:71:e3:05:cf:d3:46:43:
        69:49:96:d1:ec:8c:a1:21:01:62:9f:ac:2e:43:e0:46:
        4a:62:fb:72:51:4b:fe:81:3d:e3:d2:f8:ac:93:65:95:
        1f:71:79:00:cd:17:f8:9b:6c:4e:94:2a:65:71:5f:20:
        a6:dd:fc:1a:d9:ee:cb:bd:f2:3b:b6:15:b1:c5:6f:a8
    Fingerprint (SHA-256):
        D2:BB:EC:A2:B1:C7:8D:A6:66:CF:AD:12:E5:0E:93:58:D5:F3:1E:D2:F3:91:9F:F9:9C:99:51:2D:B5:AB:D5:8C
    Fingerprint (SHA1):
        22:A5:F5:90:40:C3:E3:CE:0C:FA:E5:F6:B2:46:80:D2:BF:E7:03:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3066: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3067: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3068: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3069: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123087 (0x310fdc8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:39 2017
            Not After : Tue Aug 23 12:30:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:1f:e4:b7:8c:1d:58:e1:b4:e2:0a:b0:08:6e:34:32:
                    96:52:77:f0:b6:5a:fe:95:10:b6:e5:91:ad:5e:d8:0b:
                    da:6f:5f:50:fb:9e:0c:7e:da:49:b7:ea:ea:ed:86:fe:
                    77:61:f6:95:95:28:e6:ef:90:8e:fd:78:de:89:98:4c:
                    b2:06:2c:c1:52:1f:35:42:29:c3:11:8d:48:c7:1f:97:
                    f7:26:9d:24:c5:b1:dd:68:43:2e:de:eb:90:3a:b5:aa:
                    d6:7f:5f:b3:d1:a4:4b:54:d7:de:a8:e2:fd:d1:ec:db:
                    94:07:84:2c:46:e2:1e:0d:25:52:d3:db:92:37:08:74:
                    a6:d9:d2:67:d4:6c:fb:c9:fe:b6:e4:76:e4:d5:d2:a4:
                    b4:32:a4:5f:db:e8:5b:b5:ce:70:98:d8:84:01:1b:6f:
                    99:6a:0a:03:4d:9f:2d:da:25:67:59:62:0e:a1:af:02:
                    ec:da:e2:b3:c1:74:5a:c5:73:9b:63:c5:d5:a8:be:f7:
                    28:9d:ad:79:f5:1d:85:0e:dc:af:c2:29:22:f9:b4:37:
                    d7:97:94:49:d3:55:c0:4c:25:ac:ac:fe:50:76:2e:0c:
                    b3:65:89:31:7e:d9:bd:01:b9:55:f3:85:05:89:59:95:
                    4f:a1:45:24:50:ba:b0:49:b2:9a:ee:99:b1:02:6d:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:53:20:f9:34:3e:ea:20:23:60:65:e9:bc:9b:21:7b:
        65:51:6f:cf:82:8a:39:76:17:c5:4b:d1:97:8a:b1:3f:
        70:5d:fb:7a:3c:a4:9b:b7:7c:f0:96:93:d9:56:d2:e8:
        0b:be:ab:74:54:e6:ac:5a:f6:7a:72:b9:cb:ae:84:1e:
        2c:ed:f3:ac:87:8a:35:ce:32:8c:e2:3f:ef:37:78:85:
        c6:29:10:16:be:4b:7b:24:6e:96:f3:8f:96:2c:a0:12:
        06:77:ec:05:db:60:67:d1:3f:a9:66:5d:0a:d6:b6:00:
        bb:77:b5:44:58:5c:b7:1e:01:61:b4:db:83:8f:11:f1:
        74:8e:f1:29:2a:cf:04:55:b8:72:b8:39:ce:46:d7:24:
        3f:ce:3e:22:0c:81:11:65:c0:17:a2:7f:5d:1f:73:2d:
        d9:cc:87:d9:45:ae:45:24:c6:2c:ce:2a:d7:f4:54:c3:
        a5:79:6f:2c:4b:84:b9:88:42:71:e3:05:cf:d3:46:43:
        69:49:96:d1:ec:8c:a1:21:01:62:9f:ac:2e:43:e0:46:
        4a:62:fb:72:51:4b:fe:81:3d:e3:d2:f8:ac:93:65:95:
        1f:71:79:00:cd:17:f8:9b:6c:4e:94:2a:65:71:5f:20:
        a6:dd:fc:1a:d9:ee:cb:bd:f2:3b:b6:15:b1:c5:6f:a8
    Fingerprint (SHA-256):
        D2:BB:EC:A2:B1:C7:8D:A6:66:CF:AD:12:E5:0E:93:58:D5:F3:1E:D2:F3:91:9F:F9:9C:99:51:2D:B5:AB:D5:8C
    Fingerprint (SHA1):
        22:A5:F5:90:40:C3:E3:CE:0C:FA:E5:F6:B2:46:80:D2:BF:E7:03:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3070: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3071: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3072: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3073: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123094 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3074: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3075: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3076: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3077: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123095   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3078: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3079: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3080: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3081: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123096   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3082: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3083: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3084: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3085: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123097   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3086: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3087: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3088: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3089: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3090: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3091: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123094 (0x310fdc96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:41 2017
            Not After : Tue Aug 23 12:30:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:ea:2d:62:4d:e5:a1:51:50:4f:8f:d8:11:f2:85:c7:
                    fd:9f:98:ae:98:52:9c:34:19:20:3d:16:1d:fb:f1:e1:
                    e5:13:5f:d6:41:04:4e:7a:82:f8:cc:5b:6b:1d:3e:2c:
                    1d:09:03:ba:31:97:ec:e2:12:0b:8b:c6:5e:92:ba:68:
                    22:d7:4e:cb:cb:a0:af:aa:b9:32:cf:be:11:97:88:13:
                    6e:d9:a0:88:35:78:ec:ae:5a:ff:eb:0c:68:04:99:60:
                    3a:90:f3:67:74:a2:b7:36:22:a8:8d:ab:da:9f:01:b8:
                    b2:af:4d:6b:e4:05:bd:14:1c:07:ea:ab:f6:9a:a0:86:
                    15:8e:73:6a:db:60:6b:fb:ed:d1:ca:bb:6d:ed:25:64:
                    88:ec:07:3b:b7:22:ec:c9:7d:2f:ec:e3:6d:0b:82:e0:
                    b4:8b:71:0c:14:97:77:a2:6a:a7:4c:e9:a9:62:cf:4e:
                    ee:d8:84:98:4d:c9:6c:65:9b:1d:c9:bd:5d:60:c8:36:
                    5f:85:a9:a9:d3:0f:d3:48:ed:e0:71:23:12:15:bb:9b:
                    00:5f:9d:46:dc:3f:8b:1f:9e:81:aa:49:6d:ca:50:f8:
                    ac:3a:d7:7b:af:75:d6:78:bd:c4:5a:3f:af:fe:a3:5e:
                    87:7b:59:b6:50:38:3c:4a:80:d6:33:f3:93:91:00:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:4b:37:9e:b6:2a:ca:c8:b1:85:bc:be:11:b3:0f:2d:
        38:2e:1d:a4:a1:9d:66:dd:e3:3c:0d:45:41:ee:ca:4c:
        2a:04:ec:21:ff:1c:0b:47:78:56:20:94:18:15:1a:34:
        d3:2c:bd:00:47:c2:10:79:31:a7:8d:76:0e:79:9c:86:
        33:60:07:e9:78:db:84:19:17:30:9e:d3:9f:cd:5f:a1:
        36:d9:a2:99:44:f9:72:af:06:bd:fb:70:dc:64:11:f3:
        d5:fa:b3:a9:95:fd:02:92:8d:86:8e:94:d3:f3:c0:fd:
        73:95:18:5b:c9:ee:c7:5f:a6:8e:64:10:2f:69:ed:da:
        91:b3:19:72:70:37:b9:3b:be:a4:44:b9:41:19:20:6b:
        51:b6:1e:a6:d8:f1:f5:45:f7:1b:43:4a:98:c8:4f:24:
        6b:0c:58:99:5f:88:0a:6f:00:b5:42:49:64:ee:ba:aa:
        3d:0d:2f:48:91:4f:79:99:ca:c9:ed:b9:86:29:c0:bc:
        9c:38:b7:fb:df:e2:3d:99:5e:39:e8:b5:ab:34:f6:69:
        e2:79:66:5c:12:74:50:64:78:1b:6b:bb:00:bf:fe:a4:
        c7:d0:48:67:7d:99:84:c8:43:24:d8:fc:b5:1a:f3:ba:
        f1:38:f4:3b:4d:5e:fb:50:d9:5c:f4:3c:5f:0d:c7:34
    Fingerprint (SHA-256):
        DD:E0:39:51:99:0A:FB:4E:CC:BB:53:70:7F:E5:CA:44:82:E1:EB:F9:41:3D:93:24:EE:02:66:0B:D8:F1:5E:F9
    Fingerprint (SHA1):
        B1:91:71:E8:97:E0:87:BA:F9:A2:42:FD:27:4A:F9:5E:09:7B:48:3E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3092: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3093: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3094: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123095 (0x310fdc97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:41 2017
            Not After : Tue Aug 23 12:30:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:a2:54:7d:98:27:7c:17:d7:4a:a3:21:b8:88:6c:4f:
                    6e:61:7b:52:da:d1:44:91:a4:df:5b:fe:cf:68:aa:14:
                    fb:41:ab:91:89:82:b1:fe:df:e3:e2:c6:c6:ae:a4:72:
                    39:3d:bc:f6:4f:11:02:b6:86:d6:a7:e3:3b:8a:b6:50:
                    c8:7c:e7:6f:4c:57:f0:bf:ca:f0:b8:ec:08:d2:4b:6b:
                    9f:9a:b8:08:fb:42:cb:ed:59:71:83:08:4a:4d:b4:af:
                    e0:c0:35:e4:fa:a0:d1:54:e7:95:bb:38:c7:09:4b:7e:
                    4c:9b:a9:75:96:bb:80:60:32:0d:a4:8e:83:61:21:78:
                    7f:fd:95:21:33:57:6f:6f:f4:f9:06:81:9e:3e:b9:48:
                    b9:1d:c6:d9:46:57:ab:6f:47:5b:27:f2:40:24:38:3d:
                    e4:3d:0c:f7:13:48:a5:9e:1f:f3:a1:9b:a8:ec:b2:1f:
                    2b:a0:f3:c6:cf:b8:23:ee:2e:bc:be:4f:34:7a:19:a1:
                    81:b9:43:3c:60:cd:1c:0c:45:10:e6:a3:60:a3:e9:5c:
                    54:6b:72:e6:35:ad:05:39:e9:4b:28:84:6a:22:75:e0:
                    db:96:d0:c5:c7:b5:63:ab:45:3d:0d:b2:d3:bc:6c:3f:
                    4e:1c:21:21:86:91:af:8a:2a:86:f0:10:c1:98:cf:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:d1:f3:1a:fe:ce:fc:25:da:4d:b3:86:70:20:e2:03:
        0d:28:7f:f3:d4:06:e5:08:9d:c1:b9:68:66:53:a1:f8:
        0d:b0:a1:b3:3d:c7:0e:b5:51:34:12:a1:ee:70:9c:57:
        09:ba:a8:3b:ef:e5:71:5d:e5:e1:b4:c7:2b:a3:8a:98:
        9c:d4:18:f5:b1:45:b8:f4:54:1f:c1:ec:da:2e:61:a2:
        57:fc:7f:4c:f2:c5:e9:be:94:3c:08:c0:2f:6c:36:fa:
        e7:01:e0:30:7b:9b:76:a8:51:f4:6c:7f:93:2d:af:6f:
        c4:db:48:11:e8:d3:ad:85:28:69:e1:b9:a3:72:0e:d3:
        32:f1:d7:ec:38:d9:7a:11:d0:1c:6a:a4:e3:24:b9:28:
        ee:26:b4:f9:6e:b2:07:9a:2d:71:df:59:7a:82:45:0a:
        39:96:c7:8d:ba:d7:32:9a:8a:61:2e:14:70:83:6f:9a:
        79:e9:91:41:48:0d:23:23:92:c7:9f:7c:91:7b:fc:99:
        7a:0c:1c:c3:40:58:49:72:bb:ba:45:9f:aa:6f:fe:13:
        72:3c:30:6f:65:8a:b7:14:6f:07:eb:8c:82:4e:a6:ec:
        b9:94:2b:d7:84:73:f7:ac:82:9c:0a:31:c4:b5:7a:55:
        05:fc:ab:a3:91:67:2d:a3:85:5e:3c:48:11:df:27:35
    Fingerprint (SHA-256):
        F5:36:26:49:C8:86:16:38:D8:60:E6:B6:60:E4:DE:DC:19:5A:44:FE:97:C2:CD:4B:46:7B:2A:C2:0F:57:34:6D
    Fingerprint (SHA1):
        19:7F:8E:17:09:5D:6D:20:60:5B:B2:DE:95:93:6E:6D:8A:44:69:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3095: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3096: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123096 (0x310fdc98)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:41 2017
            Not After : Tue Aug 23 12:30:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:ed:60:a0:c6:b1:07:8c:77:49:a3:21:e6:ad:b0:51:
                    48:9c:9c:2b:91:23:37:c0:b9:01:9e:bd:a5:c2:a7:06:
                    a1:60:43:e0:da:6a:11:ed:81:3e:ba:a2:89:55:70:e4:
                    f0:59:23:4c:12:9d:05:12:40:1d:1d:6a:5e:db:c1:6b:
                    bf:3f:90:13:ef:eb:ed:8e:85:a3:f3:9f:d9:37:5e:90:
                    3b:cb:be:bc:a2:14:98:06:c2:63:10:ff:a7:31:5d:8c:
                    db:75:bd:ff:e6:97:9d:96:6c:d7:16:e2:86:8e:e4:22:
                    ed:12:8f:f1:60:90:88:f5:57:8a:f4:92:97:79:d9:93:
                    a4:a9:5b:ec:99:09:4b:ee:d4:f8:86:a0:06:bf:27:19:
                    61:47:6d:fa:98:80:8d:71:6d:32:e6:b5:42:3d:a0:26:
                    62:00:66:bd:52:d0:5e:ca:d9:0f:ad:71:37:40:b4:47:
                    8c:a0:35:78:cb:38:55:e8:c6:d9:dc:99:73:3b:68:61:
                    45:8c:bd:4f:c8:c6:1e:d1:6a:49:74:c2:db:58:cd:86:
                    82:8b:d2:bb:7d:ff:43:82:c8:d6:2c:2b:c4:86:7a:51:
                    75:84:52:fc:5c:9e:d5:3d:8f:f9:73:ff:d3:e8:cd:44:
                    c3:9c:99:cb:48:67:d8:f5:dc:65:14:fe:59:00:b8:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:a4:f8:13:2d:f4:72:96:cd:83:a7:64:79:7c:f6:e7:
        7f:bf:34:1b:96:56:cf:22:69:69:c1:6e:c7:ad:51:31:
        47:36:c0:a9:eb:18:fb:a6:5d:db:19:92:04:c1:59:1e:
        9e:8b:89:47:e7:a7:9f:9b:2c:61:0a:40:0d:b2:3d:eb:
        cb:ce:35:56:15:75:1e:d4:c4:bb:89:20:1c:81:0f:e5:
        b8:5d:02:37:a9:00:78:c0:67:ae:4c:e3:9c:38:57:f5:
        c5:61:84:c2:98:be:38:16:68:18:eb:b4:43:1b:cb:96:
        ab:6c:90:ba:d9:e5:b6:25:97:a2:03:ec:96:04:46:7b:
        38:f8:04:cf:3f:06:6a:d2:83:82:1d:01:41:25:06:76:
        b5:e6:9a:1a:9e:de:5c:d7:89:29:d9:de:7c:79:df:28:
        6b:b2:62:df:be:d3:c5:00:cb:aa:89:69:e5:c8:a4:b6:
        ec:d4:4a:42:18:8f:c2:8c:d8:5c:b0:78:c0:85:fc:3b:
        ba:61:2b:85:92:81:eb:27:e0:b5:ed:d5:86:05:49:fd:
        9e:b3:d2:9b:1d:86:5f:18:af:c2:2a:35:cd:6b:c5:db:
        d7:65:c4:67:d5:72:ad:ac:4b:b3:d5:81:7b:06:df:df:
        e4:75:06:00:9b:9b:6c:9e:16:6d:07:5c:05:a1:bd:c1
    Fingerprint (SHA-256):
        13:44:D5:9B:7D:7A:2D:D8:DA:1B:C6:2B:1B:FE:84:A5:C7:4D:51:77:F2:E6:29:F7:DD:EE:99:80:E4:E2:0A:64
    Fingerprint (SHA1):
        E1:EF:B0:AD:A8:A5:F0:93:CB:8F:D6:A2:08:87:47:81:B4:EA:0D:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3097: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3098: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123098 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3099: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3100: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3101: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3102: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123099   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3103: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3104: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3105: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3106: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123100   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3107: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3108: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3109: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3110: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 823123101   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3111: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3112: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3113: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3114: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 823123102   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3115: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3116: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3117: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3118: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3119: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3120: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3121: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123098 (0x310fdc9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:42 2017
            Not After : Tue Aug 23 12:30:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:3e:68:c6:b1:02:f6:5e:e8:05:61:1e:7f:d9:38:b2:
                    8a:ac:70:db:c9:c6:30:0e:85:65:93:53:be:9d:15:60:
                    48:0c:9c:55:88:52:0b:27:73:f1:ca:70:2e:a5:84:fe:
                    d7:b9:15:d2:22:86:ec:ce:ec:18:28:57:09:cd:a6:d9:
                    20:53:1f:d7:05:6f:44:3b:29:06:75:32:ec:dc:02:14:
                    4b:13:69:c1:2b:bc:31:3b:90:25:07:4f:b4:ca:a5:d4:
                    8d:20:71:e5:22:ff:78:6e:0a:79:97:22:51:b1:68:7d:
                    7c:8d:e5:14:55:d8:80:85:48:53:80:86:58:fa:83:23:
                    bb:c0:0c:ea:af:87:27:c4:34:da:cd:fd:0f:f5:aa:b9:
                    da:bb:f6:3a:21:c4:5a:0e:3e:d8:ce:57:95:9f:74:10:
                    17:04:f6:b6:de:3b:5a:63:d2:bd:cb:48:2e:d2:75:a4:
                    aa:9f:d9:b6:3d:fb:3c:41:1b:86:ce:62:d2:f7:0b:3d:
                    6e:cf:8c:73:0b:68:6c:70:d7:fe:cb:9e:bf:d0:f5:26:
                    42:46:fb:f4:2f:53:fa:c3:c5:f7:2e:d5:ca:c1:61:89:
                    5f:bb:35:2b:61:90:9a:64:35:9e:55:9b:85:62:0f:9f:
                    20:ad:5f:a2:79:97:f8:24:c8:60:6c:08:51:64:4f:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:c8:8d:6f:ff:52:00:5a:ff:aa:03:a1:a2:d3:a8:23:
        95:b9:48:2d:76:64:79:a4:58:9b:30:cf:f5:16:f7:b5:
        61:13:ac:3f:bc:7e:4e:33:cd:9e:c7:3e:3a:e2:a4:0c:
        f5:ff:76:ad:7c:0c:92:19:02:21:0b:8d:f1:b0:89:35:
        52:d7:78:8f:d1:a9:1c:5d:d7:1c:a3:0b:90:46:05:b4:
        64:1b:a3:4e:a7:19:c9:69:41:25:e8:28:f8:c2:f4:9e:
        77:db:72:9b:d1:52:12:96:a5:c7:bb:52:0e:c2:73:22:
        1e:bf:e9:15:ff:4b:15:7b:18:34:06:78:09:35:09:2d:
        99:e1:c5:6f:e0:96:6c:56:d0:ba:74:ab:92:4c:ae:41:
        3b:5f:35:bd:79:83:2b:ad:15:5f:6a:b2:6e:20:49:be:
        c8:16:14:32:5a:b4:59:8e:e4:00:0f:44:97:ef:32:a7:
        61:d8:17:bf:85:9b:19:6d:fd:a1:48:72:c9:74:ac:e3:
        40:39:60:c9:22:5c:73:3b:3e:71:d2:5f:c0:2b:a3:a7:
        93:9e:64:f3:e9:41:de:63:34:70:67:5d:ae:29:7b:e7:
        54:ee:24:93:8f:a8:22:17:5f:ce:ce:f7:85:6e:ec:62:
        a0:2e:7d:f2:58:fe:52:f1:c8:43:49:a9:ce:20:fc:0b
    Fingerprint (SHA-256):
        14:D3:75:C2:71:A1:54:AE:48:C1:CB:58:C9:8A:3A:22:81:E0:3E:5D:BD:D0:AD:9E:07:12:24:C1:BF:97:07:33
    Fingerprint (SHA1):
        80:A3:4B:BF:ED:8B:93:18:47:3A:3B:0B:58:9B:59:46:B0:9C:AE:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3122: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3123: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123099 (0x310fdc9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:42 2017
            Not After : Tue Aug 23 12:30:42 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:30:44:de:59:52:73:27:2e:e7:72:f4:4f:de:25:66:
                    4b:02:3b:ff:d5:fd:39:57:a2:f0:5d:cb:5b:59:75:38:
                    30:4e:30:30:b3:f8:5f:81:ab:ca:99:9a:eb:ce:0d:e8:
                    67:21:aa:8b:d0:46:2e:3a:dc:e4:3b:cb:f0:23:f4:a7:
                    c6:db:34:ff:f0:94:95:d2:e4:10:da:c8:4e:ee:40:c2:
                    47:74:34:2b:f8:24:27:68:2c:c6:71:2c:e8:2b:e4:e0:
                    5a:5d:62:4d:89:be:13:3d:a2:91:85:9d:9e:fe:c5:0d:
                    b9:86:1c:d7:a4:54:56:3f:54:fa:ad:d0:08:b9:a3:5c:
                    76:25:90:6a:71:00:fa:65:6b:54:bf:31:d0:82:e3:88:
                    80:aa:fa:13:6a:27:4f:50:65:17:0f:a2:7b:97:2f:34:
                    d8:1c:39:9a:6b:2d:73:b8:61:d1:49:04:2e:68:81:c4:
                    11:5d:00:4a:44:c9:4f:59:6e:6a:c6:64:0e:ec:97:d4:
                    3b:45:fd:a3:89:aa:c6:df:4f:32:4a:9f:9f:73:9c:6c:
                    50:89:a9:87:7f:2e:fe:fa:73:00:07:fd:ee:06:70:6a:
                    b4:61:4b:ff:3c:fc:71:ff:c6:78:7d:d4:d8:8a:7b:00:
                    e4:01:ef:96:cc:e3:c3:d9:dd:37:cc:dd:53:00:c4:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:40:10:19:98:2b:df:f9:52:4b:d8:a4:b8:69:35:08:
        68:f7:c6:4a:18:a2:69:ff:75:2a:d1:b2:21:00:dc:92:
        7b:3d:95:6b:1d:69:54:0d:95:17:ea:c4:2d:ab:c5:9a:
        9a:40:0d:c1:fb:6b:f3:49:63:98:9b:db:7a:d0:9d:11:
        08:54:e1:d6:6f:46:fd:bf:76:2a:2d:b3:dd:35:92:1c:
        a0:ae:7c:25:ab:ab:4a:b8:a5:e9:73:f8:ae:1b:81:bb:
        e3:58:52:dd:d7:a2:cd:10:b9:af:10:78:4c:ac:e2:15:
        b0:f0:60:72:f7:80:52:0d:4f:a2:43:d1:82:32:1b:f6:
        f5:3c:ea:e7:9d:b6:d2:62:c5:d1:82:85:83:43:2b:65:
        b4:fd:d3:85:b5:b2:07:84:53:90:c3:02:31:0f:36:7b:
        5f:16:57:c1:61:fe:df:30:f4:95:8c:a0:b7:bf:b8:b7:
        6e:19:62:bc:1b:8e:57:ba:6a:a3:ac:6b:03:ed:e3:5d:
        8b:d5:f9:29:41:fd:2b:16:6e:6e:73:4c:fa:82:94:47:
        38:87:38:af:97:95:64:87:d6:6f:ec:37:fa:36:20:c1:
        36:a5:58:3b:c7:8a:7d:38:be:13:e2:29:bd:3f:ac:05:
        08:82:e4:8c:1c:9d:46:48:d7:fe:9d:44:28:f2:3f:bf
    Fingerprint (SHA-256):
        20:5E:6A:DC:33:ED:55:0E:D3:F4:58:55:91:8C:66:32:93:DB:B6:05:2A:23:CA:6B:93:9A:32:50:C8:76:FD:0C
    Fingerprint (SHA1):
        7F:05:0C:08:91:9D:F9:E8:7C:D8:35:08:A0:A7:A9:E2:EC:B9:F5:EF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3124: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3125: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3126: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123100 (0x310fdc9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:42 2017
            Not After : Tue Aug 23 12:30:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:d4:da:c2:25:f8:c1:54:31:45:fd:48:cc:fd:46:0f:
                    4a:bc:7c:10:ab:94:35:47:7f:66:83:6f:4e:8b:1b:1b:
                    32:f9:8d:3c:e2:86:93:86:39:98:48:63:a3:ed:03:fa:
                    50:31:88:cf:b2:52:df:79:32:94:56:ba:32:ae:7b:56:
                    08:ae:10:93:b3:bc:8c:3b:cf:d2:90:14:32:f2:bf:a2:
                    d0:62:c6:c5:52:7d:c5:96:25:ae:56:6c:c0:bf:ef:ca:
                    2d:85:c4:b0:2d:c7:b7:0e:96:fd:e1:df:e1:e2:04:4b:
                    21:a2:92:a8:79:5d:17:21:08:14:bb:15:7a:54:8d:e9:
                    25:da:b0:6d:ed:4c:fd:bc:42:d9:94:57:4f:43:0c:da:
                    5e:f4:f9:1e:b0:7b:10:20:8c:7b:d5:fa:ce:cb:52:68:
                    bf:91:2e:cf:b3:64:bf:bf:07:64:25:dc:be:41:1b:94:
                    56:6c:9c:ef:2f:4c:63:ce:5e:58:12:88:8c:3c:55:c8:
                    fe:e1:33:50:cd:7f:a1:1d:d5:06:a4:f7:36:85:ef:7d:
                    4a:30:46:b0:84:13:59:e3:2f:9c:3a:4a:d0:8e:b1:d2:
                    66:30:5d:c6:58:98:32:c6:1a:95:a5:70:e5:c6:84:6a:
                    3a:32:b6:03:5c:53:7f:42:51:a9:b2:45:f2:90:77:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        53:85:af:6c:65:3b:fd:48:4c:d5:8e:03:31:8c:7a:dc:
        e3:95:4a:28:5e:05:4f:2c:ea:ba:e4:f7:6d:a7:3a:32:
        72:78:2e:c9:94:00:d8:47:ed:2c:71:fc:ee:12:4d:11:
        83:96:5d:37:e7:0d:1a:69:bc:89:11:1f:18:4f:95:aa:
        64:98:7c:40:c7:d9:e6:59:e6:e7:27:36:14:43:cf:e0:
        20:c0:7f:ea:6a:67:00:b3:3e:07:b3:ef:fe:d2:a1:5f:
        63:b9:a0:45:56:a8:96:60:e3:bc:be:96:01:1f:0d:04:
        1a:61:26:98:5c:35:a0:11:6a:40:4d:da:5a:22:70:d0:
        b0:58:8b:bd:3b:b7:3a:7e:3e:fc:18:42:01:ea:b5:7d:
        61:c7:a6:f8:62:b4:14:d3:90:f0:62:88:3f:34:c8:08:
        44:f6:47:a5:63:4d:a4:66:e4:23:e7:22:af:96:b6:d3:
        8d:6d:95:58:25:ef:3b:a1:e5:1c:52:a0:a1:7c:e7:d8:
        10:cb:88:0d:33:2b:74:d9:7a:54:9f:c5:ac:07:c3:96:
        22:c8:eb:26:cd:bf:58:4b:ee:19:af:96:0b:00:1a:25:
        a5:e1:46:66:15:9c:11:a8:88:5f:e0:b4:c3:c1:8f:3e:
        b9:c6:96:f7:6d:93:6a:c8:55:94:93:00:a2:12:24:4c
    Fingerprint (SHA-256):
        61:BA:A2:8C:1C:4A:E4:5E:B5:8A:0F:92:E7:FA:A9:16:FD:AF:D0:63:B7:DE:8B:EC:AE:FB:17:63:18:9A:B1:F7
    Fingerprint (SHA1):
        68:81:15:35:02:16:6F:43:75:D7:07:53:0E:06:6E:32:56:7C:CA:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3127: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3128: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123103 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3129: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3130: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3131: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3132: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123104   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3133: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3134: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3135: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3136: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123105   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA1Root-823123012.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3137: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3138: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3139: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3140: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123106   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3141: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3142: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3143: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123103 (0x310fdc9f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:43 2017
            Not After : Tue Aug 23 12:30:43 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ea:bd:33:fe:bc:f3:dc:cc:51:6f:f6:07:ed:02:c8:
                    c5:be:b6:3b:01:6b:ab:f5:1d:b4:93:69:3e:75:f0:da:
                    38:89:0b:63:22:2c:5c:7a:4a:f8:29:b3:25:df:b3:68:
                    d5:10:0f:d7:4c:2d:6e:b4:39:3e:11:5c:d6:a6:c7:07:
                    b5:df:15:0b:5b:89:4e:08:0c:05:04:24:07:e0:97:46:
                    93:59:a3:b6:88:3f:49:f6:be:2a:2a:f7:27:6c:f3:3f:
                    0e:70:07:a1:e8:72:cd:d2:05:68:a0:e8:53:89:d3:cb:
                    01:56:4d:b2:67:f7:6f:b2:08:12:eb:06:1f:a3:b8:2b:
                    d8:aa:6a:fa:32:a3:b6:32:71:08:eb:f3:6f:2a:56:ad:
                    85:b3:ae:e8:aa:8c:7b:86:f5:d0:65:ff:d3:90:80:f8:
                    69:9a:68:72:54:87:e8:c6:75:76:c9:08:be:99:80:55:
                    39:5c:ec:a2:7e:bf:08:d1:59:e0:ef:eb:ba:d8:e6:bf:
                    a8:91:ff:ed:91:74:d2:85:fd:9d:55:3d:80:f6:7c:c2:
                    d1:3d:d9:3f:59:f4:06:f7:b7:fe:74:6a:f7:cc:fe:7a:
                    25:7a:e3:6d:96:e5:ad:a1:1d:20:6a:f9:88:a5:33:5b:
                    8c:69:d6:a8:b6:9f:92:90:83:86:c5:c2:20:0e:b3:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:9a:6a:af:55:be:b4:dc:fe:64:8d:76:46:55:76:f6:
        ce:9c:c0:f7:7c:7d:9c:96:53:96:82:ca:10:b0:4c:6f:
        7f:3c:a7:94:62:57:a0:df:cf:ae:1d:9e:9f:16:fc:f2:
        69:9e:c3:78:65:2b:c6:bb:ed:ee:1d:8b:f3:cb:fe:be:
        eb:1e:3f:14:fc:39:ce:cd:c9:a6:c7:b9:19:14:60:7b:
        67:06:01:38:aa:09:70:14:d1:0d:c5:58:c2:0a:4d:91:
        3b:74:61:70:65:37:22:27:de:a0:79:0c:88:1b:55:07:
        0f:2a:2e:97:d6:29:7b:41:31:8a:68:e5:28:ef:ca:57:
        72:f1:b6:f2:15:a9:cf:4f:aa:bd:42:97:3d:a2:e1:be:
        af:20:49:7c:a6:65:d7:6b:34:cb:50:9e:a4:a4:1f:7c:
        6f:56:5e:07:4e:fe:c6:d9:66:3f:87:f4:c7:ed:24:1f:
        90:e5:49:57:64:fa:8e:a5:c0:bd:99:aa:f6:47:ae:1e:
        8e:42:ee:13:31:ff:be:41:58:1f:d9:55:37:ae:f4:99:
        5f:5d:46:b7:0e:46:dd:dd:45:ef:3f:b6:02:f6:12:ac:
        23:6d:93:82:11:a6:b8:e6:17:a9:61:2c:76:f0:f4:df:
        0d:4b:da:f1:22:99:42:e9:f0:41:b4:25:7f:1e:ce:35
    Fingerprint (SHA-256):
        7E:67:0D:57:DD:33:72:C2:B4:6C:66:BB:FD:82:1E:F5:8D:73:B0:AE:72:D9:1E:A8:15:C8:AA:D3:85:4A:06:67
    Fingerprint (SHA1):
        6F:36:27:2D:38:CB:A3:7B:1F:DA:BE:75:C1:DB:F8:93:5D:48:EC:35
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3144: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3145: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123107 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3146: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3147: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3148: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123108 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3149: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3150: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3151: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3152: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123109 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3153: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3154: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123110 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3155: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3156: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3157: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3158: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3159: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123111   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123013.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3160: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3161: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3162: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3163: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123112   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3164: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3165: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3166: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3167: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123108 (0x310fdca4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:44 2017
            Not After : Tue Aug 23 12:30:44 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:4e:e3:70:23:72:ae:ee:45:c8:73:cd:b8:42:d9:35:
                    a7:44:9a:fc:0c:7b:7a:93:83:3e:3a:43:c3:17:c0:82:
                    80:f1:53:a1:df:35:06:0b:c6:77:df:18:44:56:91:96:
                    ce:bd:89:42:39:24:4c:49:f5:59:7e:24:bc:13:4b:98:
                    68:24:15:4c:e4:ca:d1:74:59:86:47:c8:27:f4:e7:3c:
                    f8:44:93:27:86:25:19:6b:42:b2:2b:c0:5e:7e:56:8f:
                    fa:9d:18:8a:3d:d1:49:6d:5e:b0:86:d8:e4:3f:4f:08:
                    1e:f4:f9:13:fd:a8:cd:14:79:23:40:b1:d8:85:00:4a:
                    2f:20:e2:4c:11:e1:52:4e:20:a5:71:10:64:56:1a:8e:
                    c3:bd:5b:fa:19:c8:d7:d7:d3:5b:c9:fc:2d:c0:c5:e5:
                    fb:61:98:f4:89:64:f2:b5:57:cc:d0:c0:9a:35:51:64:
                    f8:44:95:25:0d:29:dd:c1:41:ea:c4:a2:42:72:9a:84:
                    38:05:d1:41:7e:f1:96:ec:23:69:78:ca:e9:22:5e:bf:
                    b4:3b:df:85:ca:a3:34:88:57:a4:5d:1e:b5:5f:c0:b3:
                    81:09:2d:47:3f:cc:a5:c5:29:a4:b0:53:97:20:b0:63:
                    09:0d:af:15:78:8e:72:43:fc:b5:6f:a7:67:96:29:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:1d:47:bc:d7:56:57:3e:38:cc:3c:b3:fb:7e:48:df:
        3e:55:c6:f4:d5:89:5a:8c:a3:15:35:9c:cd:cc:54:c4:
        82:6c:95:19:fa:18:6f:92:1d:49:3a:82:74:62:1f:3e:
        b6:45:36:5c:a9:0f:15:d9:6a:e3:ef:ee:40:11:3e:bf:
        81:ef:ef:2d:c3:e1:0e:a6:2d:0e:3a:8f:fd:14:b7:59:
        47:7d:3e:5a:4d:8f:d9:1a:26:bc:b2:b9:08:a0:02:74:
        01:02:0d:7b:82:93:a8:4e:6b:26:6b:c3:cd:ff:b8:b4:
        f7:60:c0:26:b6:70:2b:d4:c0:33:ab:68:5c:2d:6b:bf:
        21:c7:19:9a:59:2a:9d:74:c6:c1:8a:8e:1c:7e:ec:48:
        b8:79:4f:6e:36:4b:66:8d:ed:dd:e6:7a:74:89:33:53:
        5a:1a:b3:b3:8e:9e:32:5e:4c:10:07:dd:32:b4:93:50:
        5b:af:98:38:8f:e7:98:5b:56:d9:04:f1:73:37:5c:f4:
        ab:2e:64:62:25:96:4f:10:e4:11:42:69:74:e8:1d:d2:
        43:ea:52:5d:23:5e:c8:e7:2f:ef:57:ea:07:c8:d4:ae:
        e7:d8:db:88:54:5c:dc:10:1c:6c:63:3c:bc:cb:96:80:
        65:51:e1:27:1e:e3:ad:82:0e:e9:7e:5b:97:11:69:c5
    Fingerprint (SHA-256):
        29:29:FD:82:1C:AC:AB:EA:92:97:E8:B5:B2:F5:47:9F:A7:69:32:77:F2:55:D3:4A:B9:AD:1E:CC:BD:57:56:A7
    Fingerprint (SHA1):
        4C:98:55:83:08:92:62:33:70:94:6F:8C:90:AB:86:52:F4:D9:C0:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3168: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123108 (0x310fdca4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:44 2017
            Not After : Tue Aug 23 12:30:44 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:4e:e3:70:23:72:ae:ee:45:c8:73:cd:b8:42:d9:35:
                    a7:44:9a:fc:0c:7b:7a:93:83:3e:3a:43:c3:17:c0:82:
                    80:f1:53:a1:df:35:06:0b:c6:77:df:18:44:56:91:96:
                    ce:bd:89:42:39:24:4c:49:f5:59:7e:24:bc:13:4b:98:
                    68:24:15:4c:e4:ca:d1:74:59:86:47:c8:27:f4:e7:3c:
                    f8:44:93:27:86:25:19:6b:42:b2:2b:c0:5e:7e:56:8f:
                    fa:9d:18:8a:3d:d1:49:6d:5e:b0:86:d8:e4:3f:4f:08:
                    1e:f4:f9:13:fd:a8:cd:14:79:23:40:b1:d8:85:00:4a:
                    2f:20:e2:4c:11:e1:52:4e:20:a5:71:10:64:56:1a:8e:
                    c3:bd:5b:fa:19:c8:d7:d7:d3:5b:c9:fc:2d:c0:c5:e5:
                    fb:61:98:f4:89:64:f2:b5:57:cc:d0:c0:9a:35:51:64:
                    f8:44:95:25:0d:29:dd:c1:41:ea:c4:a2:42:72:9a:84:
                    38:05:d1:41:7e:f1:96:ec:23:69:78:ca:e9:22:5e:bf:
                    b4:3b:df:85:ca:a3:34:88:57:a4:5d:1e:b5:5f:c0:b3:
                    81:09:2d:47:3f:cc:a5:c5:29:a4:b0:53:97:20:b0:63:
                    09:0d:af:15:78:8e:72:43:fc:b5:6f:a7:67:96:29:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:1d:47:bc:d7:56:57:3e:38:cc:3c:b3:fb:7e:48:df:
        3e:55:c6:f4:d5:89:5a:8c:a3:15:35:9c:cd:cc:54:c4:
        82:6c:95:19:fa:18:6f:92:1d:49:3a:82:74:62:1f:3e:
        b6:45:36:5c:a9:0f:15:d9:6a:e3:ef:ee:40:11:3e:bf:
        81:ef:ef:2d:c3:e1:0e:a6:2d:0e:3a:8f:fd:14:b7:59:
        47:7d:3e:5a:4d:8f:d9:1a:26:bc:b2:b9:08:a0:02:74:
        01:02:0d:7b:82:93:a8:4e:6b:26:6b:c3:cd:ff:b8:b4:
        f7:60:c0:26:b6:70:2b:d4:c0:33:ab:68:5c:2d:6b:bf:
        21:c7:19:9a:59:2a:9d:74:c6:c1:8a:8e:1c:7e:ec:48:
        b8:79:4f:6e:36:4b:66:8d:ed:dd:e6:7a:74:89:33:53:
        5a:1a:b3:b3:8e:9e:32:5e:4c:10:07:dd:32:b4:93:50:
        5b:af:98:38:8f:e7:98:5b:56:d9:04:f1:73:37:5c:f4:
        ab:2e:64:62:25:96:4f:10:e4:11:42:69:74:e8:1d:d2:
        43:ea:52:5d:23:5e:c8:e7:2f:ef:57:ea:07:c8:d4:ae:
        e7:d8:db:88:54:5c:dc:10:1c:6c:63:3c:bc:cb:96:80:
        65:51:e1:27:1e:e3:ad:82:0e:e9:7e:5b:97:11:69:c5
    Fingerprint (SHA-256):
        29:29:FD:82:1C:AC:AB:EA:92:97:E8:B5:B2:F5:47:9F:A7:69:32:77:F2:55:D3:4A:B9:AD:1E:CC:BD:57:56:A7
    Fingerprint (SHA1):
        4C:98:55:83:08:92:62:33:70:94:6F:8C:90:AB:86:52:F4:D9:C0:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3169: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3170: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123113 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3171: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3172: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3173: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123114 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3174: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3175: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3176: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3177: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123115 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3178: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3179: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123116 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3180: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3181: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3182: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3183: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3184: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123117   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123014.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3185: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3186: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3187: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3188: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123118   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3189: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3190: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3191: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3192: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123119   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-BridgeNavy-823123015.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3193: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3194: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3195: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3196: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123120   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3197: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3198: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3199: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3200: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123114 (0x310fdcaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:45 2017
            Not After : Tue Aug 23 12:30:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:52:07:5d:24:2e:2e:ed:ed:39:53:75:31:d4:24:8c:
                    ad:c0:ec:bb:ad:2e:78:2a:f9:97:d1:e9:26:d8:6b:af:
                    b5:9a:ee:16:d4:10:3f:fc:34:e2:3f:a0:44:f1:c1:2d:
                    69:0b:36:17:b6:7b:78:85:82:c5:83:8d:ae:e5:d1:41:
                    53:4d:b4:54:b3:dd:c4:23:27:82:4b:59:fc:d2:3d:ac:
                    4d:ab:06:73:99:4e:01:d6:e6:7e:05:e5:bc:32:51:a2:
                    af:7b:32:3c:bc:7c:2e:74:91:ec:c0:2f:0c:13:72:f2:
                    ea:bb:33:52:ed:ac:72:e9:59:1a:d7:69:b7:2a:c7:90:
                    65:dd:39:25:96:84:95:dc:2a:d5:d0:08:ec:3b:9e:c3:
                    88:29:cd:df:d9:a8:1d:08:28:b4:ae:39:17:43:fe:f4:
                    50:f3:7c:14:98:6e:ec:dc:3f:3b:6a:28:f2:bd:99:a8:
                    9f:b7:4a:e8:bc:39:40:d9:e9:4e:51:d7:6f:b1:76:e8:
                    ae:bd:74:28:f1:1b:d4:a1:42:29:19:50:c7:e4:21:e5:
                    2b:7a:86:bd:7d:c3:a5:f0:45:66:1a:22:b4:bf:ec:30:
                    8d:c9:29:84:a4:ac:c7:5b:67:45:7e:3b:7e:fa:7a:d2:
                    6b:f7:76:8b:35:c0:b0:74:7c:66:14:23:90:4f:04:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:56:e0:ad:0e:99:a5:cc:47:8e:a9:c4:57:29:26:f3:
        ef:4b:4e:f5:43:9d:7c:4e:d3:8a:00:c9:d7:c4:d0:cf:
        75:5d:57:f6:cb:ae:38:0f:f8:79:d6:d9:a8:57:bc:c7:
        cc:c5:5e:dc:5d:e0:07:2d:75:f3:eb:20:b6:db:bc:3d:
        c0:b1:b0:ed:5f:b3:9d:64:0d:6d:3a:5b:fb:96:40:29:
        bf:b3:aa:67:cb:5d:54:6f:85:64:65:f6:e5:71:30:ad:
        9f:07:17:c7:cb:71:79:84:66:9f:b4:8b:bc:5b:e5:74:
        7d:e0:59:71:ed:88:16:f5:76:a1:ba:2d:e6:20:03:c6:
        e3:b5:c5:9b:33:74:80:90:50:56:8f:5d:03:a8:9d:9c:
        3c:c3:55:d8:c4:cc:74:4d:fa:5c:41:b1:21:8f:e9:9d:
        80:01:71:66:6e:a6:ce:c9:24:60:17:90:9f:ff:74:15:
        3a:8b:08:35:8d:10:1f:da:43:33:eb:26:98:f6:81:10:
        59:65:4e:51:3d:bb:08:5d:0e:2e:0a:85:f3:2d:41:d9:
        67:62:81:f4:08:bf:ef:21:1e:36:89:1b:33:b3:54:2d:
        a9:27:5b:b4:61:41:f9:75:00:23:40:1b:83:a5:e4:e1:
        12:61:33:51:4f:e3:f3:3b:c6:ca:a5:fc:b6:54:1d:87
    Fingerprint (SHA-256):
        59:48:FC:2D:2C:D0:06:C7:92:0C:75:45:62:04:91:B2:CC:97:FF:9B:19:09:9E:25:60:C2:F2:24:60:B2:DD:A6
    Fingerprint (SHA1):
        C1:75:5C:32:F2:0A:2C:51:12:76:FE:5F:FA:40:06:CB:E1:97:9E:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3201: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123114 (0x310fdcaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:45 2017
            Not After : Tue Aug 23 12:30:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:52:07:5d:24:2e:2e:ed:ed:39:53:75:31:d4:24:8c:
                    ad:c0:ec:bb:ad:2e:78:2a:f9:97:d1:e9:26:d8:6b:af:
                    b5:9a:ee:16:d4:10:3f:fc:34:e2:3f:a0:44:f1:c1:2d:
                    69:0b:36:17:b6:7b:78:85:82:c5:83:8d:ae:e5:d1:41:
                    53:4d:b4:54:b3:dd:c4:23:27:82:4b:59:fc:d2:3d:ac:
                    4d:ab:06:73:99:4e:01:d6:e6:7e:05:e5:bc:32:51:a2:
                    af:7b:32:3c:bc:7c:2e:74:91:ec:c0:2f:0c:13:72:f2:
                    ea:bb:33:52:ed:ac:72:e9:59:1a:d7:69:b7:2a:c7:90:
                    65:dd:39:25:96:84:95:dc:2a:d5:d0:08:ec:3b:9e:c3:
                    88:29:cd:df:d9:a8:1d:08:28:b4:ae:39:17:43:fe:f4:
                    50:f3:7c:14:98:6e:ec:dc:3f:3b:6a:28:f2:bd:99:a8:
                    9f:b7:4a:e8:bc:39:40:d9:e9:4e:51:d7:6f:b1:76:e8:
                    ae:bd:74:28:f1:1b:d4:a1:42:29:19:50:c7:e4:21:e5:
                    2b:7a:86:bd:7d:c3:a5:f0:45:66:1a:22:b4:bf:ec:30:
                    8d:c9:29:84:a4:ac:c7:5b:67:45:7e:3b:7e:fa:7a:d2:
                    6b:f7:76:8b:35:c0:b0:74:7c:66:14:23:90:4f:04:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:56:e0:ad:0e:99:a5:cc:47:8e:a9:c4:57:29:26:f3:
        ef:4b:4e:f5:43:9d:7c:4e:d3:8a:00:c9:d7:c4:d0:cf:
        75:5d:57:f6:cb:ae:38:0f:f8:79:d6:d9:a8:57:bc:c7:
        cc:c5:5e:dc:5d:e0:07:2d:75:f3:eb:20:b6:db:bc:3d:
        c0:b1:b0:ed:5f:b3:9d:64:0d:6d:3a:5b:fb:96:40:29:
        bf:b3:aa:67:cb:5d:54:6f:85:64:65:f6:e5:71:30:ad:
        9f:07:17:c7:cb:71:79:84:66:9f:b4:8b:bc:5b:e5:74:
        7d:e0:59:71:ed:88:16:f5:76:a1:ba:2d:e6:20:03:c6:
        e3:b5:c5:9b:33:74:80:90:50:56:8f:5d:03:a8:9d:9c:
        3c:c3:55:d8:c4:cc:74:4d:fa:5c:41:b1:21:8f:e9:9d:
        80:01:71:66:6e:a6:ce:c9:24:60:17:90:9f:ff:74:15:
        3a:8b:08:35:8d:10:1f:da:43:33:eb:26:98:f6:81:10:
        59:65:4e:51:3d:bb:08:5d:0e:2e:0a:85:f3:2d:41:d9:
        67:62:81:f4:08:bf:ef:21:1e:36:89:1b:33:b3:54:2d:
        a9:27:5b:b4:61:41:f9:75:00:23:40:1b:83:a5:e4:e1:
        12:61:33:51:4f:e3:f3:3b:c6:ca:a5:fc:b6:54:1d:87
    Fingerprint (SHA-256):
        59:48:FC:2D:2C:D0:06:C7:92:0C:75:45:62:04:91:B2:CC:97:FF:9B:19:09:9E:25:60:C2:F2:24:60:B2:DD:A6
    Fingerprint (SHA1):
        C1:75:5C:32:F2:0A:2C:51:12:76:FE:5F:FA:40:06:CB:E1:97:9E:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3202: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3203: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123113 (0x310fdca9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:45 2017
            Not After : Tue Aug 23 12:30:45 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:07:5f:68:3f:73:a8:21:54:02:42:eb:77:a6:a8:5b:
                    c3:55:51:d9:a9:2a:b3:4e:39:00:79:53:14:89:6c:64:
                    89:17:3d:ee:06:4d:85:6a:d7:7b:e1:99:89:53:1c:1f:
                    4a:ad:15:89:b8:f8:10:e4:29:ac:fe:fc:7d:a5:e5:9d:
                    ba:b3:01:27:e6:ac:97:3e:7b:59:b7:aa:62:05:ab:79:
                    8d:35:ea:0b:8d:30:ed:df:72:cd:59:e8:29:95:79:ba:
                    e6:58:7d:ea:86:ab:12:90:3b:79:f3:69:ca:da:ff:35:
                    6a:83:64:76:fa:b7:b6:87:34:59:f1:00:07:69:01:0c:
                    23:64:65:f8:8a:2b:2b:9f:e0:e9:b1:d8:77:86:01:1c:
                    db:10:46:f3:ee:f6:73:29:12:98:4c:b3:86:3e:26:b3:
                    96:f9:7d:31:50:ed:5b:1d:47:dd:12:96:f8:a8:1f:ad:
                    9d:fa:09:26:d4:84:80:e6:02:90:5c:fe:a4:7b:e2:4c:
                    dd:b4:fe:7a:96:7b:52:45:f9:20:de:fb:54:ae:86:a3:
                    ed:a2:e8:d8:c6:e7:47:97:9e:43:36:75:fd:c5:1e:c7:
                    d3:bf:42:00:83:63:e6:16:98:69:75:47:b6:43:e4:60:
                    51:35:f8:02:20:8d:41:17:9b:67:61:9b:68:cc:ca:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:fc:c5:71:30:2b:c2:f6:bd:cc:c1:7f:5a:04:22:30:
        c4:3a:64:29:3f:5f:39:54:0b:c9:4d:10:c0:6d:c7:38:
        24:c9:97:3c:9f:3e:61:0e:3e:65:df:a1:5b:53:47:9a:
        94:0d:08:5d:92:f3:c3:44:d4:b4:17:65:66:ca:93:13:
        b5:b7:e0:0d:c2:fa:f3:96:24:74:aa:d6:2c:58:2e:eb:
        c4:f4:73:d0:6c:03:2b:af:6f:af:17:59:d0:43:cc:3b:
        f3:1f:a8:fb:ce:27:26:de:34:67:6a:76:de:9a:21:51:
        64:f6:8d:a8:30:ed:47:b2:bd:78:10:7d:c1:51:f8:d4:
        43:56:1c:85:6e:75:31:c6:35:d8:9d:78:0f:09:9d:83:
        df:9a:2a:d5:91:c9:4d:04:2e:19:87:9e:ad:3c:2b:ee:
        8f:18:7f:33:d6:e9:a9:9d:1b:9a:40:f7:df:77:5e:8c:
        8c:26:f9:f6:64:38:a2:94:ea:8f:a6:4e:5c:37:9c:bd:
        1b:ea:d5:8c:2f:c1:4a:81:af:f3:e5:05:aa:c2:9d:af:
        3e:36:cb:e1:eb:c2:0e:98:e9:b1:a6:96:99:42:95:30:
        6e:8a:4f:cd:1e:0e:35:25:22:71:d7:a5:1f:46:cd:5d:
        54:79:51:25:a7:40:b8:f9:83:8e:7f:5e:8f:40:e7:6b
    Fingerprint (SHA-256):
        A6:A4:31:4D:ED:39:EB:73:08:0A:2D:5D:85:4C:FB:8B:A0:95:C6:A1:51:FC:24:5A:4E:C6:8E:D8:90:90:58:4F
    Fingerprint (SHA1):
        76:37:C8:E9:85:33:7F:D2:04:ED:54:E3:A3:6D:BD:D2:82:E5:4D:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3204: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123114 (0x310fdcaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:45 2017
            Not After : Tue Aug 23 12:30:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:52:07:5d:24:2e:2e:ed:ed:39:53:75:31:d4:24:8c:
                    ad:c0:ec:bb:ad:2e:78:2a:f9:97:d1:e9:26:d8:6b:af:
                    b5:9a:ee:16:d4:10:3f:fc:34:e2:3f:a0:44:f1:c1:2d:
                    69:0b:36:17:b6:7b:78:85:82:c5:83:8d:ae:e5:d1:41:
                    53:4d:b4:54:b3:dd:c4:23:27:82:4b:59:fc:d2:3d:ac:
                    4d:ab:06:73:99:4e:01:d6:e6:7e:05:e5:bc:32:51:a2:
                    af:7b:32:3c:bc:7c:2e:74:91:ec:c0:2f:0c:13:72:f2:
                    ea:bb:33:52:ed:ac:72:e9:59:1a:d7:69:b7:2a:c7:90:
                    65:dd:39:25:96:84:95:dc:2a:d5:d0:08:ec:3b:9e:c3:
                    88:29:cd:df:d9:a8:1d:08:28:b4:ae:39:17:43:fe:f4:
                    50:f3:7c:14:98:6e:ec:dc:3f:3b:6a:28:f2:bd:99:a8:
                    9f:b7:4a:e8:bc:39:40:d9:e9:4e:51:d7:6f:b1:76:e8:
                    ae:bd:74:28:f1:1b:d4:a1:42:29:19:50:c7:e4:21:e5:
                    2b:7a:86:bd:7d:c3:a5:f0:45:66:1a:22:b4:bf:ec:30:
                    8d:c9:29:84:a4:ac:c7:5b:67:45:7e:3b:7e:fa:7a:d2:
                    6b:f7:76:8b:35:c0:b0:74:7c:66:14:23:90:4f:04:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:56:e0:ad:0e:99:a5:cc:47:8e:a9:c4:57:29:26:f3:
        ef:4b:4e:f5:43:9d:7c:4e:d3:8a:00:c9:d7:c4:d0:cf:
        75:5d:57:f6:cb:ae:38:0f:f8:79:d6:d9:a8:57:bc:c7:
        cc:c5:5e:dc:5d:e0:07:2d:75:f3:eb:20:b6:db:bc:3d:
        c0:b1:b0:ed:5f:b3:9d:64:0d:6d:3a:5b:fb:96:40:29:
        bf:b3:aa:67:cb:5d:54:6f:85:64:65:f6:e5:71:30:ad:
        9f:07:17:c7:cb:71:79:84:66:9f:b4:8b:bc:5b:e5:74:
        7d:e0:59:71:ed:88:16:f5:76:a1:ba:2d:e6:20:03:c6:
        e3:b5:c5:9b:33:74:80:90:50:56:8f:5d:03:a8:9d:9c:
        3c:c3:55:d8:c4:cc:74:4d:fa:5c:41:b1:21:8f:e9:9d:
        80:01:71:66:6e:a6:ce:c9:24:60:17:90:9f:ff:74:15:
        3a:8b:08:35:8d:10:1f:da:43:33:eb:26:98:f6:81:10:
        59:65:4e:51:3d:bb:08:5d:0e:2e:0a:85:f3:2d:41:d9:
        67:62:81:f4:08:bf:ef:21:1e:36:89:1b:33:b3:54:2d:
        a9:27:5b:b4:61:41:f9:75:00:23:40:1b:83:a5:e4:e1:
        12:61:33:51:4f:e3:f3:3b:c6:ca:a5:fc:b6:54:1d:87
    Fingerprint (SHA-256):
        59:48:FC:2D:2C:D0:06:C7:92:0C:75:45:62:04:91:B2:CC:97:FF:9B:19:09:9E:25:60:C2:F2:24:60:B2:DD:A6
    Fingerprint (SHA1):
        C1:75:5C:32:F2:0A:2C:51:12:76:FE:5F:FA:40:06:CB:E1:97:9E:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3205: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123114 (0x310fdcaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:45 2017
            Not After : Tue Aug 23 12:30:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:52:07:5d:24:2e:2e:ed:ed:39:53:75:31:d4:24:8c:
                    ad:c0:ec:bb:ad:2e:78:2a:f9:97:d1:e9:26:d8:6b:af:
                    b5:9a:ee:16:d4:10:3f:fc:34:e2:3f:a0:44:f1:c1:2d:
                    69:0b:36:17:b6:7b:78:85:82:c5:83:8d:ae:e5:d1:41:
                    53:4d:b4:54:b3:dd:c4:23:27:82:4b:59:fc:d2:3d:ac:
                    4d:ab:06:73:99:4e:01:d6:e6:7e:05:e5:bc:32:51:a2:
                    af:7b:32:3c:bc:7c:2e:74:91:ec:c0:2f:0c:13:72:f2:
                    ea:bb:33:52:ed:ac:72:e9:59:1a:d7:69:b7:2a:c7:90:
                    65:dd:39:25:96:84:95:dc:2a:d5:d0:08:ec:3b:9e:c3:
                    88:29:cd:df:d9:a8:1d:08:28:b4:ae:39:17:43:fe:f4:
                    50:f3:7c:14:98:6e:ec:dc:3f:3b:6a:28:f2:bd:99:a8:
                    9f:b7:4a:e8:bc:39:40:d9:e9:4e:51:d7:6f:b1:76:e8:
                    ae:bd:74:28:f1:1b:d4:a1:42:29:19:50:c7:e4:21:e5:
                    2b:7a:86:bd:7d:c3:a5:f0:45:66:1a:22:b4:bf:ec:30:
                    8d:c9:29:84:a4:ac:c7:5b:67:45:7e:3b:7e:fa:7a:d2:
                    6b:f7:76:8b:35:c0:b0:74:7c:66:14:23:90:4f:04:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:56:e0:ad:0e:99:a5:cc:47:8e:a9:c4:57:29:26:f3:
        ef:4b:4e:f5:43:9d:7c:4e:d3:8a:00:c9:d7:c4:d0:cf:
        75:5d:57:f6:cb:ae:38:0f:f8:79:d6:d9:a8:57:bc:c7:
        cc:c5:5e:dc:5d:e0:07:2d:75:f3:eb:20:b6:db:bc:3d:
        c0:b1:b0:ed:5f:b3:9d:64:0d:6d:3a:5b:fb:96:40:29:
        bf:b3:aa:67:cb:5d:54:6f:85:64:65:f6:e5:71:30:ad:
        9f:07:17:c7:cb:71:79:84:66:9f:b4:8b:bc:5b:e5:74:
        7d:e0:59:71:ed:88:16:f5:76:a1:ba:2d:e6:20:03:c6:
        e3:b5:c5:9b:33:74:80:90:50:56:8f:5d:03:a8:9d:9c:
        3c:c3:55:d8:c4:cc:74:4d:fa:5c:41:b1:21:8f:e9:9d:
        80:01:71:66:6e:a6:ce:c9:24:60:17:90:9f:ff:74:15:
        3a:8b:08:35:8d:10:1f:da:43:33:eb:26:98:f6:81:10:
        59:65:4e:51:3d:bb:08:5d:0e:2e:0a:85:f3:2d:41:d9:
        67:62:81:f4:08:bf:ef:21:1e:36:89:1b:33:b3:54:2d:
        a9:27:5b:b4:61:41:f9:75:00:23:40:1b:83:a5:e4:e1:
        12:61:33:51:4f:e3:f3:3b:c6:ca:a5:fc:b6:54:1d:87
    Fingerprint (SHA-256):
        59:48:FC:2D:2C:D0:06:C7:92:0C:75:45:62:04:91:B2:CC:97:FF:9B:19:09:9E:25:60:C2:F2:24:60:B2:DD:A6
    Fingerprint (SHA1):
        C1:75:5C:32:F2:0A:2C:51:12:76:FE:5F:FA:40:06:CB:E1:97:9E:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3206: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3207: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123121 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3208: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3209: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3210: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123122 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3211: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3212: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3213: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3214: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 823123123   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3215: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3216: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3217: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3218: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 823123124   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3219: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3220: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3221: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3222: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 823123125 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3223: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3224: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 823123126 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3225: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3226: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3227: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3228: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3229: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123127   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3230: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3231: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3232: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3233: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123128   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3234: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3235: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3236: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3237: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123129   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3238: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3239: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3240: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3241: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123130   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3242: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3243: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3244: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123121 (0x310fdcb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:47 2017
            Not After : Tue Aug 23 12:30:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:95:ca:ff:e1:19:8a:4f:33:71:5c:6d:e3:1a:eb:42:
                    8d:73:c1:b1:e6:e2:ba:8b:48:ee:5e:d8:6b:0a:b1:7e:
                    6a:e4:6c:2e:79:15:6f:c0:44:7b:14:89:66:bc:7d:86:
                    c0:ab:93:83:3b:40:c0:eb:e2:ea:d9:86:98:9f:8d:34:
                    25:10:c7:e0:ff:81:8d:51:a4:21:7b:90:f3:5c:de:ea:
                    fc:77:33:31:64:39:b5:bf:87:e6:cf:b2:94:00:47:0d:
                    74:d7:bd:15:d7:8b:c1:52:40:e4:ad:d3:26:ba:ae:be:
                    3e:68:18:d3:95:e6:fa:d7:18:94:3c:fa:8f:b7:44:b5:
                    1b:c5:1b:9d:fd:f3:f6:16:7f:63:2f:30:73:9a:0d:26:
                    f1:a9:64:c3:b8:24:49:a5:8e:28:1c:c2:d2:20:1d:3a:
                    1e:09:b7:ab:e9:07:bc:65:07:b7:01:18:1a:b1:2f:65:
                    5f:16:42:ff:15:83:b0:27:d7:88:a0:a9:0a:17:9f:76:
                    b6:84:db:81:ec:f9:23:5b:f0:2d:96:55:68:4b:31:9d:
                    54:6f:03:01:b2:32:a7:a4:1b:c4:7c:52:d5:95:ec:f4:
                    f7:4b:fa:51:52:ce:07:4c:85:b5:f0:8c:69:7d:fa:a5:
                    74:69:cc:55:ac:3f:39:0d:cb:84:1a:97:5d:a7:de:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:05:34:a1:b2:53:c6:22:48:bb:2e:e6:b2:24:c3:a9:
        6c:61:3b:8b:f8:d1:92:22:63:f3:8a:96:1e:93:4a:b9:
        f8:7b:a6:48:1d:f3:9e:cd:2a:24:b2:48:01:98:c3:e1:
        df:31:9a:54:5f:27:27:b0:34:aa:0b:d2:83:3d:14:cb:
        78:be:0c:f6:ba:b2:ef:31:22:5b:28:fc:f6:e3:51:2a:
        25:7f:36:78:c4:40:69:7d:46:0d:a4:b0:34:4c:4b:47:
        51:97:85:34:03:60:10:4c:c9:3d:b8:0f:10:49:e3:d3:
        1b:d4:a4:d0:2a:ce:4e:aa:46:73:d1:7a:26:ac:29:8e:
        ec:57:5e:da:50:6f:46:23:00:0f:9b:a6:24:43:90:12:
        c1:3a:25:8c:16:fa:12:e8:8c:29:64:c0:1d:c1:1b:2b:
        e8:51:6b:6a:4d:23:b5:39:a0:2c:4b:ef:37:14:14:65:
        30:5d:0e:74:8f:69:da:46:5e:94:d4:e7:dc:f5:ef:5e:
        32:4a:34:07:12:d9:10:95:a9:8c:fc:bc:68:5b:cb:6f:
        b9:28:e6:9c:58:57:42:e8:1c:b6:a1:f2:fc:b8:36:5a:
        fa:9c:fa:06:87:ac:39:85:fb:e4:7d:84:25:db:fa:43:
        d6:19:19:b7:20:e5:d1:c7:28:11:e9:3d:53:8e:39:dc
    Fingerprint (SHA-256):
        5B:77:CF:6E:CC:0A:2B:F5:31:B2:F7:95:65:2A:2B:82:7F:87:A0:FC:4D:BE:E7:49:15:C5:91:AA:21:B2:DA:50
    Fingerprint (SHA1):
        8F:C1:A3:CE:31:7D:24:FD:F4:A1:B5:8F:31:A6:8F:9E:DC:DB:A4:58
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3245: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3246: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3247: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3248: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3249: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3250: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3251: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3252: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3253: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123122 (0x310fdcb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:47 2017
            Not After : Tue Aug 23 12:30:47 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:bb:69:ab:ed:46:fb:f2:4c:46:59:3a:56:cb:f0:b2:
                    63:fc:16:e7:6d:60:fe:c1:07:97:04:72:b2:3b:03:ea:
                    cf:49:de:4b:4a:72:6e:7a:28:e2:52:a6:a3:f3:d9:91:
                    d4:70:cd:b3:c2:f9:9a:ca:2d:de:c4:5d:d6:ed:c0:1b:
                    6d:de:95:74:53:50:df:fd:66:d0:fb:2e:d7:51:2b:4e:
                    be:1a:ae:e5:ef:92:4c:fc:13:d8:96:3b:b7:99:23:55:
                    49:81:f2:66:ae:7d:2b:db:e6:ad:ea:18:96:8d:67:27:
                    ab:ad:d6:b0:d8:70:3b:5d:c1:9a:cf:4c:79:aa:82:59:
                    a3:a4:83:52:82:b0:75:14:20:26:23:75:b0:f0:14:c9:
                    c2:7f:ff:16:ba:52:3f:cd:75:70:24:3f:64:4a:4f:58:
                    77:88:70:85:0c:09:ee:04:5e:44:41:a8:1e:08:1d:3a:
                    35:94:e2:9a:e0:0b:aa:e9:1f:c4:80:74:31:ed:22:eb:
                    d0:e9:b7:15:8b:4a:b4:e4:b8:b8:1c:f1:73:da:8b:f0:
                    a9:59:b6:74:65:ea:05:f7:54:e0:3c:ed:ed:8b:a7:f3:
                    04:65:89:ef:1a:95:b7:ab:ce:b2:5c:bb:16:b6:0f:d6:
                    a6:b0:9a:60:8a:61:e9:f8:05:67:5d:57:db:40:38:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:30:39:d3:68:9d:35:2b:6f:d6:82:d2:c5:e9:17:99:
        23:37:40:b3:b4:08:be:df:11:91:cf:dc:e7:b3:b9:53:
        40:12:37:c0:38:47:ed:d5:17:5d:75:a8:56:a8:7f:19:
        ab:4b:1c:bc:62:b3:fa:9c:6f:b2:43:1c:09:6c:16:07:
        ce:8b:4a:ca:fa:1c:1f:1e:10:b3:96:21:3a:a4:fe:ac:
        12:46:df:ee:b9:31:1f:11:db:74:32:f8:07:b9:d0:50:
        4c:96:18:77:d9:a0:d9:07:90:6e:1e:42:b6:c0:30:fa:
        b6:07:d5:73:3a:9d:b6:37:f0:70:0f:84:af:fb:04:11:
        9f:b6:05:73:1c:1c:38:00:c9:25:15:c6:c7:00:c5:7c:
        3d:18:42:ce:be:b2:69:c2:7c:c2:42:cf:6a:57:f3:b0:
        1e:8b:6e:51:10:09:8f:3d:8d:a1:50:ea:d4:a1:59:f8:
        74:90:36:53:88:5a:3e:e5:b3:cf:b2:6f:66:55:14:d4:
        cb:64:59:bb:4e:26:5d:f6:56:eb:58:f5:b2:68:16:75:
        fa:d7:1c:3a:75:34:d2:48:c5:8d:69:16:8f:33:02:09:
        b3:3a:cb:48:0a:4b:73:a3:76:11:74:48:81:65:7a:21:
        50:cc:31:ad:9c:fc:4a:81:4b:ba:45:76:06:1d:a1:3d
    Fingerprint (SHA-256):
        C6:E9:D3:E1:4E:79:FE:33:8F:D3:59:1D:31:9A:D8:5D:68:D6:C5:CC:E2:CE:24:6B:03:F8:2F:18:9A:8A:FF:F9
    Fingerprint (SHA1):
        4A:28:FD:BF:52:66:DB:21:A7:6E:F0:76:14:6C:09:0A:C4:9D:95:42
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3254: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3255: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3256: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3257: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3258: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3259: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3260: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3261: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3262: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3263: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3264: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3265: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3266: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3267: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3268: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3269: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3270: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3271: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3272: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123131 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3273: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3274: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3275: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3276: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123132   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3277: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3278: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3279: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3280: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123133   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3281: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3282: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3283: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3284: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 823123134   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3285: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3286: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3287: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3288: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123135   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3289: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3290: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3291: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3292: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 823123136   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3293: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3294: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3295: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3296: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 823123137   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3297: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3298: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3299: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3300: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 823123138   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3301: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3302: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3303: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3304: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 823123139   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3305: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3306: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3307: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123131 (0x310fdcbb)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:50 2017
            Not After : Tue Aug 23 12:30:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    19:15:00:70:39:b0:94:cc:d6:65:6b:69:3d:43:af:e3:
                    e8:22:00:f5:c6:63:0b:f9:ae:e5:a6:2a:0a:4d:4b:f9:
                    30:64:c6:2b:ac:09:55:8d:1d:f1:8d:35:8d:03:eb:48:
                    55:53:bd:d2:c9:64:ed:3c:0f:78:ac:16:a1:8f:69:c5:
                    92:61:4f:ef:04:2c:f1:14:27:7e:6b:c0:f5:0c:ef:1d:
                    72:fe:f1:2c:ef:d4:04:19:4a:a9:94:ac:ce:0e:62:81:
                    dc:2e:b8:1c:00:df:36:33:e0:9f:5c:ca:d0:ff:44:1b:
                    7a:8f:b9:7a:6b:ba:03:15:6a:db:8a:e4:59:f0:ec:30:
                    8f:08:b7:b4:e2:2f:42:87:64:9b:24:e7:59:a5:a0:b7:
                    7c:42:cd:37:10:ea:24:f3:97:e9:ff:5e:58:d5:d1:b1:
                    5b:54:96:3e:e4:fa:44:33:63:1d:c4:54:ad:1e:65:78:
                    90:ee:f0:ff:9e:84:bc:52:2b:61:ca:ee:9c:b7:07:31:
                    d6:5f:8d:b1:7d:4c:9d:57:3c:b8:75:30:1b:cb:54:d7:
                    3a:c3:46:20:fb:b4:e8:09:c2:22:33:71:61:2b:41:e5:
                    9f:53:db:87:25:d3:33:b3:df:47:7b:04:cf:bc:28:f2:
                    e5:18:e4:08:cc:32:0c:64:f6:45:3d:33:6b:a2:5e:50
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:bd:b0:56:e0:0a:1e:a8:42:c6:4d:de:
        92:16:48:25:ec:24:a8:36:94:e4:6c:cb:22:65:54:e2:
        ec:02:1c:48:38:1c:0d:ff:56:f7:9a:91:96:ab:e7:3f:
        25:e2:c0:f5:a9:b0:89:d5:6f:19:d0:06:6d:14:6f
    Fingerprint (SHA-256):
        F4:2D:88:D1:FE:AA:53:82:28:7C:44:B2:4A:FD:0C:50:E4:A3:30:27:C4:E4:71:EC:49:53:E3:2C:CE:C7:46:2B
    Fingerprint (SHA1):
        03:76:A8:43:A1:6F:56:A3:B0:19:9F:54:26:D6:89:B5:30:09:75:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3308: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123131 (0x310fdcbb)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:50 2017
            Not After : Tue Aug 23 12:30:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    19:15:00:70:39:b0:94:cc:d6:65:6b:69:3d:43:af:e3:
                    e8:22:00:f5:c6:63:0b:f9:ae:e5:a6:2a:0a:4d:4b:f9:
                    30:64:c6:2b:ac:09:55:8d:1d:f1:8d:35:8d:03:eb:48:
                    55:53:bd:d2:c9:64:ed:3c:0f:78:ac:16:a1:8f:69:c5:
                    92:61:4f:ef:04:2c:f1:14:27:7e:6b:c0:f5:0c:ef:1d:
                    72:fe:f1:2c:ef:d4:04:19:4a:a9:94:ac:ce:0e:62:81:
                    dc:2e:b8:1c:00:df:36:33:e0:9f:5c:ca:d0:ff:44:1b:
                    7a:8f:b9:7a:6b:ba:03:15:6a:db:8a:e4:59:f0:ec:30:
                    8f:08:b7:b4:e2:2f:42:87:64:9b:24:e7:59:a5:a0:b7:
                    7c:42:cd:37:10:ea:24:f3:97:e9:ff:5e:58:d5:d1:b1:
                    5b:54:96:3e:e4:fa:44:33:63:1d:c4:54:ad:1e:65:78:
                    90:ee:f0:ff:9e:84:bc:52:2b:61:ca:ee:9c:b7:07:31:
                    d6:5f:8d:b1:7d:4c:9d:57:3c:b8:75:30:1b:cb:54:d7:
                    3a:c3:46:20:fb:b4:e8:09:c2:22:33:71:61:2b:41:e5:
                    9f:53:db:87:25:d3:33:b3:df:47:7b:04:cf:bc:28:f2:
                    e5:18:e4:08:cc:32:0c:64:f6:45:3d:33:6b:a2:5e:50
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:bd:b0:56:e0:0a:1e:a8:42:c6:4d:de:
        92:16:48:25:ec:24:a8:36:94:e4:6c:cb:22:65:54:e2:
        ec:02:1c:48:38:1c:0d:ff:56:f7:9a:91:96:ab:e7:3f:
        25:e2:c0:f5:a9:b0:89:d5:6f:19:d0:06:6d:14:6f
    Fingerprint (SHA-256):
        F4:2D:88:D1:FE:AA:53:82:28:7C:44:B2:4A:FD:0C:50:E4:A3:30:27:C4:E4:71:EC:49:53:E3:2C:CE:C7:46:2B
    Fingerprint (SHA1):
        03:76:A8:43:A1:6F:56:A3:B0:19:9F:54:26:D6:89:B5:30:09:75:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3309: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123131 (0x310fdcbb)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:50 2017
            Not After : Tue Aug 23 12:30:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    19:15:00:70:39:b0:94:cc:d6:65:6b:69:3d:43:af:e3:
                    e8:22:00:f5:c6:63:0b:f9:ae:e5:a6:2a:0a:4d:4b:f9:
                    30:64:c6:2b:ac:09:55:8d:1d:f1:8d:35:8d:03:eb:48:
                    55:53:bd:d2:c9:64:ed:3c:0f:78:ac:16:a1:8f:69:c5:
                    92:61:4f:ef:04:2c:f1:14:27:7e:6b:c0:f5:0c:ef:1d:
                    72:fe:f1:2c:ef:d4:04:19:4a:a9:94:ac:ce:0e:62:81:
                    dc:2e:b8:1c:00:df:36:33:e0:9f:5c:ca:d0:ff:44:1b:
                    7a:8f:b9:7a:6b:ba:03:15:6a:db:8a:e4:59:f0:ec:30:
                    8f:08:b7:b4:e2:2f:42:87:64:9b:24:e7:59:a5:a0:b7:
                    7c:42:cd:37:10:ea:24:f3:97:e9:ff:5e:58:d5:d1:b1:
                    5b:54:96:3e:e4:fa:44:33:63:1d:c4:54:ad:1e:65:78:
                    90:ee:f0:ff:9e:84:bc:52:2b:61:ca:ee:9c:b7:07:31:
                    d6:5f:8d:b1:7d:4c:9d:57:3c:b8:75:30:1b:cb:54:d7:
                    3a:c3:46:20:fb:b4:e8:09:c2:22:33:71:61:2b:41:e5:
                    9f:53:db:87:25:d3:33:b3:df:47:7b:04:cf:bc:28:f2:
                    e5:18:e4:08:cc:32:0c:64:f6:45:3d:33:6b:a2:5e:50
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:bd:b0:56:e0:0a:1e:a8:42:c6:4d:de:
        92:16:48:25:ec:24:a8:36:94:e4:6c:cb:22:65:54:e2:
        ec:02:1c:48:38:1c:0d:ff:56:f7:9a:91:96:ab:e7:3f:
        25:e2:c0:f5:a9:b0:89:d5:6f:19:d0:06:6d:14:6f
    Fingerprint (SHA-256):
        F4:2D:88:D1:FE:AA:53:82:28:7C:44:B2:4A:FD:0C:50:E4:A3:30:27:C4:E4:71:EC:49:53:E3:2C:CE:C7:46:2B
    Fingerprint (SHA1):
        03:76:A8:43:A1:6F:56:A3:B0:19:9F:54:26:D6:89:B5:30:09:75:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3310: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123131 (0x310fdcbb)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:50 2017
            Not After : Tue Aug 23 12:30:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    19:15:00:70:39:b0:94:cc:d6:65:6b:69:3d:43:af:e3:
                    e8:22:00:f5:c6:63:0b:f9:ae:e5:a6:2a:0a:4d:4b:f9:
                    30:64:c6:2b:ac:09:55:8d:1d:f1:8d:35:8d:03:eb:48:
                    55:53:bd:d2:c9:64:ed:3c:0f:78:ac:16:a1:8f:69:c5:
                    92:61:4f:ef:04:2c:f1:14:27:7e:6b:c0:f5:0c:ef:1d:
                    72:fe:f1:2c:ef:d4:04:19:4a:a9:94:ac:ce:0e:62:81:
                    dc:2e:b8:1c:00:df:36:33:e0:9f:5c:ca:d0:ff:44:1b:
                    7a:8f:b9:7a:6b:ba:03:15:6a:db:8a:e4:59:f0:ec:30:
                    8f:08:b7:b4:e2:2f:42:87:64:9b:24:e7:59:a5:a0:b7:
                    7c:42:cd:37:10:ea:24:f3:97:e9:ff:5e:58:d5:d1:b1:
                    5b:54:96:3e:e4:fa:44:33:63:1d:c4:54:ad:1e:65:78:
                    90:ee:f0:ff:9e:84:bc:52:2b:61:ca:ee:9c:b7:07:31:
                    d6:5f:8d:b1:7d:4c:9d:57:3c:b8:75:30:1b:cb:54:d7:
                    3a:c3:46:20:fb:b4:e8:09:c2:22:33:71:61:2b:41:e5:
                    9f:53:db:87:25:d3:33:b3:df:47:7b:04:cf:bc:28:f2:
                    e5:18:e4:08:cc:32:0c:64:f6:45:3d:33:6b:a2:5e:50
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:bd:b0:56:e0:0a:1e:a8:42:c6:4d:de:
        92:16:48:25:ec:24:a8:36:94:e4:6c:cb:22:65:54:e2:
        ec:02:1c:48:38:1c:0d:ff:56:f7:9a:91:96:ab:e7:3f:
        25:e2:c0:f5:a9:b0:89:d5:6f:19:d0:06:6d:14:6f
    Fingerprint (SHA-256):
        F4:2D:88:D1:FE:AA:53:82:28:7C:44:B2:4A:FD:0C:50:E4:A3:30:27:C4:E4:71:EC:49:53:E3:2C:CE:C7:46:2B
    Fingerprint (SHA1):
        03:76:A8:43:A1:6F:56:A3:B0:19:9F:54:26:D6:89:B5:30:09:75:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3311: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3312: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3313: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3314: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3315: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3316: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3317: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3318: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3319: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3320: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3321: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3322: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3323: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3324: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3325: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3326: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3327: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3328: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3329: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3330: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3331: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3332: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3333: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3334: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3335: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3336: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3337: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3338: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123053Z
nextupdate=20180823123053Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:30:53 2017
    Next Update: Thu Aug 23 12:30:53 2018
    CRL Extensions:
chains.sh: #3339: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123053Z
nextupdate=20180823123053Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:30:53 2017
    Next Update: Thu Aug 23 12:30:53 2018
    CRL Extensions:
chains.sh: #3340: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123053Z
nextupdate=20180823123053Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:30:53 2017
    Next Update: Thu Aug 23 12:30:53 2018
    CRL Extensions:
chains.sh: #3341: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123053Z
nextupdate=20180823123053Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:30:53 2017
    Next Update: Thu Aug 23 12:30:53 2018
    CRL Extensions:
chains.sh: #3342: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123054Z
addcert 14 20170823123054Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:30:54 2017
    Next Update: Thu Aug 23 12:30:53 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed Aug 23 12:30:54 2017
    CRL Extensions:
chains.sh: #3343: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123055Z
addcert 15 20170823123055Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:30:55 2017
    Next Update: Thu Aug 23 12:30:53 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed Aug 23 12:30:55 2017
    CRL Extensions:
chains.sh: #3344: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3345: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3346: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3347: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3348: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3349: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3350: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3351: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3352: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3353: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:51 2017
            Not After : Tue Aug 23 12:30:51 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:d4:d2:ff:90:4e:24:d1:4e:39:9c:69:11:a4:3d:95:
                    21:24:9b:fb:bd:89:ee:fd:79:3f:8d:aa:08:41:bc:b7:
                    50:09:68:7e:c4:c4:8b:76:2d:37:24:25:fb:6b:7c:46:
                    6e:37:8d:69:48:d3:e2:1b:50:6e:cb:12:9d:e8:30:4b:
                    69:f0:bc:36:ca:c4:b1:03:bf:26:f2:9b:fa:41:b4:d6:
                    dd:e0:95:60:59:d0:45:6c:25:10:e2:a3:50:95:69:07:
                    02:c3:e8:f5:7d:3e:cc:79:c2:e3:26:75:5c:54:a2:82:
                    4a:55:99:88:b0:f8:3d:e0:75:88:56:30:b6:11:df:48:
                    ec:04:2c:15:19:98:3a:0c:22:44:a2:87:54:49:b6:4e:
                    f5:5b:8c:5d:62:01:54:e5:48:69:a9:8d:5d:90:e8:ae:
                    fc:5a:ae:26:50:07:ae:f4:df:8d:cf:7e:c9:be:5a:61:
                    2b:49:3f:cc:e7:40:5e:91:c7:ed:5c:0e:46:d0:50:7e:
                    3f:74:54:a1:ca:ac:47:64:f2:f5:0c:0a:35:66:ed:1b:
                    71:91:4a:d3:de:93:d8:57:f4:53:6c:31:c7:5e:f3:9a:
                    f2:f2:32:29:2b:a4:82:50:a3:93:3a:55:58:c3:56:e8:
                    db:8e:ee:20:be:44:44:66:61:00:12:d1:81:3e:f1:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:da:66:aa:ad:12:7d:74:dc:ff:5c:09:1f:68:c0:b0:
        20:7c:19:7a:48:aa:69:6c:42:5d:4e:d0:64:01:dc:08:
        8c:bb:38:85:69:12:3b:f8:53:65:c0:5c:ad:32:d6:1e:
        d2:ab:11:25:a9:4c:1d:2c:08:a4:e2:9f:bb:c3:8f:52:
        0e:9b:75:cf:5b:3e:8d:ce:f5:8f:0a:72:a1:76:be:54:
        39:50:1b:1e:59:80:7a:33:16:16:06:02:a9:74:75:fd:
        ae:f8:eb:cf:36:23:f4:85:e0:ba:52:1a:bd:78:e7:87:
        1b:16:93:11:b5:f7:d2:12:a5:04:21:8c:57:27:59:5c:
        15:73:f8:9c:3d:24:90:3e:88:4c:e3:66:ca:e1:e7:93:
        fc:ae:73:56:85:9a:8b:d8:b6:3f:9c:3c:9a:2f:56:86:
        91:e0:f5:45:bc:55:b3:14:d2:7c:e8:0c:2b:4f:0e:3e:
        57:71:18:fa:4d:ec:bc:b4:d4:c7:8a:62:38:de:ad:3e:
        df:cc:fe:40:f9:fc:98:af:db:4a:b9:b8:e4:a6:72:9f:
        a9:4f:63:e0:5c:72:95:2d:6b:db:0e:64:a7:08:92:d8:
        7f:2f:7f:59:b7:6a:88:0e:74:16:18:69:28:6d:9a:1c:
        99:84:cf:30:06:92:3b:4a:fa:30:16:2c:69:da:4f:a6
    Fingerprint (SHA-256):
        2A:8A:E0:BE:95:8E:58:64:78:B2:8F:25:F1:CE:A2:68:CA:BD:BC:25:F0:6D:1A:40:E8:2A:D3:BB:A0:3A:34:BD
    Fingerprint (SHA1):
        66:CF:91:8D:12:2D:73:AE:93:D3:94:3C:36:E4:AC:EB:BC:00:25:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3354: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3355: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:51 2017
            Not After : Tue Aug 23 12:30:51 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:d4:d2:ff:90:4e:24:d1:4e:39:9c:69:11:a4:3d:95:
                    21:24:9b:fb:bd:89:ee:fd:79:3f:8d:aa:08:41:bc:b7:
                    50:09:68:7e:c4:c4:8b:76:2d:37:24:25:fb:6b:7c:46:
                    6e:37:8d:69:48:d3:e2:1b:50:6e:cb:12:9d:e8:30:4b:
                    69:f0:bc:36:ca:c4:b1:03:bf:26:f2:9b:fa:41:b4:d6:
                    dd:e0:95:60:59:d0:45:6c:25:10:e2:a3:50:95:69:07:
                    02:c3:e8:f5:7d:3e:cc:79:c2:e3:26:75:5c:54:a2:82:
                    4a:55:99:88:b0:f8:3d:e0:75:88:56:30:b6:11:df:48:
                    ec:04:2c:15:19:98:3a:0c:22:44:a2:87:54:49:b6:4e:
                    f5:5b:8c:5d:62:01:54:e5:48:69:a9:8d:5d:90:e8:ae:
                    fc:5a:ae:26:50:07:ae:f4:df:8d:cf:7e:c9:be:5a:61:
                    2b:49:3f:cc:e7:40:5e:91:c7:ed:5c:0e:46:d0:50:7e:
                    3f:74:54:a1:ca:ac:47:64:f2:f5:0c:0a:35:66:ed:1b:
                    71:91:4a:d3:de:93:d8:57:f4:53:6c:31:c7:5e:f3:9a:
                    f2:f2:32:29:2b:a4:82:50:a3:93:3a:55:58:c3:56:e8:
                    db:8e:ee:20:be:44:44:66:61:00:12:d1:81:3e:f1:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:da:66:aa:ad:12:7d:74:dc:ff:5c:09:1f:68:c0:b0:
        20:7c:19:7a:48:aa:69:6c:42:5d:4e:d0:64:01:dc:08:
        8c:bb:38:85:69:12:3b:f8:53:65:c0:5c:ad:32:d6:1e:
        d2:ab:11:25:a9:4c:1d:2c:08:a4:e2:9f:bb:c3:8f:52:
        0e:9b:75:cf:5b:3e:8d:ce:f5:8f:0a:72:a1:76:be:54:
        39:50:1b:1e:59:80:7a:33:16:16:06:02:a9:74:75:fd:
        ae:f8:eb:cf:36:23:f4:85:e0:ba:52:1a:bd:78:e7:87:
        1b:16:93:11:b5:f7:d2:12:a5:04:21:8c:57:27:59:5c:
        15:73:f8:9c:3d:24:90:3e:88:4c:e3:66:ca:e1:e7:93:
        fc:ae:73:56:85:9a:8b:d8:b6:3f:9c:3c:9a:2f:56:86:
        91:e0:f5:45:bc:55:b3:14:d2:7c:e8:0c:2b:4f:0e:3e:
        57:71:18:fa:4d:ec:bc:b4:d4:c7:8a:62:38:de:ad:3e:
        df:cc:fe:40:f9:fc:98:af:db:4a:b9:b8:e4:a6:72:9f:
        a9:4f:63:e0:5c:72:95:2d:6b:db:0e:64:a7:08:92:d8:
        7f:2f:7f:59:b7:6a:88:0e:74:16:18:69:28:6d:9a:1c:
        99:84:cf:30:06:92:3b:4a:fa:30:16:2c:69:da:4f:a6
    Fingerprint (SHA-256):
        2A:8A:E0:BE:95:8E:58:64:78:B2:8F:25:F1:CE:A2:68:CA:BD:BC:25:F0:6D:1A:40:E8:2A:D3:BB:A0:3A:34:BD
    Fingerprint (SHA1):
        66:CF:91:8D:12:2D:73:AE:93:D3:94:3C:36:E4:AC:EB:BC:00:25:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3356: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3357: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3358: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123140 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3359: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3360: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3361: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3362: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 823123141   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3363: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3364: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3365: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123031.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3366: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123016.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3367: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3368: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3369: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123031.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3370: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 823123142   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3371: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3372: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3373: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123031.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3374: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123017.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3375: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3376: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3377: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3378: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 823123143   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3379: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3380: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3381: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123031.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3382: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123018.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3383: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3384: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3385: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123031.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3386: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123019.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3387: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3388: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123057Z
nextupdate=20180823123057Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:30:57 2017
    Next Update: Thu Aug 23 12:30:57 2018
    CRL Extensions:
chains.sh: #3389: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123057Z
nextupdate=20180823123057Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:30:57 2017
    Next Update: Thu Aug 23 12:30:57 2018
    CRL Extensions:
chains.sh: #3390: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123057Z
nextupdate=20180823123057Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:30:57 2017
    Next Update: Thu Aug 23 12:30:57 2018
    CRL Extensions:
chains.sh: #3391: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123057Z
nextupdate=20180823123057Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:30:57 2017
    Next Update: Thu Aug 23 12:30:57 2018
    CRL Extensions:
chains.sh: #3392: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123058Z
addcert 20 20170823123058Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:30:58 2017
    Next Update: Thu Aug 23 12:30:57 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:30:58 2017
    CRL Extensions:
chains.sh: #3393: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123059Z
addcert 40 20170823123059Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:30:59 2017
    Next Update: Thu Aug 23 12:30:57 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:30:58 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:30:59 2017
    CRL Extensions:
chains.sh: #3394: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3395: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3396: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3397: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123140 (0x310fdcc4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:55 2017
            Not After : Tue Aug 23 12:30:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:a3:7c:d6:34:ce:7a:51:2d:81:ad:3e:ab:bf:44:ca:
                    69:63:4b:20:5b:3e:b1:83:81:40:2e:fc:18:7c:84:40:
                    7d:bf:24:bd:cf:39:e1:12:d5:a7:7c:d3:49:8c:25:65:
                    2d:4f:51:f7:6d:8a:e0:c9:6f:62:1e:ea:f9:78:bd:14:
                    bb:48:dd:af:88:34:8d:87:55:3f:ed:a3:cc:f3:3c:54:
                    44:6b:05:36:76:de:d9:34:fa:6e:3e:c7:51:7b:9a:a0:
                    8a:70:81:0f:23:3c:3a:3c:39:0d:c7:91:d1:8c:2d:be:
                    01:f2:f7:3e:19:a9:16:78:fe:be:37:d6:d2:90:65:4b:
                    6d:11:58:26:48:e0:7c:41:c4:c3:2d:12:ee:79:3e:90:
                    b5:3c:a4:c1:7e:1a:b5:47:e9:e6:d1:e7:f7:9a:bb:4b:
                    4a:01:61:eb:1b:b7:f8:c5:63:9d:71:d2:e4:91:7a:dd:
                    3e:ad:fd:8a:78:75:a9:52:da:9a:19:7c:7c:b4:9a:ae:
                    e5:54:65:23:07:e1:9e:53:bc:92:e2:42:a3:b4:7c:64:
                    a9:99:58:ca:46:59:60:be:cf:1a:bd:82:98:9b:1f:3e:
                    ca:ae:b9:b1:65:40:cd:9e:1e:34:2f:85:44:58:cb:ab:
                    b9:04:1b:4f:2d:ad:0b:bd:35:c2:c5:55:25:d3:e2:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:88:06:87:56:42:6d:61:74:ec:36:78:68:28:73:63:
        7f:41:50:62:df:41:d1:a0:b4:66:66:1e:6c:08:07:32:
        cb:80:62:3b:90:b0:c0:bb:d2:16:08:ff:78:d3:28:17:
        36:b4:a1:97:83:a6:c9:a6:39:59:79:33:bd:ee:81:c6:
        44:c1:22:f3:d2:75:bf:f2:e4:7d:2c:a4:29:93:ea:43:
        64:97:d8:31:c0:fd:cd:19:34:51:a7:88:fb:12:fd:50:
        ef:a7:18:aa:72:5c:6e:c2:42:75:1b:43:ba:5b:cc:bc:
        f8:b7:01:04:5d:63:f4:aa:9c:d6:d5:ff:b9:28:f0:e5:
        c0:86:86:b2:66:f2:db:fd:f3:4c:78:30:a3:6a:42:79:
        33:67:7d:8c:a9:d4:1a:2b:79:81:4d:55:2c:c2:8c:ee:
        9d:3c:01:a9:29:16:58:3f:60:55:64:3e:3c:ea:31:95:
        11:fd:6c:fc:93:05:87:a8:7a:21:2f:cc:61:5c:35:ea:
        80:31:e0:ca:30:da:8f:ad:88:5a:0d:ad:e9:e1:d5:71:
        c6:1a:d8:bb:ae:9a:92:49:91:90:2e:9c:ac:bb:1d:99:
        48:41:67:e6:77:ff:41:89:cc:19:09:fe:0f:e0:0c:b9:
        ad:37:f3:6a:03:66:65:69:d9:d3:f4:f8:25:6c:37:85
    Fingerprint (SHA-256):
        9F:13:28:28:76:66:35:38:6C:E8:48:A0:CD:92:F3:96:46:EA:5C:8B:4E:4B:4B:B2:75:38:4F:8F:A7:6D:7C:9F
    Fingerprint (SHA1):
        9C:4D:DC:11:F1:99:39:F3:31:43:6E:89:CD:AF:B8:52:A0:81:51:D4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3398: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3399: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123140 (0x310fdcc4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:30:55 2017
            Not After : Tue Aug 23 12:30:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:a3:7c:d6:34:ce:7a:51:2d:81:ad:3e:ab:bf:44:ca:
                    69:63:4b:20:5b:3e:b1:83:81:40:2e:fc:18:7c:84:40:
                    7d:bf:24:bd:cf:39:e1:12:d5:a7:7c:d3:49:8c:25:65:
                    2d:4f:51:f7:6d:8a:e0:c9:6f:62:1e:ea:f9:78:bd:14:
                    bb:48:dd:af:88:34:8d:87:55:3f:ed:a3:cc:f3:3c:54:
                    44:6b:05:36:76:de:d9:34:fa:6e:3e:c7:51:7b:9a:a0:
                    8a:70:81:0f:23:3c:3a:3c:39:0d:c7:91:d1:8c:2d:be:
                    01:f2:f7:3e:19:a9:16:78:fe:be:37:d6:d2:90:65:4b:
                    6d:11:58:26:48:e0:7c:41:c4:c3:2d:12:ee:79:3e:90:
                    b5:3c:a4:c1:7e:1a:b5:47:e9:e6:d1:e7:f7:9a:bb:4b:
                    4a:01:61:eb:1b:b7:f8:c5:63:9d:71:d2:e4:91:7a:dd:
                    3e:ad:fd:8a:78:75:a9:52:da:9a:19:7c:7c:b4:9a:ae:
                    e5:54:65:23:07:e1:9e:53:bc:92:e2:42:a3:b4:7c:64:
                    a9:99:58:ca:46:59:60:be:cf:1a:bd:82:98:9b:1f:3e:
                    ca:ae:b9:b1:65:40:cd:9e:1e:34:2f:85:44:58:cb:ab:
                    b9:04:1b:4f:2d:ad:0b:bd:35:c2:c5:55:25:d3:e2:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:88:06:87:56:42:6d:61:74:ec:36:78:68:28:73:63:
        7f:41:50:62:df:41:d1:a0:b4:66:66:1e:6c:08:07:32:
        cb:80:62:3b:90:b0:c0:bb:d2:16:08:ff:78:d3:28:17:
        36:b4:a1:97:83:a6:c9:a6:39:59:79:33:bd:ee:81:c6:
        44:c1:22:f3:d2:75:bf:f2:e4:7d:2c:a4:29:93:ea:43:
        64:97:d8:31:c0:fd:cd:19:34:51:a7:88:fb:12:fd:50:
        ef:a7:18:aa:72:5c:6e:c2:42:75:1b:43:ba:5b:cc:bc:
        f8:b7:01:04:5d:63:f4:aa:9c:d6:d5:ff:b9:28:f0:e5:
        c0:86:86:b2:66:f2:db:fd:f3:4c:78:30:a3:6a:42:79:
        33:67:7d:8c:a9:d4:1a:2b:79:81:4d:55:2c:c2:8c:ee:
        9d:3c:01:a9:29:16:58:3f:60:55:64:3e:3c:ea:31:95:
        11:fd:6c:fc:93:05:87:a8:7a:21:2f:cc:61:5c:35:ea:
        80:31:e0:ca:30:da:8f:ad:88:5a:0d:ad:e9:e1:d5:71:
        c6:1a:d8:bb:ae:9a:92:49:91:90:2e:9c:ac:bb:1d:99:
        48:41:67:e6:77:ff:41:89:cc:19:09:fe:0f:e0:0c:b9:
        ad:37:f3:6a:03:66:65:69:d9:d3:f4:f8:25:6c:37:85
    Fingerprint (SHA-256):
        9F:13:28:28:76:66:35:38:6C:E8:48:A0:CD:92:F3:96:46:EA:5C:8B:4E:4B:4B:B2:75:38:4F:8F:A7:6D:7C:9F
    Fingerprint (SHA1):
        9C:4D:DC:11:F1:99:39:F3:31:43:6E:89:CD:AF:B8:52:A0:81:51:D4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3400: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3401: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3402: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123144 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3403: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3404: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3405: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3406: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123145   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3407: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3408: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3409: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3410: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123146   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3411: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3412: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3413: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3414: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 823123147   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3415: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3416: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3417: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123148 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3418: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3419: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3420: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3421: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 823123149   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3422: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3423: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3424: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3425: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 823123150   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3426: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3427: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3428: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3429: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3430: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123144 (0x310fdcc8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:85:c2:c2:66:b5:65:13:0e:c0:66:16:65:e2:41:90:
                    24:f7:48:03:71:07:60:7b:b2:8f:b3:03:88:39:79:1f:
                    f5:9e:14:77:df:fd:71:17:df:ef:39:f4:3c:ad:80:f9:
                    25:a2:c2:ec:4a:ba:a5:92:98:91:7d:25:1f:9c:e5:eb:
                    a2:4e:eb:36:2e:c7:7a:08:57:e0:3b:a3:23:7c:a3:da:
                    68:37:41:ed:e9:11:47:5c:34:61:0d:9e:f1:55:6f:a0:
                    f8:e6:17:e3:f6:2d:82:1c:1d:dc:eb:90:33:d5:2b:3e:
                    49:a1:d9:81:b3:5a:34:00:be:56:ff:a3:27:92:0e:96:
                    fc:e3:a1:80:ad:4a:d2:8f:a3:bc:5b:53:6f:84:cd:27:
                    4f:9c:3a:c8:4d:64:20:18:6c:a9:52:d5:d2:5d:07:a0:
                    59:da:c7:01:44:46:d8:e4:20:8e:ad:02:2f:fe:e0:23:
                    7c:1c:3b:71:ab:4d:bb:55:77:a2:f5:b8:8c:c8:7c:df:
                    12:0e:f2:ab:8f:1f:b8:71:18:ce:96:12:4c:18:cd:d6:
                    c9:ce:cb:e0:68:4a:86:38:bb:06:27:78:3d:7d:00:79:
                    76:01:01:41:ef:76:bf:e0:a6:c1:c2:e6:3b:37:09:ed:
                    69:eb:78:c8:8b:10:ff:6c:49:f5:b2:1f:8a:49:2f:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:8f:ea:71:fb:e0:8e:13:9c:93:0d:97:c7:f5:61:ca:
        1a:96:5b:cc:a4:0f:2d:0b:cf:d7:ca:d0:53:da:8e:95:
        04:33:d4:96:be:cb:c3:65:19:e5:87:6f:b4:27:d9:68:
        8b:12:eb:f2:59:f9:5e:ad:b9:41:94:21:90:6b:9d:b4:
        74:6a:f2:23:ea:62:58:68:dd:47:7f:66:d8:3b:5c:0d:
        2d:b0:7e:e0:f6:2d:74:54:3c:ea:d2:84:61:b0:2f:d0:
        aa:8f:8f:26:16:36:19:a8:ea:ce:ad:dc:20:e1:da:24:
        d9:de:0f:12:1d:90:1d:7c:a7:9b:c2:a9:3b:9d:bc:5e:
        47:a2:c3:b4:a0:fd:95:96:14:11:99:74:00:09:49:02:
        5c:59:22:7f:3c:82:09:eb:4a:80:aa:a1:52:91:73:87:
        03:30:48:9d:9a:73:92:45:c4:a8:2e:d4:47:7e:f5:db:
        b1:03:a4:cc:c0:c9:5a:22:11:c2:7d:78:70:f9:a2:42:
        37:87:aa:c0:42:89:70:45:eb:da:5a:4d:8d:6d:75:fc:
        87:70:31:f1:5c:59:22:75:e6:9e:47:e9:d9:59:ed:6b:
        61:84:b0:c1:38:c5:c6:16:3c:94:ad:88:e6:da:11:96:
        05:dc:c9:e4:82:ca:d5:86:60:c4:e5:87:fc:a7:14:68
    Fingerprint (SHA-256):
        92:1B:AC:3D:7A:61:E9:5C:51:A2:FE:18:4F:B2:EA:02:F3:61:94:F5:47:64:5C:8A:54:DA:E6:E1:C5:E5:28:2B
    Fingerprint (SHA1):
        48:14:0C:47:C5:DC:F0:E4:9E:1F:45:85:BB:10:71:33:AB:91:42:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3431: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123146 (0x310fdcca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:3c:14:54:c8:93:d1:34:6a:59:cb:91:d2:67:31:e1:
                    5a:5d:f0:01:8d:92:5f:5e:34:8c:22:f2:86:42:b3:ae:
                    d1:55:03:a9:70:be:07:6f:03:29:71:03:10:b6:70:cd:
                    da:57:49:0a:b7:60:23:c6:77:df:27:81:60:fb:78:81:
                    6b:80:42:e3:7c:d0:06:ad:c1:c6:06:04:16:0d:2d:bd:
                    81:ce:18:53:98:98:e0:ef:82:70:4c:0b:d7:5b:2d:05:
                    78:79:a8:7c:08:ad:18:be:10:ee:61:43:51:9a:24:42:
                    60:ef:9a:49:b9:9a:e9:d4:35:a7:c2:e2:cc:99:a5:00:
                    30:10:7a:a5:45:4c:03:5b:ed:68:bb:82:07:95:74:fc:
                    84:84:1e:cd:0e:80:86:b7:6f:ab:b4:b4:8c:12:11:1e:
                    2b:23:60:a3:c0:7e:06:82:99:ae:45:b0:4d:3b:0c:52:
                    1f:99:37:a1:78:54:02:17:0e:03:c3:80:0d:0c:f7:04:
                    67:35:a2:2a:b0:bf:1e:46:72:59:f0:d2:0e:e0:1d:fc:
                    77:58:c0:41:fd:55:80:ae:e6:92:7e:ae:d8:eb:b4:73:
                    0f:bc:56:8f:0c:cd:84:06:9e:d6:ca:f6:9f:de:1f:5a:
                    71:6a:d3:7e:ce:ee:d8:65:74:02:fb:02:7e:02:23:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:e7:c7:23:e6:da:fd:7c:b5:a6:3b:06:76:e8:7f:0d:
        ea:c2:d7:bb:13:b1:eb:d7:a7:b1:00:bf:97:8d:df:4b:
        cc:1b:3e:7a:b5:fa:10:8a:0a:e5:5b:c9:52:a5:04:ef:
        c0:77:d0:07:5e:81:5c:67:11:e7:42:3b:e2:40:e5:40:
        07:7a:98:93:20:07:83:a1:af:bc:01:a9:dc:5f:0f:08:
        c3:ae:d2:bd:aa:99:8f:80:5a:b4:42:ac:ea:c8:94:f6:
        56:07:c3:e2:4d:05:12:12:35:41:5b:e7:e2:09:fe:d7:
        44:6f:63:f0:b6:76:2a:eb:fa:1f:d6:a7:de:b8:ca:c2:
        cb:5b:96:33:f7:42:78:d5:9c:a8:4f:0f:f8:cf:de:c9:
        31:66:7b:6f:ea:5c:8e:52:05:e9:60:53:38:09:3b:28:
        bc:04:e5:1f:dc:fe:87:eb:0b:cd:fc:2b:b8:ca:95:a8:
        0f:e6:2d:db:c9:cd:e2:2a:a2:3f:66:44:27:28:a6:6e:
        b3:10:15:c9:8e:22:09:00:5c:28:5d:16:e9:c7:ff:9a:
        72:5c:5d:16:86:dc:01:d0:0b:49:5a:87:96:40:25:24:
        21:cf:96:0d:10:bf:7a:73:bf:43:a4:11:27:f3:a1:83:
        f9:c2:44:93:f4:33:8b:cb:d4:3f:7c:b1:48:14:e6:63
    Fingerprint (SHA-256):
        16:72:81:22:B4:A9:E1:D5:8E:2A:95:D2:B8:F8:8C:0F:2B:D3:48:7B:F0:12:2F:07:92:FA:C5:03:73:9D:C7:79
    Fingerprint (SHA1):
        11:A8:94:82:54:A6:D8:0F:B5:DF:AC:D1:96:24:07:A2:E6:95:C0:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123144 (0x310fdcc8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:85:c2:c2:66:b5:65:13:0e:c0:66:16:65:e2:41:90:
                    24:f7:48:03:71:07:60:7b:b2:8f:b3:03:88:39:79:1f:
                    f5:9e:14:77:df:fd:71:17:df:ef:39:f4:3c:ad:80:f9:
                    25:a2:c2:ec:4a:ba:a5:92:98:91:7d:25:1f:9c:e5:eb:
                    a2:4e:eb:36:2e:c7:7a:08:57:e0:3b:a3:23:7c:a3:da:
                    68:37:41:ed:e9:11:47:5c:34:61:0d:9e:f1:55:6f:a0:
                    f8:e6:17:e3:f6:2d:82:1c:1d:dc:eb:90:33:d5:2b:3e:
                    49:a1:d9:81:b3:5a:34:00:be:56:ff:a3:27:92:0e:96:
                    fc:e3:a1:80:ad:4a:d2:8f:a3:bc:5b:53:6f:84:cd:27:
                    4f:9c:3a:c8:4d:64:20:18:6c:a9:52:d5:d2:5d:07:a0:
                    59:da:c7:01:44:46:d8:e4:20:8e:ad:02:2f:fe:e0:23:
                    7c:1c:3b:71:ab:4d:bb:55:77:a2:f5:b8:8c:c8:7c:df:
                    12:0e:f2:ab:8f:1f:b8:71:18:ce:96:12:4c:18:cd:d6:
                    c9:ce:cb:e0:68:4a:86:38:bb:06:27:78:3d:7d:00:79:
                    76:01:01:41:ef:76:bf:e0:a6:c1:c2:e6:3b:37:09:ed:
                    69:eb:78:c8:8b:10:ff:6c:49:f5:b2:1f:8a:49:2f:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:8f:ea:71:fb:e0:8e:13:9c:93:0d:97:c7:f5:61:ca:
        1a:96:5b:cc:a4:0f:2d:0b:cf:d7:ca:d0:53:da:8e:95:
        04:33:d4:96:be:cb:c3:65:19:e5:87:6f:b4:27:d9:68:
        8b:12:eb:f2:59:f9:5e:ad:b9:41:94:21:90:6b:9d:b4:
        74:6a:f2:23:ea:62:58:68:dd:47:7f:66:d8:3b:5c:0d:
        2d:b0:7e:e0:f6:2d:74:54:3c:ea:d2:84:61:b0:2f:d0:
        aa:8f:8f:26:16:36:19:a8:ea:ce:ad:dc:20:e1:da:24:
        d9:de:0f:12:1d:90:1d:7c:a7:9b:c2:a9:3b:9d:bc:5e:
        47:a2:c3:b4:a0:fd:95:96:14:11:99:74:00:09:49:02:
        5c:59:22:7f:3c:82:09:eb:4a:80:aa:a1:52:91:73:87:
        03:30:48:9d:9a:73:92:45:c4:a8:2e:d4:47:7e:f5:db:
        b1:03:a4:cc:c0:c9:5a:22:11:c2:7d:78:70:f9:a2:42:
        37:87:aa:c0:42:89:70:45:eb:da:5a:4d:8d:6d:75:fc:
        87:70:31:f1:5c:59:22:75:e6:9e:47:e9:d9:59:ed:6b:
        61:84:b0:c1:38:c5:c6:16:3c:94:ad:88:e6:da:11:96:
        05:dc:c9:e4:82:ca:d5:86:60:c4:e5:87:fc:a7:14:68
    Fingerprint (SHA-256):
        92:1B:AC:3D:7A:61:E9:5C:51:A2:FE:18:4F:B2:EA:02:F3:61:94:F5:47:64:5C:8A:54:DA:E6:E1:C5:E5:28:2B
    Fingerprint (SHA1):
        48:14:0C:47:C5:DC:F0:E4:9E:1F:45:85:BB:10:71:33:AB:91:42:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3434: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123144 (0x310fdcc8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:85:c2:c2:66:b5:65:13:0e:c0:66:16:65:e2:41:90:
                    24:f7:48:03:71:07:60:7b:b2:8f:b3:03:88:39:79:1f:
                    f5:9e:14:77:df:fd:71:17:df:ef:39:f4:3c:ad:80:f9:
                    25:a2:c2:ec:4a:ba:a5:92:98:91:7d:25:1f:9c:e5:eb:
                    a2:4e:eb:36:2e:c7:7a:08:57:e0:3b:a3:23:7c:a3:da:
                    68:37:41:ed:e9:11:47:5c:34:61:0d:9e:f1:55:6f:a0:
                    f8:e6:17:e3:f6:2d:82:1c:1d:dc:eb:90:33:d5:2b:3e:
                    49:a1:d9:81:b3:5a:34:00:be:56:ff:a3:27:92:0e:96:
                    fc:e3:a1:80:ad:4a:d2:8f:a3:bc:5b:53:6f:84:cd:27:
                    4f:9c:3a:c8:4d:64:20:18:6c:a9:52:d5:d2:5d:07:a0:
                    59:da:c7:01:44:46:d8:e4:20:8e:ad:02:2f:fe:e0:23:
                    7c:1c:3b:71:ab:4d:bb:55:77:a2:f5:b8:8c:c8:7c:df:
                    12:0e:f2:ab:8f:1f:b8:71:18:ce:96:12:4c:18:cd:d6:
                    c9:ce:cb:e0:68:4a:86:38:bb:06:27:78:3d:7d:00:79:
                    76:01:01:41:ef:76:bf:e0:a6:c1:c2:e6:3b:37:09:ed:
                    69:eb:78:c8:8b:10:ff:6c:49:f5:b2:1f:8a:49:2f:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:8f:ea:71:fb:e0:8e:13:9c:93:0d:97:c7:f5:61:ca:
        1a:96:5b:cc:a4:0f:2d:0b:cf:d7:ca:d0:53:da:8e:95:
        04:33:d4:96:be:cb:c3:65:19:e5:87:6f:b4:27:d9:68:
        8b:12:eb:f2:59:f9:5e:ad:b9:41:94:21:90:6b:9d:b4:
        74:6a:f2:23:ea:62:58:68:dd:47:7f:66:d8:3b:5c:0d:
        2d:b0:7e:e0:f6:2d:74:54:3c:ea:d2:84:61:b0:2f:d0:
        aa:8f:8f:26:16:36:19:a8:ea:ce:ad:dc:20:e1:da:24:
        d9:de:0f:12:1d:90:1d:7c:a7:9b:c2:a9:3b:9d:bc:5e:
        47:a2:c3:b4:a0:fd:95:96:14:11:99:74:00:09:49:02:
        5c:59:22:7f:3c:82:09:eb:4a:80:aa:a1:52:91:73:87:
        03:30:48:9d:9a:73:92:45:c4:a8:2e:d4:47:7e:f5:db:
        b1:03:a4:cc:c0:c9:5a:22:11:c2:7d:78:70:f9:a2:42:
        37:87:aa:c0:42:89:70:45:eb:da:5a:4d:8d:6d:75:fc:
        87:70:31:f1:5c:59:22:75:e6:9e:47:e9:d9:59:ed:6b:
        61:84:b0:c1:38:c5:c6:16:3c:94:ad:88:e6:da:11:96:
        05:dc:c9:e4:82:ca:d5:86:60:c4:e5:87:fc:a7:14:68
    Fingerprint (SHA-256):
        92:1B:AC:3D:7A:61:E9:5C:51:A2:FE:18:4F:B2:EA:02:F3:61:94:F5:47:64:5C:8A:54:DA:E6:E1:C5:E5:28:2B
    Fingerprint (SHA1):
        48:14:0C:47:C5:DC:F0:E4:9E:1F:45:85:BB:10:71:33:AB:91:42:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3435: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123146 (0x310fdcca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:3c:14:54:c8:93:d1:34:6a:59:cb:91:d2:67:31:e1:
                    5a:5d:f0:01:8d:92:5f:5e:34:8c:22:f2:86:42:b3:ae:
                    d1:55:03:a9:70:be:07:6f:03:29:71:03:10:b6:70:cd:
                    da:57:49:0a:b7:60:23:c6:77:df:27:81:60:fb:78:81:
                    6b:80:42:e3:7c:d0:06:ad:c1:c6:06:04:16:0d:2d:bd:
                    81:ce:18:53:98:98:e0:ef:82:70:4c:0b:d7:5b:2d:05:
                    78:79:a8:7c:08:ad:18:be:10:ee:61:43:51:9a:24:42:
                    60:ef:9a:49:b9:9a:e9:d4:35:a7:c2:e2:cc:99:a5:00:
                    30:10:7a:a5:45:4c:03:5b:ed:68:bb:82:07:95:74:fc:
                    84:84:1e:cd:0e:80:86:b7:6f:ab:b4:b4:8c:12:11:1e:
                    2b:23:60:a3:c0:7e:06:82:99:ae:45:b0:4d:3b:0c:52:
                    1f:99:37:a1:78:54:02:17:0e:03:c3:80:0d:0c:f7:04:
                    67:35:a2:2a:b0:bf:1e:46:72:59:f0:d2:0e:e0:1d:fc:
                    77:58:c0:41:fd:55:80:ae:e6:92:7e:ae:d8:eb:b4:73:
                    0f:bc:56:8f:0c:cd:84:06:9e:d6:ca:f6:9f:de:1f:5a:
                    71:6a:d3:7e:ce:ee:d8:65:74:02:fb:02:7e:02:23:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:e7:c7:23:e6:da:fd:7c:b5:a6:3b:06:76:e8:7f:0d:
        ea:c2:d7:bb:13:b1:eb:d7:a7:b1:00:bf:97:8d:df:4b:
        cc:1b:3e:7a:b5:fa:10:8a:0a:e5:5b:c9:52:a5:04:ef:
        c0:77:d0:07:5e:81:5c:67:11:e7:42:3b:e2:40:e5:40:
        07:7a:98:93:20:07:83:a1:af:bc:01:a9:dc:5f:0f:08:
        c3:ae:d2:bd:aa:99:8f:80:5a:b4:42:ac:ea:c8:94:f6:
        56:07:c3:e2:4d:05:12:12:35:41:5b:e7:e2:09:fe:d7:
        44:6f:63:f0:b6:76:2a:eb:fa:1f:d6:a7:de:b8:ca:c2:
        cb:5b:96:33:f7:42:78:d5:9c:a8:4f:0f:f8:cf:de:c9:
        31:66:7b:6f:ea:5c:8e:52:05:e9:60:53:38:09:3b:28:
        bc:04:e5:1f:dc:fe:87:eb:0b:cd:fc:2b:b8:ca:95:a8:
        0f:e6:2d:db:c9:cd:e2:2a:a2:3f:66:44:27:28:a6:6e:
        b3:10:15:c9:8e:22:09:00:5c:28:5d:16:e9:c7:ff:9a:
        72:5c:5d:16:86:dc:01:d0:0b:49:5a:87:96:40:25:24:
        21:cf:96:0d:10:bf:7a:73:bf:43:a4:11:27:f3:a1:83:
        f9:c2:44:93:f4:33:8b:cb:d4:3f:7c:b1:48:14:e6:63
    Fingerprint (SHA-256):
        16:72:81:22:B4:A9:E1:D5:8E:2A:95:D2:B8:F8:8C:0F:2B:D3:48:7B:F0:12:2F:07:92:FA:C5:03:73:9D:C7:79
    Fingerprint (SHA1):
        11:A8:94:82:54:A6:D8:0F:B5:DF:AC:D1:96:24:07:A2:E6:95:C0:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3436: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3437: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3438: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3439: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123144 (0x310fdcc8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:85:c2:c2:66:b5:65:13:0e:c0:66:16:65:e2:41:90:
                    24:f7:48:03:71:07:60:7b:b2:8f:b3:03:88:39:79:1f:
                    f5:9e:14:77:df:fd:71:17:df:ef:39:f4:3c:ad:80:f9:
                    25:a2:c2:ec:4a:ba:a5:92:98:91:7d:25:1f:9c:e5:eb:
                    a2:4e:eb:36:2e:c7:7a:08:57:e0:3b:a3:23:7c:a3:da:
                    68:37:41:ed:e9:11:47:5c:34:61:0d:9e:f1:55:6f:a0:
                    f8:e6:17:e3:f6:2d:82:1c:1d:dc:eb:90:33:d5:2b:3e:
                    49:a1:d9:81:b3:5a:34:00:be:56:ff:a3:27:92:0e:96:
                    fc:e3:a1:80:ad:4a:d2:8f:a3:bc:5b:53:6f:84:cd:27:
                    4f:9c:3a:c8:4d:64:20:18:6c:a9:52:d5:d2:5d:07:a0:
                    59:da:c7:01:44:46:d8:e4:20:8e:ad:02:2f:fe:e0:23:
                    7c:1c:3b:71:ab:4d:bb:55:77:a2:f5:b8:8c:c8:7c:df:
                    12:0e:f2:ab:8f:1f:b8:71:18:ce:96:12:4c:18:cd:d6:
                    c9:ce:cb:e0:68:4a:86:38:bb:06:27:78:3d:7d:00:79:
                    76:01:01:41:ef:76:bf:e0:a6:c1:c2:e6:3b:37:09:ed:
                    69:eb:78:c8:8b:10:ff:6c:49:f5:b2:1f:8a:49:2f:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:8f:ea:71:fb:e0:8e:13:9c:93:0d:97:c7:f5:61:ca:
        1a:96:5b:cc:a4:0f:2d:0b:cf:d7:ca:d0:53:da:8e:95:
        04:33:d4:96:be:cb:c3:65:19:e5:87:6f:b4:27:d9:68:
        8b:12:eb:f2:59:f9:5e:ad:b9:41:94:21:90:6b:9d:b4:
        74:6a:f2:23:ea:62:58:68:dd:47:7f:66:d8:3b:5c:0d:
        2d:b0:7e:e0:f6:2d:74:54:3c:ea:d2:84:61:b0:2f:d0:
        aa:8f:8f:26:16:36:19:a8:ea:ce:ad:dc:20:e1:da:24:
        d9:de:0f:12:1d:90:1d:7c:a7:9b:c2:a9:3b:9d:bc:5e:
        47:a2:c3:b4:a0:fd:95:96:14:11:99:74:00:09:49:02:
        5c:59:22:7f:3c:82:09:eb:4a:80:aa:a1:52:91:73:87:
        03:30:48:9d:9a:73:92:45:c4:a8:2e:d4:47:7e:f5:db:
        b1:03:a4:cc:c0:c9:5a:22:11:c2:7d:78:70:f9:a2:42:
        37:87:aa:c0:42:89:70:45:eb:da:5a:4d:8d:6d:75:fc:
        87:70:31:f1:5c:59:22:75:e6:9e:47:e9:d9:59:ed:6b:
        61:84:b0:c1:38:c5:c6:16:3c:94:ad:88:e6:da:11:96:
        05:dc:c9:e4:82:ca:d5:86:60:c4:e5:87:fc:a7:14:68
    Fingerprint (SHA-256):
        92:1B:AC:3D:7A:61:E9:5C:51:A2:FE:18:4F:B2:EA:02:F3:61:94:F5:47:64:5C:8A:54:DA:E6:E1:C5:E5:28:2B
    Fingerprint (SHA1):
        48:14:0C:47:C5:DC:F0:E4:9E:1F:45:85:BB:10:71:33:AB:91:42:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3440: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123148 (0x310fdccc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:cc:63:d4:32:a9:bc:e2:e1:b9:e7:39:c8:78:99:f3:
                    f9:68:08:36:59:cc:59:1e:0f:e2:f6:1a:8f:a6:f0:f7:
                    8f:a3:95:d5:59:96:05:52:ce:39:b2:34:33:3b:b9:2f:
                    ae:06:7b:8b:00:42:ab:6c:fc:6c:e9:c0:95:6b:cf:6c:
                    6c:5f:e4:50:5c:c8:33:e8:70:4f:0a:a5:3d:d1:15:1d:
                    5b:fa:98:bc:80:72:b8:bf:60:3a:3f:d0:52:0d:8a:d3:
                    de:2d:2c:01:df:f4:83:36:ff:f0:08:ed:db:6e:b7:0d:
                    ac:1d:45:b6:fa:f7:17:84:1f:a8:31:e4:60:f1:0e:08:
                    1b:30:96:ed:cc:6f:c2:f0:be:e4:50:bb:34:8a:29:81:
                    ba:94:a6:f2:c8:62:f1:c8:6d:89:70:e9:17:7f:c8:41:
                    cd:15:45:66:4e:2c:4d:47:bc:32:ec:1d:f6:d0:b0:93:
                    1e:97:a5:fe:28:4b:bd:23:d4:fa:ab:7d:7f:a9:8f:0f:
                    ed:04:d9:6d:c8:f2:a6:43:d6:6e:93:01:b4:0b:94:57:
                    6e:cb:e1:2f:05:6a:a0:e3:17:64:de:d6:d1:c5:96:8d:
                    c2:36:33:90:2b:a6:aa:53:fa:da:92:b4:c0:44:01:20:
                    d5:e5:bf:ba:3d:77:74:49:2b:52:eb:5f:08:7d:06:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:41:d8:3c:62:8e:d5:5a:62:09:8a:a5:ba:f3:c0:b8:
        33:9a:28:d5:75:2a:79:e7:32:98:88:27:e1:1b:c4:74:
        03:e4:5a:f4:46:44:9e:99:cf:8f:62:f7:7d:53:cf:be:
        c2:95:b0:7d:3b:5c:cc:57:b7:1a:79:8c:73:c6:fe:4f:
        50:da:2a:99:0e:22:cf:3c:b6:4a:e5:3c:91:ef:58:d6:
        e9:91:63:1e:0a:be:25:7e:39:92:a4:4d:a6:cf:ad:33:
        30:68:0c:74:e6:3b:fe:13:98:e3:33:7b:29:3f:c6:6a:
        5f:c8:04:c0:9d:2c:24:a7:11:3c:40:13:9d:bc:92:d1:
        06:af:ee:98:72:e0:74:0a:67:0c:3c:14:c4:03:7b:4a:
        68:04:ea:8e:5c:1b:69:93:eb:4b:0b:95:51:bf:69:ba:
        bd:05:05:f3:7c:3f:7c:62:98:bc:a7:d5:a0:32:05:0e:
        70:f0:8c:bf:e6:cd:42:f8:85:2b:01:75:78:37:c0:db:
        e8:03:7f:b7:61:69:41:12:42:90:60:20:2f:dd:0c:e9:
        f6:88:5b:f5:da:59:b0:6e:70:14:6f:39:d1:7f:15:4f:
        62:fe:0d:c3:3f:81:86:23:98:28:f8:3a:e4:ba:0c:d3:
        30:02:14:82:8a:ad:e8:2a:a4:87:91:c1:1c:c7:bf:48
    Fingerprint (SHA-256):
        0F:88:92:FF:7A:53:24:63:C6:78:FA:01:24:5F:2E:90:CF:F5:24:99:48:56:3E:75:35:34:54:55:08:64:CB:B7
    Fingerprint (SHA1):
        62:30:E6:23:2C:AD:58:E6:06:C2:75:AC:4B:85:27:30:B6:69:77:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3441: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123144 (0x310fdcc8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:85:c2:c2:66:b5:65:13:0e:c0:66:16:65:e2:41:90:
                    24:f7:48:03:71:07:60:7b:b2:8f:b3:03:88:39:79:1f:
                    f5:9e:14:77:df:fd:71:17:df:ef:39:f4:3c:ad:80:f9:
                    25:a2:c2:ec:4a:ba:a5:92:98:91:7d:25:1f:9c:e5:eb:
                    a2:4e:eb:36:2e:c7:7a:08:57:e0:3b:a3:23:7c:a3:da:
                    68:37:41:ed:e9:11:47:5c:34:61:0d:9e:f1:55:6f:a0:
                    f8:e6:17:e3:f6:2d:82:1c:1d:dc:eb:90:33:d5:2b:3e:
                    49:a1:d9:81:b3:5a:34:00:be:56:ff:a3:27:92:0e:96:
                    fc:e3:a1:80:ad:4a:d2:8f:a3:bc:5b:53:6f:84:cd:27:
                    4f:9c:3a:c8:4d:64:20:18:6c:a9:52:d5:d2:5d:07:a0:
                    59:da:c7:01:44:46:d8:e4:20:8e:ad:02:2f:fe:e0:23:
                    7c:1c:3b:71:ab:4d:bb:55:77:a2:f5:b8:8c:c8:7c:df:
                    12:0e:f2:ab:8f:1f:b8:71:18:ce:96:12:4c:18:cd:d6:
                    c9:ce:cb:e0:68:4a:86:38:bb:06:27:78:3d:7d:00:79:
                    76:01:01:41:ef:76:bf:e0:a6:c1:c2:e6:3b:37:09:ed:
                    69:eb:78:c8:8b:10:ff:6c:49:f5:b2:1f:8a:49:2f:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:8f:ea:71:fb:e0:8e:13:9c:93:0d:97:c7:f5:61:ca:
        1a:96:5b:cc:a4:0f:2d:0b:cf:d7:ca:d0:53:da:8e:95:
        04:33:d4:96:be:cb:c3:65:19:e5:87:6f:b4:27:d9:68:
        8b:12:eb:f2:59:f9:5e:ad:b9:41:94:21:90:6b:9d:b4:
        74:6a:f2:23:ea:62:58:68:dd:47:7f:66:d8:3b:5c:0d:
        2d:b0:7e:e0:f6:2d:74:54:3c:ea:d2:84:61:b0:2f:d0:
        aa:8f:8f:26:16:36:19:a8:ea:ce:ad:dc:20:e1:da:24:
        d9:de:0f:12:1d:90:1d:7c:a7:9b:c2:a9:3b:9d:bc:5e:
        47:a2:c3:b4:a0:fd:95:96:14:11:99:74:00:09:49:02:
        5c:59:22:7f:3c:82:09:eb:4a:80:aa:a1:52:91:73:87:
        03:30:48:9d:9a:73:92:45:c4:a8:2e:d4:47:7e:f5:db:
        b1:03:a4:cc:c0:c9:5a:22:11:c2:7d:78:70:f9:a2:42:
        37:87:aa:c0:42:89:70:45:eb:da:5a:4d:8d:6d:75:fc:
        87:70:31:f1:5c:59:22:75:e6:9e:47:e9:d9:59:ed:6b:
        61:84:b0:c1:38:c5:c6:16:3c:94:ad:88:e6:da:11:96:
        05:dc:c9:e4:82:ca:d5:86:60:c4:e5:87:fc:a7:14:68
    Fingerprint (SHA-256):
        92:1B:AC:3D:7A:61:E9:5C:51:A2:FE:18:4F:B2:EA:02:F3:61:94:F5:47:64:5C:8A:54:DA:E6:E1:C5:E5:28:2B
    Fingerprint (SHA1):
        48:14:0C:47:C5:DC:F0:E4:9E:1F:45:85:BB:10:71:33:AB:91:42:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3442: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3443: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3444: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3445: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3446: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3447: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123149 (0x310fdccd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:00 2017
            Not After : Tue Aug 23 12:31:00 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:78:03:fa:90:73:f6:10:a1:3d:33:0c:0b:5b:eb:17:
                    13:60:ac:4e:d8:62:4a:33:74:9d:6e:b0:e2:63:2c:61:
                    3c:c0:91:cc:52:7d:dd:60:22:50:5e:6d:69:5a:e3:34:
                    6d:a5:e2:70:77:f3:f7:96:bd:c8:d6:d0:17:05:1d:41:
                    ec:e8:c1:6f:7d:a9:63:e5:f3:aa:d8:3a:25:bc:1a:b3:
                    1b:a5:64:4b:17:dc:a6:c3:5a:f1:22:f5:78:22:22:22:
                    26:94:73:7a:75:f0:b9:b5:e1:8b:b4:f4:35:5a:03:67:
                    56:1d:47:6c:ac:cb:a8:65:70:12:5a:9e:78:87:df:fb:
                    2a:36:86:09:10:42:bf:83:19:9f:10:0f:2c:10:d8:61:
                    a9:67:bc:15:0f:38:f2:22:21:55:72:ab:3c:b0:c0:6a:
                    db:e3:ac:cd:a0:dd:4b:4a:33:1e:83:fd:d5:3e:a9:27:
                    5a:e9:2d:3d:a1:1a:cb:1b:75:05:97:33:22:27:cd:a6:
                    7a:60:dd:ce:44:33:d9:56:16:f9:4e:ba:be:ff:60:a2:
                    20:98:89:30:36:2b:70:83:50:b8:22:86:2e:d4:89:64:
                    c5:1f:15:e7:98:8d:36:ef:be:5e:69:1e:cd:70:94:c5:
                    ee:db:41:c8:85:8a:1e:93:bc:7b:40:67:f1:d0:e5:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:fa:e9:f3:3e:c0:71:b4:db:2f:aa:16:68:a3:41:20:
        f1:06:c4:0e:c6:dd:78:0f:ec:54:a1:6e:5e:ef:aa:92:
        b2:b6:47:c1:7a:9c:d6:63:69:da:cf:e3:bc:71:dd:0f:
        08:76:47:1a:91:b9:85:98:75:7c:f3:08:e1:da:95:c9:
        be:a9:79:2e:f8:2c:6d:06:21:c3:b7:38:71:d3:ff:47:
        1c:39:5e:12:6f:98:a1:be:ca:9c:1e:15:91:11:c0:d9:
        46:04:f3:81:69:01:8c:d9:5b:21:f0:5c:60:f1:5e:85:
        02:4c:fb:80:36:28:63:62:9e:5a:cb:6e:e0:8b:05:b3:
        a8:25:06:39:48:c7:6c:ac:30:56:17:e2:17:55:6f:13:
        16:cd:6a:18:5d:a0:45:96:86:84:c3:08:51:4d:96:bd:
        39:ce:4a:03:3d:9e:40:5f:fc:c0:e5:da:48:a1:99:63:
        a8:99:3d:14:2a:24:de:ed:85:ba:5c:3b:a5:61:df:2f:
        40:98:53:49:e3:71:dd:4a:23:e6:59:92:08:87:47:52:
        59:18:dd:92:fd:f1:24:38:70:47:fb:e9:b2:3b:cc:6b:
        87:04:f1:d0:9f:f0:f2:3d:6d:0a:10:6a:f4:0e:06:ca:
        ca:2a:ef:d8:c6:66:a4:2a:fa:ec:93:e5:f4:2a:1a:7c
    Fingerprint (SHA-256):
        D6:96:7F:28:E4:B7:24:15:9E:F5:2B:39:73:9A:93:57:05:AB:9D:5A:08:8F:AC:97:6A:85:02:10:1E:12:AA:5A
    Fingerprint (SHA1):
        34:30:9D:22:CA:C6:5E:03:2C:5D:61:EA:DA:89:62:5A:E3:80:81:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3448: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3449: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3450: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3451: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3452: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3453: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3454: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3455: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3456: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3457: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3458: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3459: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3460: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3461: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3462: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3463: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3464: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3465: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3466: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3467: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3468: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3469: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3470: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3471: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 6566 at Wed Aug 23 12:31:03 UTC 2017
kill -USR1 6566
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 6566 killed at Wed Aug 23 12:31:03 UTC 2017
httpserv starting at Wed Aug 23 12:31:03 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:31:03 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 22024 >/dev/null 2>/dev/null
httpserv with PID 22024 found at Wed Aug 23 12:31:03 UTC 2017
httpserv with PID 22024 started at Wed Aug 23 12:31:03 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3472: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123151 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3473: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3474: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3475: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123152 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3476: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3477: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3478: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3479: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123153 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3480: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3481: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123154 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3482: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3483: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3484: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3485: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3486: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 823123155   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3487: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3488: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3489: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3490: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3491: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123152 (0x310fdcd0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9a:11:d2:a4:a6:69:9b:d3:e4:99:f6:4b:2d:be:23:
                    13:0f:50:46:e3:89:ef:ea:93:6f:d9:5f:e8:27:45:00:
                    e0:19:d2:b1:98:99:14:88:72:69:2d:55:0e:64:eb:7e:
                    49:51:5f:e9:09:5c:f0:f1:93:83:19:e5:de:1c:8e:c6:
                    dc:42:8b:14:c8:92:4d:58:b7:93:69:c9:a4:58:f8:1e:
                    d8:cc:6f:bd:76:82:ea:16:65:2e:c7:e5:83:32:ee:98:
                    fb:e2:9c:a2:5f:c4:7d:cf:4e:33:e2:84:30:fe:f2:42:
                    f8:c5:07:90:5b:6e:34:8a:4b:1f:bb:03:17:c7:bb:71:
                    44:16:53:c8:bc:4c:87:9c:cd:15:16:0f:eb:5f:02:ce:
                    54:1b:6f:70:33:d9:66:4d:49:94:5b:79:b0:59:79:46:
                    d8:a2:97:cc:42:e6:55:77:04:98:ae:5d:c6:28:bf:04:
                    9a:ba:82:eb:ab:bc:30:86:32:79:e0:a4:48:bc:b4:e1:
                    28:bb:3d:bd:cc:b4:03:6f:01:57:72:e8:d9:aa:23:56:
                    8a:6b:05:9c:75:c3:92:1f:29:33:56:de:1c:2c:d1:c6:
                    ab:99:af:90:34:07:93:ff:ab:2b:f7:b8:58:7f:84:09:
                    34:00:e1:cb:d0:a6:19:66:89:5c:15:bf:45:3b:f3:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:cf:54:c0:60:e1:26:ce:48:94:b1:4a:bb:92:5c:70:
        e7:76:68:14:64:88:ad:17:01:f2:75:5f:83:a1:a4:6d:
        5b:66:54:4c:76:b7:35:13:c3:b9:35:00:e7:f3:ff:24:
        aa:1e:91:bf:aa:13:80:13:b3:e9:47:23:fe:26:b3:af:
        65:91:f6:6b:98:b6:15:92:85:c5:a8:3c:28:2f:4b:89:
        b0:1b:d5:85:3d:5a:0a:3a:9d:64:bd:f4:6a:75:37:6d:
        aa:65:4c:4d:8b:c6:e8:6e:10:5e:25:a8:0c:0a:ce:4a:
        5b:ba:bf:f8:4c:2d:95:f6:37:78:96:75:82:04:c0:5f:
        3d:fc:c0:3e:d1:4c:aa:65:bb:33:93:52:82:9e:fe:68:
        01:5b:af:56:1c:98:f1:d4:4c:a9:4a:93:fc:d3:03:1f:
        5e:55:f9:f6:c1:1a:6a:0d:5b:0a:56:61:57:a2:00:46:
        b6:85:a3:0c:eb:2b:39:1e:bf:5b:2f:0d:29:d1:7e:52:
        82:ce:eb:65:e5:46:ea:3c:51:b6:8f:87:1f:1a:ae:9c:
        2e:2e:64:a3:3b:66:94:f2:dd:72:67:dc:81:7d:fa:a0:
        14:51:4a:dc:65:72:a7:e3:e6:b6:5d:0a:f5:11:11:ff:
        05:8a:cd:3f:ba:ec:ef:0e:b6:0b:9e:58:3b:25:ee:8f
    Fingerprint (SHA-256):
        4D:3C:87:FF:73:2F:E1:A6:0C:25:8D:65:2E:CB:D2:E8:04:77:44:33:D6:8E:40:E8:CD:27:17:94:93:D0:C0:00
    Fingerprint (SHA1):
        B4:31:0E:69:DE:2F:09:B9:5E:10:56:73:BE:B5:D3:10:8B:C0:93:13
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3492: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123151 (0x310fdccf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:35:52:cf:aa:00:da:f1:c4:7c:ef:37:05:d6:8c:aa:
                    1c:78:ba:f5:58:82:21:57:39:b6:e6:63:17:d4:4d:c7:
                    79:de:31:3c:af:a8:00:b6:c9:54:f2:e1:b2:45:64:dd:
                    ed:be:c0:b0:e7:35:09:69:03:09:d0:f2:ca:8b:79:49:
                    99:0b:8b:17:ae:b3:b6:1b:0d:f3:16:73:63:85:57:b1:
                    4d:35:de:08:5c:07:95:e0:09:51:32:84:5f:43:0e:fb:
                    eb:24:5e:2d:ec:b6:76:c5:76:80:dd:97:95:75:71:80:
                    4a:09:bc:db:d7:ea:44:17:7d:70:f0:8d:ff:7f:52:46:
                    ca:8f:be:ef:7e:8c:50:d8:af:88:ca:44:5a:2f:f4:a1:
                    5f:28:3a:f6:0c:e7:ea:d7:dd:78:f6:15:aa:f5:1a:b3:
                    1e:55:cd:86:ea:08:9a:a6:0f:7c:f0:47:7b:c3:ab:1c:
                    2a:7b:45:44:d5:ef:d1:7d:14:98:9e:6c:2d:2d:bc:57:
                    f0:01:d4:9c:88:50:32:32:64:33:bf:dd:91:75:1c:05:
                    cb:4a:86:b9:62:9c:53:83:1f:3c:ad:fb:b5:2c:7e:63:
                    7b:fd:d3:aa:08:ac:83:04:6e:21:b9:fa:c3:c9:3f:e4:
                    b6:d5:f6:76:3f:36:9b:ac:4c:e0:5c:10:ba:ae:6a:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:3b:7b:dc:cf:34:ea:46:e5:c3:61:5e:86:10:6e:4a:
        1f:87:39:fe:16:a1:73:17:da:12:0f:57:16:6c:10:0e:
        f8:be:f7:7e:78:ef:8d:90:13:b2:75:8c:0c:db:72:9f:
        f4:0a:44:8c:eb:5e:82:79:dd:9a:2c:4d:86:90:64:7f:
        1c:8f:80:c5:a6:1b:1f:18:52:42:44:58:aa:55:54:75:
        ba:f3:74:d6:f1:94:ff:12:bc:2b:aa:78:c5:2a:82:60:
        b2:8b:34:56:e3:11:8c:ab:55:f3:36:18:a0:fb:9a:2b:
        e3:f8:29:68:56:a6:31:0a:cd:6d:ec:63:2b:60:62:9e:
        d1:6c:a9:9b:71:94:c9:b4:e3:b4:3c:06:ad:48:54:86:
        71:6f:3e:1b:9f:41:ce:d4:08:f4:d0:b8:7f:0c:e3:f2:
        86:7d:74:72:ed:dd:d7:ba:87:d5:0b:7b:b0:16:87:53:
        79:03:8f:c2:cd:13:94:da:44:f7:dc:ce:24:30:d4:a2:
        8f:9d:4b:01:d6:47:ef:7c:8b:0e:42:06:f3:9a:99:ce:
        b2:76:76:a8:28:82:65:aa:43:18:b8:8d:12:c9:4b:72:
        a3:6d:2d:55:21:9c:58:86:1b:d9:a0:28:07:6b:77:84:
        50:43:87:9d:1a:d3:c5:d4:1b:8e:51:67:24:b8:57:ce
    Fingerprint (SHA-256):
        50:8F:E5:4E:FE:33:0C:64:AC:9A:37:AA:9C:00:AC:51:DE:93:7E:7A:63:C7:79:33:B5:56:81:2B:74:31:F7:24
    Fingerprint (SHA1):
        2B:7B:94:FC:76:6A:1C:57:86:FB:03:CB:A7:E5:E4:BC:8C:09:2F:D9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3493: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3494: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3495: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3496: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123151 (0x310fdccf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:35:52:cf:aa:00:da:f1:c4:7c:ef:37:05:d6:8c:aa:
                    1c:78:ba:f5:58:82:21:57:39:b6:e6:63:17:d4:4d:c7:
                    79:de:31:3c:af:a8:00:b6:c9:54:f2:e1:b2:45:64:dd:
                    ed:be:c0:b0:e7:35:09:69:03:09:d0:f2:ca:8b:79:49:
                    99:0b:8b:17:ae:b3:b6:1b:0d:f3:16:73:63:85:57:b1:
                    4d:35:de:08:5c:07:95:e0:09:51:32:84:5f:43:0e:fb:
                    eb:24:5e:2d:ec:b6:76:c5:76:80:dd:97:95:75:71:80:
                    4a:09:bc:db:d7:ea:44:17:7d:70:f0:8d:ff:7f:52:46:
                    ca:8f:be:ef:7e:8c:50:d8:af:88:ca:44:5a:2f:f4:a1:
                    5f:28:3a:f6:0c:e7:ea:d7:dd:78:f6:15:aa:f5:1a:b3:
                    1e:55:cd:86:ea:08:9a:a6:0f:7c:f0:47:7b:c3:ab:1c:
                    2a:7b:45:44:d5:ef:d1:7d:14:98:9e:6c:2d:2d:bc:57:
                    f0:01:d4:9c:88:50:32:32:64:33:bf:dd:91:75:1c:05:
                    cb:4a:86:b9:62:9c:53:83:1f:3c:ad:fb:b5:2c:7e:63:
                    7b:fd:d3:aa:08:ac:83:04:6e:21:b9:fa:c3:c9:3f:e4:
                    b6:d5:f6:76:3f:36:9b:ac:4c:e0:5c:10:ba:ae:6a:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:3b:7b:dc:cf:34:ea:46:e5:c3:61:5e:86:10:6e:4a:
        1f:87:39:fe:16:a1:73:17:da:12:0f:57:16:6c:10:0e:
        f8:be:f7:7e:78:ef:8d:90:13:b2:75:8c:0c:db:72:9f:
        f4:0a:44:8c:eb:5e:82:79:dd:9a:2c:4d:86:90:64:7f:
        1c:8f:80:c5:a6:1b:1f:18:52:42:44:58:aa:55:54:75:
        ba:f3:74:d6:f1:94:ff:12:bc:2b:aa:78:c5:2a:82:60:
        b2:8b:34:56:e3:11:8c:ab:55:f3:36:18:a0:fb:9a:2b:
        e3:f8:29:68:56:a6:31:0a:cd:6d:ec:63:2b:60:62:9e:
        d1:6c:a9:9b:71:94:c9:b4:e3:b4:3c:06:ad:48:54:86:
        71:6f:3e:1b:9f:41:ce:d4:08:f4:d0:b8:7f:0c:e3:f2:
        86:7d:74:72:ed:dd:d7:ba:87:d5:0b:7b:b0:16:87:53:
        79:03:8f:c2:cd:13:94:da:44:f7:dc:ce:24:30:d4:a2:
        8f:9d:4b:01:d6:47:ef:7c:8b:0e:42:06:f3:9a:99:ce:
        b2:76:76:a8:28:82:65:aa:43:18:b8:8d:12:c9:4b:72:
        a3:6d:2d:55:21:9c:58:86:1b:d9:a0:28:07:6b:77:84:
        50:43:87:9d:1a:d3:c5:d4:1b:8e:51:67:24:b8:57:ce
    Fingerprint (SHA-256):
        50:8F:E5:4E:FE:33:0C:64:AC:9A:37:AA:9C:00:AC:51:DE:93:7E:7A:63:C7:79:33:B5:56:81:2B:74:31:F7:24
    Fingerprint (SHA1):
        2B:7B:94:FC:76:6A:1C:57:86:FB:03:CB:A7:E5:E4:BC:8C:09:2F:D9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3497: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123152 (0x310fdcd0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9a:11:d2:a4:a6:69:9b:d3:e4:99:f6:4b:2d:be:23:
                    13:0f:50:46:e3:89:ef:ea:93:6f:d9:5f:e8:27:45:00:
                    e0:19:d2:b1:98:99:14:88:72:69:2d:55:0e:64:eb:7e:
                    49:51:5f:e9:09:5c:f0:f1:93:83:19:e5:de:1c:8e:c6:
                    dc:42:8b:14:c8:92:4d:58:b7:93:69:c9:a4:58:f8:1e:
                    d8:cc:6f:bd:76:82:ea:16:65:2e:c7:e5:83:32:ee:98:
                    fb:e2:9c:a2:5f:c4:7d:cf:4e:33:e2:84:30:fe:f2:42:
                    f8:c5:07:90:5b:6e:34:8a:4b:1f:bb:03:17:c7:bb:71:
                    44:16:53:c8:bc:4c:87:9c:cd:15:16:0f:eb:5f:02:ce:
                    54:1b:6f:70:33:d9:66:4d:49:94:5b:79:b0:59:79:46:
                    d8:a2:97:cc:42:e6:55:77:04:98:ae:5d:c6:28:bf:04:
                    9a:ba:82:eb:ab:bc:30:86:32:79:e0:a4:48:bc:b4:e1:
                    28:bb:3d:bd:cc:b4:03:6f:01:57:72:e8:d9:aa:23:56:
                    8a:6b:05:9c:75:c3:92:1f:29:33:56:de:1c:2c:d1:c6:
                    ab:99:af:90:34:07:93:ff:ab:2b:f7:b8:58:7f:84:09:
                    34:00:e1:cb:d0:a6:19:66:89:5c:15:bf:45:3b:f3:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:cf:54:c0:60:e1:26:ce:48:94:b1:4a:bb:92:5c:70:
        e7:76:68:14:64:88:ad:17:01:f2:75:5f:83:a1:a4:6d:
        5b:66:54:4c:76:b7:35:13:c3:b9:35:00:e7:f3:ff:24:
        aa:1e:91:bf:aa:13:80:13:b3:e9:47:23:fe:26:b3:af:
        65:91:f6:6b:98:b6:15:92:85:c5:a8:3c:28:2f:4b:89:
        b0:1b:d5:85:3d:5a:0a:3a:9d:64:bd:f4:6a:75:37:6d:
        aa:65:4c:4d:8b:c6:e8:6e:10:5e:25:a8:0c:0a:ce:4a:
        5b:ba:bf:f8:4c:2d:95:f6:37:78:96:75:82:04:c0:5f:
        3d:fc:c0:3e:d1:4c:aa:65:bb:33:93:52:82:9e:fe:68:
        01:5b:af:56:1c:98:f1:d4:4c:a9:4a:93:fc:d3:03:1f:
        5e:55:f9:f6:c1:1a:6a:0d:5b:0a:56:61:57:a2:00:46:
        b6:85:a3:0c:eb:2b:39:1e:bf:5b:2f:0d:29:d1:7e:52:
        82:ce:eb:65:e5:46:ea:3c:51:b6:8f:87:1f:1a:ae:9c:
        2e:2e:64:a3:3b:66:94:f2:dd:72:67:dc:81:7d:fa:a0:
        14:51:4a:dc:65:72:a7:e3:e6:b6:5d:0a:f5:11:11:ff:
        05:8a:cd:3f:ba:ec:ef:0e:b6:0b:9e:58:3b:25:ee:8f
    Fingerprint (SHA-256):
        4D:3C:87:FF:73:2F:E1:A6:0C:25:8D:65:2E:CB:D2:E8:04:77:44:33:D6:8E:40:E8:CD:27:17:94:93:D0:C0:00
    Fingerprint (SHA1):
        B4:31:0E:69:DE:2F:09:B9:5E:10:56:73:BE:B5:D3:10:8B:C0:93:13
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3498: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3499: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3500: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3501: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3502: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3503: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123152 (0x310fdcd0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9a:11:d2:a4:a6:69:9b:d3:e4:99:f6:4b:2d:be:23:
                    13:0f:50:46:e3:89:ef:ea:93:6f:d9:5f:e8:27:45:00:
                    e0:19:d2:b1:98:99:14:88:72:69:2d:55:0e:64:eb:7e:
                    49:51:5f:e9:09:5c:f0:f1:93:83:19:e5:de:1c:8e:c6:
                    dc:42:8b:14:c8:92:4d:58:b7:93:69:c9:a4:58:f8:1e:
                    d8:cc:6f:bd:76:82:ea:16:65:2e:c7:e5:83:32:ee:98:
                    fb:e2:9c:a2:5f:c4:7d:cf:4e:33:e2:84:30:fe:f2:42:
                    f8:c5:07:90:5b:6e:34:8a:4b:1f:bb:03:17:c7:bb:71:
                    44:16:53:c8:bc:4c:87:9c:cd:15:16:0f:eb:5f:02:ce:
                    54:1b:6f:70:33:d9:66:4d:49:94:5b:79:b0:59:79:46:
                    d8:a2:97:cc:42:e6:55:77:04:98:ae:5d:c6:28:bf:04:
                    9a:ba:82:eb:ab:bc:30:86:32:79:e0:a4:48:bc:b4:e1:
                    28:bb:3d:bd:cc:b4:03:6f:01:57:72:e8:d9:aa:23:56:
                    8a:6b:05:9c:75:c3:92:1f:29:33:56:de:1c:2c:d1:c6:
                    ab:99:af:90:34:07:93:ff:ab:2b:f7:b8:58:7f:84:09:
                    34:00:e1:cb:d0:a6:19:66:89:5c:15:bf:45:3b:f3:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:cf:54:c0:60:e1:26:ce:48:94:b1:4a:bb:92:5c:70:
        e7:76:68:14:64:88:ad:17:01:f2:75:5f:83:a1:a4:6d:
        5b:66:54:4c:76:b7:35:13:c3:b9:35:00:e7:f3:ff:24:
        aa:1e:91:bf:aa:13:80:13:b3:e9:47:23:fe:26:b3:af:
        65:91:f6:6b:98:b6:15:92:85:c5:a8:3c:28:2f:4b:89:
        b0:1b:d5:85:3d:5a:0a:3a:9d:64:bd:f4:6a:75:37:6d:
        aa:65:4c:4d:8b:c6:e8:6e:10:5e:25:a8:0c:0a:ce:4a:
        5b:ba:bf:f8:4c:2d:95:f6:37:78:96:75:82:04:c0:5f:
        3d:fc:c0:3e:d1:4c:aa:65:bb:33:93:52:82:9e:fe:68:
        01:5b:af:56:1c:98:f1:d4:4c:a9:4a:93:fc:d3:03:1f:
        5e:55:f9:f6:c1:1a:6a:0d:5b:0a:56:61:57:a2:00:46:
        b6:85:a3:0c:eb:2b:39:1e:bf:5b:2f:0d:29:d1:7e:52:
        82:ce:eb:65:e5:46:ea:3c:51:b6:8f:87:1f:1a:ae:9c:
        2e:2e:64:a3:3b:66:94:f2:dd:72:67:dc:81:7d:fa:a0:
        14:51:4a:dc:65:72:a7:e3:e6:b6:5d:0a:f5:11:11:ff:
        05:8a:cd:3f:ba:ec:ef:0e:b6:0b:9e:58:3b:25:ee:8f
    Fingerprint (SHA-256):
        4D:3C:87:FF:73:2F:E1:A6:0C:25:8D:65:2E:CB:D2:E8:04:77:44:33:D6:8E:40:E8:CD:27:17:94:93:D0:C0:00
    Fingerprint (SHA1):
        B4:31:0E:69:DE:2F:09:B9:5E:10:56:73:BE:B5:D3:10:8B:C0:93:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3504: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123152 (0x310fdcd0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9a:11:d2:a4:a6:69:9b:d3:e4:99:f6:4b:2d:be:23:
                    13:0f:50:46:e3:89:ef:ea:93:6f:d9:5f:e8:27:45:00:
                    e0:19:d2:b1:98:99:14:88:72:69:2d:55:0e:64:eb:7e:
                    49:51:5f:e9:09:5c:f0:f1:93:83:19:e5:de:1c:8e:c6:
                    dc:42:8b:14:c8:92:4d:58:b7:93:69:c9:a4:58:f8:1e:
                    d8:cc:6f:bd:76:82:ea:16:65:2e:c7:e5:83:32:ee:98:
                    fb:e2:9c:a2:5f:c4:7d:cf:4e:33:e2:84:30:fe:f2:42:
                    f8:c5:07:90:5b:6e:34:8a:4b:1f:bb:03:17:c7:bb:71:
                    44:16:53:c8:bc:4c:87:9c:cd:15:16:0f:eb:5f:02:ce:
                    54:1b:6f:70:33:d9:66:4d:49:94:5b:79:b0:59:79:46:
                    d8:a2:97:cc:42:e6:55:77:04:98:ae:5d:c6:28:bf:04:
                    9a:ba:82:eb:ab:bc:30:86:32:79:e0:a4:48:bc:b4:e1:
                    28:bb:3d:bd:cc:b4:03:6f:01:57:72:e8:d9:aa:23:56:
                    8a:6b:05:9c:75:c3:92:1f:29:33:56:de:1c:2c:d1:c6:
                    ab:99:af:90:34:07:93:ff:ab:2b:f7:b8:58:7f:84:09:
                    34:00:e1:cb:d0:a6:19:66:89:5c:15:bf:45:3b:f3:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:cf:54:c0:60:e1:26:ce:48:94:b1:4a:bb:92:5c:70:
        e7:76:68:14:64:88:ad:17:01:f2:75:5f:83:a1:a4:6d:
        5b:66:54:4c:76:b7:35:13:c3:b9:35:00:e7:f3:ff:24:
        aa:1e:91:bf:aa:13:80:13:b3:e9:47:23:fe:26:b3:af:
        65:91:f6:6b:98:b6:15:92:85:c5:a8:3c:28:2f:4b:89:
        b0:1b:d5:85:3d:5a:0a:3a:9d:64:bd:f4:6a:75:37:6d:
        aa:65:4c:4d:8b:c6:e8:6e:10:5e:25:a8:0c:0a:ce:4a:
        5b:ba:bf:f8:4c:2d:95:f6:37:78:96:75:82:04:c0:5f:
        3d:fc:c0:3e:d1:4c:aa:65:bb:33:93:52:82:9e:fe:68:
        01:5b:af:56:1c:98:f1:d4:4c:a9:4a:93:fc:d3:03:1f:
        5e:55:f9:f6:c1:1a:6a:0d:5b:0a:56:61:57:a2:00:46:
        b6:85:a3:0c:eb:2b:39:1e:bf:5b:2f:0d:29:d1:7e:52:
        82:ce:eb:65:e5:46:ea:3c:51:b6:8f:87:1f:1a:ae:9c:
        2e:2e:64:a3:3b:66:94:f2:dd:72:67:dc:81:7d:fa:a0:
        14:51:4a:dc:65:72:a7:e3:e6:b6:5d:0a:f5:11:11:ff:
        05:8a:cd:3f:ba:ec:ef:0e:b6:0b:9e:58:3b:25:ee:8f
    Fingerprint (SHA-256):
        4D:3C:87:FF:73:2F:E1:A6:0C:25:8D:65:2E:CB:D2:E8:04:77:44:33:D6:8E:40:E8:CD:27:17:94:93:D0:C0:00
    Fingerprint (SHA1):
        B4:31:0E:69:DE:2F:09:B9:5E:10:56:73:BE:B5:D3:10:8B:C0:93:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3505: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3506: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3507: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3508: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3509: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3510: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123151 (0x310fdccf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:35:52:cf:aa:00:da:f1:c4:7c:ef:37:05:d6:8c:aa:
                    1c:78:ba:f5:58:82:21:57:39:b6:e6:63:17:d4:4d:c7:
                    79:de:31:3c:af:a8:00:b6:c9:54:f2:e1:b2:45:64:dd:
                    ed:be:c0:b0:e7:35:09:69:03:09:d0:f2:ca:8b:79:49:
                    99:0b:8b:17:ae:b3:b6:1b:0d:f3:16:73:63:85:57:b1:
                    4d:35:de:08:5c:07:95:e0:09:51:32:84:5f:43:0e:fb:
                    eb:24:5e:2d:ec:b6:76:c5:76:80:dd:97:95:75:71:80:
                    4a:09:bc:db:d7:ea:44:17:7d:70:f0:8d:ff:7f:52:46:
                    ca:8f:be:ef:7e:8c:50:d8:af:88:ca:44:5a:2f:f4:a1:
                    5f:28:3a:f6:0c:e7:ea:d7:dd:78:f6:15:aa:f5:1a:b3:
                    1e:55:cd:86:ea:08:9a:a6:0f:7c:f0:47:7b:c3:ab:1c:
                    2a:7b:45:44:d5:ef:d1:7d:14:98:9e:6c:2d:2d:bc:57:
                    f0:01:d4:9c:88:50:32:32:64:33:bf:dd:91:75:1c:05:
                    cb:4a:86:b9:62:9c:53:83:1f:3c:ad:fb:b5:2c:7e:63:
                    7b:fd:d3:aa:08:ac:83:04:6e:21:b9:fa:c3:c9:3f:e4:
                    b6:d5:f6:76:3f:36:9b:ac:4c:e0:5c:10:ba:ae:6a:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:3b:7b:dc:cf:34:ea:46:e5:c3:61:5e:86:10:6e:4a:
        1f:87:39:fe:16:a1:73:17:da:12:0f:57:16:6c:10:0e:
        f8:be:f7:7e:78:ef:8d:90:13:b2:75:8c:0c:db:72:9f:
        f4:0a:44:8c:eb:5e:82:79:dd:9a:2c:4d:86:90:64:7f:
        1c:8f:80:c5:a6:1b:1f:18:52:42:44:58:aa:55:54:75:
        ba:f3:74:d6:f1:94:ff:12:bc:2b:aa:78:c5:2a:82:60:
        b2:8b:34:56:e3:11:8c:ab:55:f3:36:18:a0:fb:9a:2b:
        e3:f8:29:68:56:a6:31:0a:cd:6d:ec:63:2b:60:62:9e:
        d1:6c:a9:9b:71:94:c9:b4:e3:b4:3c:06:ad:48:54:86:
        71:6f:3e:1b:9f:41:ce:d4:08:f4:d0:b8:7f:0c:e3:f2:
        86:7d:74:72:ed:dd:d7:ba:87:d5:0b:7b:b0:16:87:53:
        79:03:8f:c2:cd:13:94:da:44:f7:dc:ce:24:30:d4:a2:
        8f:9d:4b:01:d6:47:ef:7c:8b:0e:42:06:f3:9a:99:ce:
        b2:76:76:a8:28:82:65:aa:43:18:b8:8d:12:c9:4b:72:
        a3:6d:2d:55:21:9c:58:86:1b:d9:a0:28:07:6b:77:84:
        50:43:87:9d:1a:d3:c5:d4:1b:8e:51:67:24:b8:57:ce
    Fingerprint (SHA-256):
        50:8F:E5:4E:FE:33:0C:64:AC:9A:37:AA:9C:00:AC:51:DE:93:7E:7A:63:C7:79:33:B5:56:81:2B:74:31:F7:24
    Fingerprint (SHA1):
        2B:7B:94:FC:76:6A:1C:57:86:FB:03:CB:A7:E5:E4:BC:8C:09:2F:D9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3511: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123151 (0x310fdccf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:03 2017
            Not After : Tue Aug 23 12:31:03 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:35:52:cf:aa:00:da:f1:c4:7c:ef:37:05:d6:8c:aa:
                    1c:78:ba:f5:58:82:21:57:39:b6:e6:63:17:d4:4d:c7:
                    79:de:31:3c:af:a8:00:b6:c9:54:f2:e1:b2:45:64:dd:
                    ed:be:c0:b0:e7:35:09:69:03:09:d0:f2:ca:8b:79:49:
                    99:0b:8b:17:ae:b3:b6:1b:0d:f3:16:73:63:85:57:b1:
                    4d:35:de:08:5c:07:95:e0:09:51:32:84:5f:43:0e:fb:
                    eb:24:5e:2d:ec:b6:76:c5:76:80:dd:97:95:75:71:80:
                    4a:09:bc:db:d7:ea:44:17:7d:70:f0:8d:ff:7f:52:46:
                    ca:8f:be:ef:7e:8c:50:d8:af:88:ca:44:5a:2f:f4:a1:
                    5f:28:3a:f6:0c:e7:ea:d7:dd:78:f6:15:aa:f5:1a:b3:
                    1e:55:cd:86:ea:08:9a:a6:0f:7c:f0:47:7b:c3:ab:1c:
                    2a:7b:45:44:d5:ef:d1:7d:14:98:9e:6c:2d:2d:bc:57:
                    f0:01:d4:9c:88:50:32:32:64:33:bf:dd:91:75:1c:05:
                    cb:4a:86:b9:62:9c:53:83:1f:3c:ad:fb:b5:2c:7e:63:
                    7b:fd:d3:aa:08:ac:83:04:6e:21:b9:fa:c3:c9:3f:e4:
                    b6:d5:f6:76:3f:36:9b:ac:4c:e0:5c:10:ba:ae:6a:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:3b:7b:dc:cf:34:ea:46:e5:c3:61:5e:86:10:6e:4a:
        1f:87:39:fe:16:a1:73:17:da:12:0f:57:16:6c:10:0e:
        f8:be:f7:7e:78:ef:8d:90:13:b2:75:8c:0c:db:72:9f:
        f4:0a:44:8c:eb:5e:82:79:dd:9a:2c:4d:86:90:64:7f:
        1c:8f:80:c5:a6:1b:1f:18:52:42:44:58:aa:55:54:75:
        ba:f3:74:d6:f1:94:ff:12:bc:2b:aa:78:c5:2a:82:60:
        b2:8b:34:56:e3:11:8c:ab:55:f3:36:18:a0:fb:9a:2b:
        e3:f8:29:68:56:a6:31:0a:cd:6d:ec:63:2b:60:62:9e:
        d1:6c:a9:9b:71:94:c9:b4:e3:b4:3c:06:ad:48:54:86:
        71:6f:3e:1b:9f:41:ce:d4:08:f4:d0:b8:7f:0c:e3:f2:
        86:7d:74:72:ed:dd:d7:ba:87:d5:0b:7b:b0:16:87:53:
        79:03:8f:c2:cd:13:94:da:44:f7:dc:ce:24:30:d4:a2:
        8f:9d:4b:01:d6:47:ef:7c:8b:0e:42:06:f3:9a:99:ce:
        b2:76:76:a8:28:82:65:aa:43:18:b8:8d:12:c9:4b:72:
        a3:6d:2d:55:21:9c:58:86:1b:d9:a0:28:07:6b:77:84:
        50:43:87:9d:1a:d3:c5:d4:1b:8e:51:67:24:b8:57:ce
    Fingerprint (SHA-256):
        50:8F:E5:4E:FE:33:0C:64:AC:9A:37:AA:9C:00:AC:51:DE:93:7E:7A:63:C7:79:33:B5:56:81:2B:74:31:F7:24
    Fingerprint (SHA1):
        2B:7B:94:FC:76:6A:1C:57:86:FB:03:CB:A7:E5:E4:BC:8C:09:2F:D9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3513: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123156 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3514: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3515: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3516: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123157 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3517: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3518: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3519: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123158 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3520: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3521: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3522: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123159 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3523: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3524: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3525: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123160 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3526: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3527: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3528: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123161 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3529: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3530: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3531: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123162 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3532: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3533: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3534: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123163 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3535: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3536: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3537: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123164 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3538: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3539: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3540: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3541: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 823123165 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3542: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3543: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 823123166 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3544: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3545: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 823123167 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3546: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3547: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3548: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3549: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3550: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 823123168 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3551: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3552: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 823123169 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3553: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3554: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 823123170 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3555: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3556: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3557: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3558: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3559: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 823123171 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3560: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3561: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 823123172 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3562: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3563: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 823123173 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3564: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3565: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3566: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3567: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3568: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 823123174 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3569: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3570: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 823123175 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3571: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3572: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 823123176 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3573: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3574: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3575: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3576: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3577: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 823123177   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3578: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3579: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3580: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3581: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123178   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3582: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3583: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123156 (0x310fdcd4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:05 2017
            Not After : Tue Aug 23 12:31:05 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:30:90:f5:8c:2e:8e:eb:01:53:33:44:e4:70:df:c1:
                    54:bd:7f:5d:f2:bb:a0:38:f8:8c:76:01:a8:fb:99:93:
                    ef:6c:1a:10:23:b7:42:c6:c5:6b:1e:0c:2a:dc:e3:77:
                    5f:40:d0:d6:60:09:f5:77:19:73:6d:ba:41:41:c8:63:
                    a4:38:10:3a:a8:81:fb:2e:4d:53:65:18:16:70:c6:e4:
                    1c:a7:34:9e:0f:aa:e5:24:f7:85:19:58:19:e4:b7:31:
                    23:03:c3:07:d7:d7:7b:7e:44:91:3f:9f:ae:2d:aa:c0:
                    16:cb:8d:dd:54:0c:41:d8:3d:ec:a6:1f:27:7f:cc:4a:
                    d8:a2:c1:b8:11:cd:39:10:72:a3:7c:4e:7a:20:2c:0f:
                    3e:d0:9b:7b:e4:02:a2:4a:e2:1a:29:a9:53:d6:ee:c5:
                    38:d1:7d:28:5a:2d:17:1d:2d:a0:d1:e4:0b:ae:f4:5b:
                    ed:70:95:c9:d2:ef:79:d1:b6:1b:be:6d:72:25:42:4b:
                    8a:fb:65:ce:af:ba:6d:c0:9e:7d:c4:a6:2c:7e:53:37:
                    27:8f:d9:11:cc:ef:af:c1:ad:3d:40:bf:e0:7c:ec:be:
                    e0:7f:aa:8f:be:9a:30:b5:4f:16:4c:20:5a:f2:9a:1f:
                    0e:88:43:ff:1a:f0:83:b3:fe:4b:5c:98:e2:27:58:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:df:ae:42:ad:d9:f5:b2:2d:9f:4b:94:fa:d3:20:6a:
        37:0a:6a:47:c0:fa:cd:72:3c:73:c5:2e:00:60:c5:27:
        d6:ee:28:c2:1c:d7:62:83:50:6a:38:52:e5:d2:73:4d:
        bf:c9:d2:07:f5:a7:68:a4:50:f6:d6:7b:f4:ee:e9:11:
        6b:e4:f7:dc:0d:a5:6a:db:fd:b2:70:09:d4:66:c4:c0:
        67:93:66:0e:df:a5:e9:c3:c2:d1:a7:32:23:d0:69:6a:
        bf:89:f7:50:ae:fc:71:57:01:db:21:10:b9:88:30:4a:
        b1:cc:9e:36:19:a7:de:35:2f:11:60:3e:44:f5:58:48:
        ed:71:57:2e:d0:b3:ad:a2:45:aa:0b:0f:d9:8a:6e:77:
        90:3e:42:c6:55:7a:f0:45:b5:ce:97:75:2b:9b:6f:e7:
        69:bc:af:85:69:15:7d:69:5f:4e:26:a1:c1:c2:56:4b:
        75:33:8f:4e:7a:53:8b:88:c0:05:3a:2e:f1:3b:27:9c:
        5d:0a:3d:89:9d:c2:95:17:37:32:35:67:e0:65:25:f0:
        bd:68:9b:09:2d:fe:dc:c4:c2:0a:6a:ae:c0:7d:9d:5c:
        64:aa:e7:1f:4b:e8:c0:d9:c0:0d:43:33:30:01:2d:bf:
        fc:18:fb:29:f9:51:19:66:94:89:3c:15:a8:07:92:69
    Fingerprint (SHA-256):
        E1:F3:32:A7:D9:C8:27:68:53:98:ED:D9:27:0F:2B:C3:B3:BE:F5:EA:FD:2B:4B:AD:44:50:62:27:0E:61:CE:F5
    Fingerprint (SHA1):
        2F:04:43:AB:14:7D:4B:28:11:3E:DA:35:80:62:62:CF:18:1D:20:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3584: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123157 (0x310fdcd5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:05 2017
            Not After : Tue Aug 23 12:31:05 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:83:6f:f8:65:7b:80:f8:77:0f:c3:74:13:45:af:22:
                    1d:c6:fd:ed:05:d0:44:5a:5f:fb:93:b8:79:54:ac:dc:
                    3d:a3:d0:0d:a4:b9:fe:9e:6f:b6:c2:b5:d0:dd:de:3e:
                    d6:1a:c6:22:e4:a0:fe:b9:f2:06:44:b4:53:56:b0:71:
                    d4:cc:9b:4b:a7:eb:0b:4e:62:02:27:ec:d6:0d:4c:3f:
                    23:99:1d:de:e6:64:b6:5f:84:03:b2:56:c0:b5:7b:5c:
                    28:95:95:71:a7:59:c4:c5:53:c1:b9:ea:be:b0:84:b7:
                    5c:8e:f4:b1:4a:b1:51:04:22:45:43:aa:2e:2f:cd:25:
                    4e:d0:93:c9:59:c2:d9:09:e5:9f:32:ff:aa:ea:66:30:
                    70:93:96:fc:e1:cb:96:a5:85:19:33:f5:b9:84:23:0a:
                    da:d0:aa:f5:62:6d:5e:5b:78:7a:68:c8:e1:96:aa:71:
                    0d:21:90:f9:2e:e0:17:aa:93:83:f1:85:8f:ab:31:53:
                    e5:26:d6:9a:e8:57:d4:d0:77:da:c8:f9:a5:af:f1:13:
                    8b:90:12:fa:36:84:6c:04:86:4b:62:59:ec:44:28:71:
                    fc:8e:89:fc:eb:2c:75:9c:40:3f:40:db:80:5a:5d:4b:
                    21:e0:98:2f:00:f0:80:97:c0:25:ba:0e:ea:47:75:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:a8:09:51:9d:06:6b:da:54:c2:b2:08:cf:ad:bd:b1:
        33:bf:16:6e:aa:84:1a:92:40:6d:53:d3:e2:0f:59:c7:
        86:7d:c6:7c:d1:b0:65:69:03:77:10:d5:a5:bc:70:18:
        50:f7:a7:cc:1b:58:5f:f5:3e:29:dd:aa:6e:e1:3f:a5:
        23:db:73:d1:63:92:e2:e6:a7:dc:24:44:ef:2c:d8:ad:
        57:69:03:df:40:1d:23:67:e9:bd:4d:49:f8:e6:38:45:
        80:58:04:bc:dd:bb:46:30:14:dc:79:f1:74:26:f3:30:
        39:ed:51:87:36:d7:a8:e2:e5:0b:1a:ec:98:7e:bd:2d:
        d3:47:5e:97:1b:d4:ef:05:62:e6:53:37:2b:f7:6b:2e:
        5d:ff:ee:5c:61:07:ff:83:83:62:b9:91:45:3d:bf:c3:
        cf:9f:f8:b4:2e:04:58:db:8f:66:9f:b9:a4:8c:e8:21:
        56:67:91:2a:f7:99:6f:1c:4c:6e:82:e2:e9:3e:64:bc:
        6c:79:96:79:7a:9f:70:a8:9d:ea:14:ff:c9:72:83:18:
        4e:8b:cd:27:dc:7a:a0:5e:af:c0:5c:4b:84:be:c5:a1:
        c0:91:04:ec:64:36:e5:19:bb:b2:f4:13:ed:ec:10:35:
        ac:48:ac:cd:7c:85:ff:fd:fe:37:25:34:a3:04:a5:95
    Fingerprint (SHA-256):
        EF:BB:7E:E1:8A:E8:93:D1:F3:92:11:C0:7B:50:5A:DE:2C:E4:85:F5:4E:08:F3:62:41:18:2D:6B:07:34:6B:0F
    Fingerprint (SHA1):
        E4:27:7F:1A:73:81:7D:84:19:7A:27:F6:B2:05:2B:EB:BD:1E:EF:96
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123158 (0x310fdcd6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:05 2017
            Not After : Tue Aug 23 12:31:05 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:c1:ec:cf:8a:28:54:7c:f3:4c:1b:41:55:a9:12:80:
                    6f:4f:b7:8d:98:5d:18:1b:47:40:54:7b:34:ba:01:24:
                    e8:b1:bb:8a:aa:dc:5b:ec:aa:ed:f8:03:a7:e9:e1:d6:
                    7e:c0:e5:8d:be:ac:a7:24:a3:13:23:df:c7:61:56:69:
                    b5:38:a2:50:75:45:71:5a:4e:0b:3e:98:cf:bf:b9:b1:
                    51:7e:93:08:34:c5:84:3a:30:0e:2f:3b:0f:7b:a3:40:
                    d8:41:72:73:43:a6:c2:71:d5:2b:ba:6a:12:8d:13:a5:
                    47:cd:f4:1a:97:68:f5:dd:ac:b8:8a:67:38:37:e2:5b:
                    1a:30:87:80:29:5d:f5:7d:32:62:53:12:70:ad:87:e8:
                    0f:f5:ea:97:5e:db:08:7a:ef:96:72:0c:22:31:7d:95:
                    8b:2d:e6:44:2e:cd:f5:63:36:b1:5a:26:95:40:bb:10:
                    46:24:7b:7a:81:97:bb:16:9f:a7:9c:bb:10:40:d6:0a:
                    80:63:62:c6:80:76:0f:3d:ff:80:ba:96:da:6a:9a:34:
                    a2:af:4c:39:8c:89:eb:ab:72:03:93:9a:80:c9:2d:ff:
                    37:4a:e0:3b:b4:85:3b:b1:33:da:34:23:af:f3:de:19:
                    05:70:e4:f6:42:cb:bb:2f:2e:04:e2:a1:66:78:95:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:a0:fc:f8:36:53:4a:78:55:47:4a:09:fc:81:df:fb:
        d2:a1:65:60:eb:ec:75:73:51:73:2d:4f:19:d2:91:67:
        b0:e3:18:79:14:ff:19:ae:4e:b3:b1:81:1b:82:8a:47:
        1a:c1:0f:3f:d7:60:3b:34:73:ba:85:74:15:97:e6:af:
        f0:b3:88:9b:97:69:cb:34:04:22:f8:bd:37:8d:4f:73:
        cf:6d:69:81:36:63:b4:a1:6a:25:82:ad:53:e6:e9:45:
        5e:4a:f2:1e:fb:15:c8:27:47:b0:dc:bb:90:d7:c3:47:
        79:cd:55:c5:71:93:a0:41:23:df:97:e9:7d:0f:16:d8:
        3f:4a:44:0d:b6:f8:11:bf:2e:45:b1:99:0b:63:f4:48:
        3f:04:16:66:5e:95:ae:bd:86:59:43:58:28:30:13:b3:
        9b:1b:d9:52:f0:53:19:2e:bd:45:f7:1c:ca:96:29:5f:
        65:97:a9:1e:c2:1e:26:fe:38:f4:de:ac:ce:31:fa:0a:
        2e:8f:c3:85:7b:c3:a6:4f:84:e0:52:77:22:3d:d9:43:
        64:6f:eb:6a:89:f0:f3:9b:69:2b:99:34:93:0a:83:c0:
        40:8c:d5:33:52:25:b4:a9:40:47:27:f2:c6:a0:fd:43:
        29:11:c1:d2:fa:31:d2:8d:75:fd:04:70:f3:d6:ca:70
    Fingerprint (SHA-256):
        24:1C:4F:91:77:62:B9:30:CA:11:40:62:A0:52:FD:CA:2D:0F:7C:38:24:67:EB:CD:42:8F:27:22:FA:17:63:42
    Fingerprint (SHA1):
        4A:9B:21:47:CE:D1:70:40:FF:93:10:2A:63:1A:FB:E9:C4:D1:DE:2D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3586: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123159 (0x310fdcd7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:05 2017
            Not After : Tue Aug 23 12:31:05 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:34:c2:de:0b:0e:d0:f2:e0:1f:5e:ed:b4:98:28:fe:
                    8f:2c:f9:27:61:18:25:43:e8:dd:8c:c2:40:37:33:94:
                    40:d1:c2:0e:ee:4c:12:f8:a9:ad:1c:6f:cb:5a:90:91:
                    2b:34:5b:90:4b:f3:12:e7:5d:eb:2f:2c:dd:02:ab:1f:
                    1a:db:af:91:5f:b2:12:ef:ac:2f:7b:4b:4d:71:62:cb:
                    ff:57:1f:90:67:90:f2:37:0f:84:8d:6b:ec:e4:fc:19:
                    c3:ef:d1:1b:b6:f9:7c:f1:ef:09:26:18:e3:68:72:63:
                    72:ab:9a:31:06:a5:e5:d1:fa:f5:76:77:1d:83:86:53:
                    1a:50:30:1d:c3:db:5e:9a:42:e0:43:6c:a8:0e:e1:36:
                    20:85:5a:97:8d:51:43:af:9c:c0:8e:34:3e:f2:d3:1e:
                    de:1d:dd:88:bc:c8:39:4e:3d:45:ce:24:32:e1:73:0c:
                    1e:de:0b:f2:10:b6:73:72:31:9c:0a:98:e8:e9:d8:b1:
                    89:63:96:e8:34:50:05:78:4e:bc:e9:fe:b7:86:44:02:
                    4a:81:8e:49:1e:e1:ec:dd:34:d3:1c:b8:56:7a:e8:b6:
                    2f:ae:ef:b1:de:6a:fe:97:eb:b8:e4:03:ce:5e:c8:5e:
                    59:22:44:1f:be:74:de:d6:bc:f6:32:87:a0:e7:b5:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:f8:d0:8b:15:1b:9b:42:d7:88:24:bd:63:50:24:2c:
        3b:7e:a8:e4:00:d8:bf:dd:ec:69:25:62:8a:f1:ae:2b:
        27:61:04:ce:d4:38:e3:c0:dc:4e:cf:63:a5:93:17:53:
        bd:eb:48:50:9b:8f:cd:4d:b0:d9:f8:16:6a:d2:91:6b:
        69:eb:08:15:3d:7c:85:1a:57:5e:3b:c6:a4:d2:8d:6b:
        a0:61:20:49:52:d3:cf:ae:08:98:3c:d9:56:61:81:b8:
        d8:99:5b:0b:28:5f:fd:95:a1:ba:36:95:4e:83:53:9a:
        bb:b4:52:c9:4b:2e:03:90:37:27:39:fe:94:6a:10:8a:
        0b:d6:9d:52:5d:cd:a6:3e:6f:0a:46:a8:34:93:bc:b0:
        51:5d:29:0c:4b:7f:94:d1:f0:54:8c:5a:91:be:90:45:
        3a:6e:f8:d2:7d:dd:83:44:64:3b:c3:8c:1c:53:8f:6e:
        64:2e:a8:bf:35:7e:4e:71:f1:c5:69:06:21:ab:4b:86:
        f3:ef:8c:2d:a6:e4:c3:6b:81:94:73:73:b9:fe:5f:56:
        24:a9:cb:45:de:3f:7a:06:b0:6b:f9:a9:78:f6:e4:f9:
        c3:5e:3a:e4:bf:ee:8a:6b:5b:96:8c:8b:b8:77:98:5b:
        ff:a9:2b:a1:ec:16:2e:d3:82:88:69:f1:ba:09:ce:00
    Fingerprint (SHA-256):
        88:18:93:03:16:32:90:21:93:96:B6:6A:9C:8F:AE:56:B8:06:EE:F7:44:1A:BD:F8:EB:92:6B:84:58:DE:AE:BC
    Fingerprint (SHA1):
        4B:C1:23:F9:F8:0B:A8:B8:2A:D5:95:B3:C0:7B:E4:50:CC:CC:68:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123160 (0x310fdcd8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:06 2017
            Not After : Tue Aug 23 12:31:06 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:7f:b6:c8:97:51:36:86:2e:52:eb:88:3f:92:dc:ce:
                    f7:14:87:a5:79:f9:54:8b:06:30:e4:7a:0e:df:09:39:
                    c8:0f:bf:f2:48:64:44:eb:de:08:33:84:b4:4c:3d:d7:
                    61:97:31:15:19:9f:fc:d4:c1:35:92:d9:e1:72:b1:ac:
                    67:e2:d0:43:f8:88:95:34:ba:05:7e:89:18:82:64:79:
                    73:ab:a4:4f:8a:cc:64:5d:fb:f9:bd:c6:4c:34:80:79:
                    f3:fd:0b:42:2d:c4:f3:b9:8d:5f:74:c2:cf:57:80:8b:
                    0f:8e:1c:b9:5d:c4:28:c1:fa:74:9f:f6:49:be:a6:f9:
                    0e:0b:8a:0d:f7:90:ae:75:c4:c1:14:70:1d:52:4c:94:
                    d2:23:54:2f:83:91:67:64:1b:81:74:b5:40:2f:18:53:
                    ff:3f:94:58:a4:8a:a8:3b:f0:0a:27:b4:9a:71:ae:7b:
                    cf:b4:39:ba:11:9b:0a:35:5f:17:7e:b4:86:ca:af:b8:
                    68:74:9a:09:7b:5a:b0:c7:c5:e2:dc:8c:4f:a5:cd:2e:
                    4a:73:0f:a7:99:5c:20:1e:8d:d6:3a:b4:83:49:30:a5:
                    8c:46:7d:30:5c:84:f3:32:22:84:83:28:a0:74:c5:e5:
                    45:7c:9b:36:75:ea:a5:8a:3a:58:66:f1:6a:d1:12:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:74:0f:f6:58:4d:5f:4a:08:9f:9a:0b:bf:6a:61:5d:
        35:2d:59:c2:ad:22:22:86:90:b7:a1:15:44:d5:d3:dd:
        ac:c4:38:70:9f:da:91:0b:85:39:99:62:2b:25:2b:39:
        16:2b:73:34:1f:ae:d2:dc:4c:d2:57:5a:12:22:9b:97:
        66:ac:1e:e2:22:36:39:7d:f2:79:62:f0:e7:d8:90:56:
        61:fd:3a:df:f5:e8:91:f2:5d:fd:84:53:dc:4b:dc:54:
        ef:fd:4b:6c:58:f3:a9:79:8d:3c:fe:4c:ca:6f:c1:9a:
        50:66:85:ab:a9:7d:9a:cf:4e:b7:a1:54:ef:84:fc:8e:
        02:b3:5a:8e:ce:ab:20:8e:59:be:16:3f:f3:36:85:a8:
        ed:94:08:15:bc:ff:ef:e1:fe:e6:0a:1c:a3:15:0d:b7:
        9a:46:1b:5e:76:92:dd:c5:11:73:7a:d6:f2:08:fe:01:
        3c:5d:e9:c0:a6:74:46:a0:9c:6e:12:b9:5a:64:76:2b:
        d7:ba:aa:19:44:43:3d:7b:e7:a7:93:24:23:e4:3b:0e:
        a3:ca:ea:cf:dc:b8:da:d8:16:b6:ee:b2:a5:b3:52:d2:
        50:da:25:f3:a0:5c:df:9e:5d:1d:62:c2:08:a1:5c:c1:
        18:4a:1a:36:b9:e7:a2:f2:9a:10:d8:c9:c9:a5:fb:70
    Fingerprint (SHA-256):
        51:1E:51:3B:E9:4A:A4:B7:4D:74:43:0F:62:86:42:54:88:C8:29:97:C9:BF:7B:E3:0B:15:9B:CD:FE:35:FD:8B
    Fingerprint (SHA1):
        FA:60:25:3A:FB:86:F7:81:6D:6C:0C:69:A2:70:A0:FA:4A:60:11:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123161 (0x310fdcd9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:06 2017
            Not After : Tue Aug 23 12:31:06 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:84:cd:89:90:bd:dd:ce:b7:37:c5:9a:d8:fc:19:8a:
                    63:ff:c7:43:b3:d3:69:11:f8:85:23:20:19:bc:a3:22:
                    6e:25:9a:ed:56:05:20:36:3b:52:9e:69:77:17:f1:b0:
                    c0:51:28:0c:b5:09:6e:80:40:eb:8d:f2:d9:8d:bc:f9:
                    df:27:b1:82:a1:44:31:93:82:6a:e9:b5:2c:8f:11:d6:
                    48:e6:6c:ac:a5:27:9c:be:13:86:b1:f0:14:b1:9a:ec:
                    af:1a:9f:91:50:dc:d3:7e:27:c2:d4:bb:6d:f0:78:f0:
                    2b:84:7b:7c:ee:b2:c4:0d:65:8b:ed:19:b3:99:14:bb:
                    5b:f4:88:cc:09:2f:a2:9b:d5:60:b2:b2:25:de:36:e9:
                    8d:60:f1:4e:43:79:0d:bf:13:5b:a7:fe:5d:f3:16:ff:
                    30:f7:e0:69:e9:ea:d1:8a:2b:fc:21:5f:ab:04:b8:16:
                    de:17:cf:3c:7c:d7:e3:3e:7b:98:87:c1:b3:fc:f4:8e:
                    23:2b:19:dc:33:e6:65:20:cf:9a:2c:8e:7a:27:79:d9:
                    c7:87:dd:db:99:7b:f5:74:2c:b6:80:98:90:40:93:55:
                    6d:aa:c2:06:b6:b0:ff:35:f2:aa:66:71:e4:4d:03:14:
                    4e:c8:a5:8a:27:3f:57:44:36:1b:b0:23:7a:ee:ee:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:ea:bb:45:28:16:0b:74:f6:f8:25:44:33:ee:14:ab:
        e3:1f:ed:49:b0:ad:99:ca:91:50:e3:b4:d9:8c:20:c6:
        54:da:d6:be:1f:ec:d3:5e:d5:43:4d:a7:bd:16:d7:5e:
        cf:eb:de:5d:08:7f:0d:03:5c:50:42:9c:77:5f:f4:a9:
        98:1b:57:0a:8b:f9:3a:18:80:8d:9f:40:7f:a0:b5:57:
        1d:7e:5c:83:9d:9c:17:f1:f7:2e:94:92:51:61:11:87:
        7b:11:a1:07:6d:ec:89:57:04:15:98:30:00:1a:a9:cd:
        85:74:b9:65:0d:c8:0a:1c:ea:15:40:9b:cf:ba:53:31:
        81:7e:28:13:01:db:44:22:e4:7f:02:56:17:e0:97:ca:
        84:4b:cd:c3:ea:75:4c:7e:eb:3f:3a:11:66:74:e0:d0:
        c0:6e:dc:cc:e9:15:d2:41:a5:9a:a2:19:83:d2:54:af:
        0e:29:81:45:e8:7f:06:87:f7:20:6c:19:85:a4:95:9d:
        0c:97:a5:06:0a:8b:e4:7f:5f:38:69:73:21:f4:d8:4d:
        63:fb:08:cd:e3:a1:36:ca:8c:2f:83:f1:7e:60:1b:55:
        c1:6b:95:58:73:03:2a:ad:54:ad:60:70:51:f6:1f:ed:
        6e:fa:cc:ac:d8:4e:a6:1a:dd:d2:9e:81:83:0c:12:f4
    Fingerprint (SHA-256):
        75:AB:84:D7:28:AA:89:34:65:4A:60:15:C0:42:B3:70:B6:B5:03:EE:45:64:F7:E8:45:03:FB:36:19:57:51:B6
    Fingerprint (SHA1):
        21:CE:90:BB:BC:62:A3:49:26:6E:11:56:54:07:83:4C:C8:6A:E1:6E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123162 (0x310fdcda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:06 2017
            Not After : Tue Aug 23 12:31:06 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:a9:ee:6f:70:66:db:b0:a6:e9:66:4f:df:63:2c:70:
                    a2:02:63:31:af:5e:d0:6f:a2:c4:2d:16:09:1d:3a:d4:
                    e3:d9:6f:f6:2f:f5:70:f8:69:91:21:8b:e0:0a:72:1e:
                    5b:fd:d4:0c:b8:a4:2c:6b:1c:24:da:fd:ac:4d:29:9e:
                    98:b9:c2:a2:33:b3:ae:a5:7f:1b:4d:3a:a3:f5:ea:29:
                    aa:36:3d:15:8d:96:5d:56:ac:0c:f6:c4:92:ed:64:97:
                    2e:d1:56:85:13:a4:d8:ff:b5:68:2a:b1:09:72:e1:92:
                    f7:0a:36:ed:57:1b:c0:df:bf:68:f9:81:0c:60:ed:b5:
                    b4:12:a3:0d:01:d1:c1:a0:58:e0:cc:7f:1c:da:f6:df:
                    4c:e8:6c:4d:fd:73:d3:95:bc:1c:d9:14:a0:d5:7e:c5:
                    9b:94:bc:92:ad:bf:57:f5:d1:25:7e:b0:bb:4c:cb:3a:
                    1a:e3:86:3b:e9:01:79:ea:5c:0f:25:37:df:84:df:d8:
                    d4:fc:78:25:61:b6:00:2b:33:d8:58:e0:6b:6b:a3:f4:
                    87:60:36:82:56:74:6d:6b:84:49:85:77:05:ef:7d:40:
                    b1:71:a3:5a:57:94:66:e7:f1:8d:39:ac:1f:a8:09:49:
                    82:d1:d9:10:55:dc:c8:93:64:8f:42:d0:85:9c:8f:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:c7:d1:cc:0a:fd:ab:29:dd:61:84:28:7b:9c:d1:90:
        3b:f6:81:9d:ca:49:94:5c:74:d5:a1:5c:49:a9:c0:6d:
        6b:9d:b7:fa:f3:d9:29:ee:b9:45:b3:98:cc:79:87:ae:
        bd:c4:39:d8:4f:a7:53:45:e8:3f:41:94:9f:28:d1:c8:
        cf:c1:07:78:14:a1:2b:60:7b:25:4e:82:e4:f2:e3:a9:
        16:93:a8:ad:b0:f3:d3:82:1c:d4:e9:82:fb:fd:46:3f:
        12:72:ca:b1:d8:3d:86:cc:6b:da:85:eb:0c:b2:f7:50:
        98:ab:cf:bb:47:71:29:de:28:e1:27:67:86:1a:e3:df:
        a4:8c:c8:fb:00:5e:04:b2:11:7c:ae:7f:39:84:e5:d3:
        54:04:52:43:8a:91:a7:ee:c6:4c:69:48:b5:40:dd:f6:
        82:fc:eb:35:46:b4:00:4c:03:d6:e2:53:e0:d4:46:11:
        c5:cc:41:da:48:2b:e5:f8:8b:ba:b8:01:8d:ca:2e:20:
        5c:11:1e:df:5f:e4:c9:12:37:de:81:24:fc:03:27:70:
        d2:ee:3b:5d:5c:14:d5:b5:ee:5b:96:71:de:36:20:d0:
        3b:86:d3:e7:48:0b:a7:fd:f4:d2:a8:16:03:75:92:21:
        e7:dc:16:ec:90:8e:79:25:cf:5f:00:bf:e4:61:6d:0f
    Fingerprint (SHA-256):
        E8:86:C8:A8:79:F5:D8:85:BD:73:A8:8B:3E:83:2A:2C:99:73:E3:2C:75:89:3F:39:EC:5E:94:8D:EE:C1:8B:94
    Fingerprint (SHA1):
        FE:25:91:6F:AF:6E:F5:9D:7A:A4:E1:BA:D1:42:47:53:75:CB:78:5A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123163 (0x310fdcdb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:06 2017
            Not After : Tue Aug 23 12:31:06 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:3d:aa:4a:7e:01:4d:55:b2:fd:6b:f2:a0:8b:63:af:
                    b5:46:c3:a3:23:33:02:49:b2:23:14:9c:bf:13:a5:d4:
                    db:14:82:a4:fa:ac:4b:3b:74:f6:6c:f6:66:d0:54:d0:
                    04:39:80:ac:54:fb:ee:e6:a0:5a:22:c8:8d:ca:52:ac:
                    b8:1b:ed:cd:d9:18:76:5a:e8:20:1a:b0:0a:6b:ec:e7:
                    14:d5:cd:36:23:b4:c3:e7:84:f2:97:21:ec:c0:db:ff:
                    6b:1f:0d:c9:a2:83:da:60:c6:7c:00:dd:fa:7d:52:b3:
                    11:8a:d5:75:0d:cc:3e:50:43:27:2e:23:93:8a:c3:e6:
                    f8:07:65:e2:28:3b:da:03:f7:91:97:72:4a:fb:95:6c:
                    ba:e7:77:d4:0f:8f:59:29:8e:f7:94:06:a9:6a:d4:46:
                    f1:aa:f7:34:e6:bb:22:0e:90:ae:a0:8f:3a:0e:c0:1c:
                    7b:0b:54:ce:da:aa:99:dc:89:d8:c3:b8:77:58:ec:68:
                    9f:2f:c0:64:3d:20:3d:17:3d:06:3d:80:2f:0d:4b:82:
                    a6:32:f3:c4:ef:46:2c:45:c2:57:76:b6:16:e1:ee:3f:
                    54:1a:fb:91:70:69:21:0d:36:7f:3b:cf:66:dd:c5:f1:
                    88:75:1f:09:a1:4f:af:f6:4e:03:39:ff:ea:3b:71:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:4b:93:68:29:49:85:52:e2:76:11:c1:52:07:19:e4:
        5e:5f:8d:d8:90:f1:cd:3a:d0:8d:69:c3:c6:0f:a8:b7:
        0e:1e:e7:99:d5:23:ce:e2:12:dd:4e:8d:c2:02:2c:05:
        a6:55:57:ff:85:ff:d6:7e:e4:98:e4:bd:97:8e:1a:af:
        d8:77:b3:58:f6:ed:32:9b:ea:cd:c9:f2:a1:21:e1:56:
        85:33:d5:1e:91:ac:dc:05:1b:1f:ab:f9:24:21:d7:28:
        e1:b8:36:3c:d0:e3:7c:69:a3:73:36:73:a3:91:2a:41:
        7d:c3:6e:f3:fc:87:8f:c9:67:93:58:31:62:5f:0f:ce:
        4f:9b:dc:f1:00:cc:25:8d:58:fc:fa:1b:31:11:0d:87:
        1a:81:14:88:ee:d3:bc:da:58:3a:e1:4b:a7:00:a8:d9:
        d3:94:ac:07:7b:bf:08:1f:48:1d:3e:70:68:18:a6:04:
        38:a3:4e:07:9c:ba:4b:44:d1:7f:8f:89:2a:da:98:8d:
        1f:4e:e0:6d:66:19:1e:cf:66:6c:11:df:dc:4a:7d:a8:
        7e:9a:95:aa:58:df:b0:74:b5:b9:d7:69:6f:e9:cc:91:
        e0:d3:34:d3:b7:b8:f7:1e:c1:7c:f5:1b:b8:b1:11:25:
        68:0f:f4:dd:b2:9a:a6:35:aa:06:2d:4f:01:51:fc:9f
    Fingerprint (SHA-256):
        88:01:91:F8:1A:A9:CB:72:D4:87:CC:ED:02:80:C6:30:60:10:31:47:C1:B7:CD:09:C4:FA:98:40:E1:79:31:48
    Fingerprint (SHA1):
        71:FD:32:0D:58:82:46:2D:1A:96:6F:B3:01:10:BD:38:68:C0:2C:66
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123164 (0x310fdcdc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:06 2017
            Not After : Tue Aug 23 12:31:06 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:ad:7e:0d:f6:9d:5f:b4:bc:1b:d3:70:43:ed:23:57:
                    bd:64:03:74:cb:99:2e:43:0a:5a:73:19:5c:9f:f3:a0:
                    fc:e7:83:82:09:cb:46:7f:cc:4e:f4:00:92:8f:f5:24:
                    b8:b0:ce:5e:a6:5a:49:f4:4f:33:4b:81:11:ab:ac:18:
                    91:77:23:c0:ae:61:30:1c:85:f9:36:a5:85:ee:17:d2:
                    cc:e5:be:d4:3b:91:5b:fc:3f:e2:50:72:d7:d3:19:2f:
                    1c:af:9a:05:0d:1e:ae:bd:ef:34:5e:90:81:fe:5a:f4:
                    00:3f:e3:a7:1b:70:0f:0e:dc:0b:3c:b3:e9:64:82:2b:
                    cc:ce:1f:8f:c2:a1:02:1a:9a:16:03:04:70:33:b2:12:
                    e5:e4:e3:2d:06:2d:69:fa:51:68:90:45:80:32:ba:eb:
                    0f:05:5e:a3:7f:25:fc:3a:75:c5:11:de:2a:d3:ba:f5:
                    2d:5e:d6:fc:c7:ac:28:5f:e8:10:13:f4:6d:bd:c3:98:
                    23:62:85:83:fe:9a:4e:b0:65:f5:b8:b5:5a:cd:bd:31:
                    de:8e:44:70:0f:4a:c8:bf:e1:e2:d8:f2:8e:b3:5b:8d:
                    6c:a0:c7:b4:45:63:e9:ec:d4:21:ee:3f:94:c4:9b:55:
                    ab:4a:0d:35:18:e0:1a:70:37:f5:99:eb:9a:3c:f5:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:ee:52:e0:f5:cf:7d:ae:29:dc:10:16:3d:f5:5f:a0:
        f6:b9:9d:76:f3:38:7b:dd:1c:0e:de:9d:aa:d4:a6:f7:
        4a:d4:6c:63:e1:b9:f5:bc:99:80:3b:d9:4b:26:19:da:
        33:0d:0b:1d:37:1d:f4:97:41:af:d9:37:a0:07:18:6d:
        e3:e0:ef:48:ee:22:b9:e7:29:e8:df:00:94:3c:bc:e0:
        e3:6b:5f:88:d9:d1:82:21:e2:ff:45:d6:d4:a6:d3:59:
        08:e2:b7:46:f9:2c:64:52:e9:ac:a5:fb:fc:66:ea:9b:
        00:34:40:9b:5f:a3:90:e7:6a:c9:eb:27:8a:64:51:c4:
        69:52:65:f4:ed:8a:8f:35:c5:d4:dd:b5:16:49:09:04:
        cf:fa:03:fd:29:ff:2b:ac:0f:6c:55:30:9d:61:22:82:
        14:69:4b:e5:58:a1:5b:28:a2:66:8e:7c:e9:49:fb:e5:
        c8:dc:ac:0f:c5:32:3e:f4:af:82:5a:06:44:ca:9e:a3:
        11:f9:bf:57:e9:0b:17:7b:92:60:03:08:1b:91:12:4f:
        e0:d5:f4:34:87:17:43:a1:3e:87:e0:86:17:84:00:71:
        3e:c9:02:da:b7:be:d4:7d:7d:5d:cc:2b:05:f8:bb:51:
        2b:90:d7:1a:c0:a0:c3:30:d9:bf:41:e2:64:e5:a6:31
    Fingerprint (SHA-256):
        03:D9:33:50:47:1D:D8:A9:82:80:0E:F9:0D:11:BD:7D:20:0F:71:71:72:D3:3D:F9:66:49:A1:5A:19:AE:37:A7
    Fingerprint (SHA1):
        44:58:D6:FF:98:5B:E7:EE:50:C2:BC:DD:7D:4D:6A:1E:17:0E:F1:46
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3593: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123179 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3594: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3595: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3596: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3597: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123180   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3598: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3599: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3600: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3601: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123181   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3602: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3603: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3604: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3605: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123182   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3606: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3607: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3608: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123179 (0x310fdceb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:09 2017
            Not After : Tue Aug 23 12:31:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:f0:f3:6d:31:cd:76:9c:c8:08:3e:e8:0c:d4:52:6c:
                    75:a8:70:34:de:25:01:ef:6a:30:b6:7d:7d:48:7b:bb:
                    bb:63:a8:a0:bb:9b:b1:39:1e:95:9d:64:c0:e0:0a:4c:
                    a3:fb:21:34:86:54:29:f5:9c:44:93:e3:f7:ef:bb:24:
                    e7:03:8b:42:8c:71:4b:eb:f0:7a:69:7b:b0:7d:f3:28:
                    5d:ea:ba:a4:7f:58:10:1e:76:81:4c:74:05:5d:5f:52:
                    ee:29:ce:06:33:86:4a:2e:e6:bf:b9:32:00:da:8f:ac:
                    1d:82:21:7d:20:f7:9a:c6:af:f8:3e:bb:81:74:58:d4:
                    4f:fd:d1:a2:0c:00:c6:09:a3:ba:5b:7d:37:26:e3:58:
                    77:be:ad:96:8e:e9:1f:6f:1b:54:45:00:de:25:12:92:
                    d7:bd:86:f0:45:92:86:d5:9d:09:4c:bf:0e:37:11:19:
                    5f:e1:dd:20:39:b3:e8:72:e9:4d:50:05:2d:fa:e8:8e:
                    b1:f8:1e:b8:8d:69:e1:06:a3:a2:2f:49:bb:c5:09:5b:
                    92:3e:97:04:42:e4:1d:9e:e7:f8:36:04:df:8c:fb:a4:
                    07:09:5e:ab:9f:e9:ba:87:46:18:30:98:3e:c5:2f:19:
                    70:f0:6b:35:43:97:49:41:fa:99:57:b0:95:44:67:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:34:b7:71:3c:37:87:39:9b:3c:2f:57:62:a2:a7:08:
        b3:52:9e:a7:fa:11:a8:b3:7d:5a:de:20:7b:45:c6:b4:
        9e:5b:d1:f7:4f:e4:d9:f9:13:ac:18:41:60:d2:66:05:
        4e:7f:8e:9d:69:ce:be:e6:09:8d:a9:a3:66:b6:0d:42:
        b0:bf:b6:d9:12:5c:64:09:f4:77:d3:ef:8e:ed:a0:9e:
        b3:69:d5:93:b5:b6:8e:bb:4f:31:fc:e4:ec:7e:99:aa:
        9e:ec:41:d3:21:2e:46:d7:2d:4c:1e:32:55:67:50:d6:
        ce:2f:3d:b3:7a:1f:b7:c6:1e:3d:7d:0f:89:1a:1f:8b:
        12:2c:6e:e5:66:16:c7:1f:dd:d9:34:93:73:a0:68:e5:
        3f:8d:64:7d:d1:cb:78:66:cb:15:ae:83:32:c3:24:77:
        51:86:b7:e1:f9:cd:63:c7:de:12:89:4e:00:94:2f:48:
        c9:e6:2a:83:bf:e3:f5:b4:03:02:18:d7:43:67:42:99:
        66:a8:22:a1:3e:e6:1e:48:ef:a9:d3:d3:55:d1:16:12:
        03:0b:86:2e:72:b9:ce:f1:31:e9:d8:ea:21:07:3c:c2:
        1e:d6:b8:e7:2e:a9:c3:b0:c8:be:e8:78:c7:ce:5a:0b:
        ed:fb:c1:f8:18:12:3d:cc:69:e7:4a:ef:a3:fb:f8:37
    Fingerprint (SHA-256):
        C7:D5:08:F0:4D:27:30:31:EE:59:E0:CA:E3:DB:34:CA:F2:C4:9E:0A:BE:92:6D:29:B6:26:2F:87:98:26:FB:AE
    Fingerprint (SHA1):
        7C:5F:E8:9E:4F:E7:5D:FC:A1:5A:BB:0D:74:68:C7:F1:CD:FD:68:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3609: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3610: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123180 (0x310fdcec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:09 2017
            Not After : Tue Aug 23 12:31:09 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:7b:d5:77:dc:71:07:f9:1a:e6:6c:70:b5:dd:24:db:
                    fc:60:71:7a:b6:44:87:d9:d3:db:cd:ac:bc:fe:c0:80:
                    16:22:a3:0b:72:6e:d7:18:d1:87:f3:f4:b7:5b:ff:cc:
                    d5:c4:d2:98:ae:6c:f6:9f:50:04:30:13:3e:6a:c8:b8:
                    85:df:9a:02:5a:91:68:d0:79:e2:4a:fb:40:ef:02:c6:
                    bc:dd:b1:06:26:02:ae:fe:d5:17:8f:eb:b5:5e:60:41:
                    e7:82:f3:48:45:99:c9:f8:84:d5:93:6d:e3:d7:53:6e:
                    e9:69:07:e7:b8:ce:9a:a2:eb:88:16:f6:82:17:ba:ee:
                    f3:a8:34:05:93:ec:ab:08:a0:20:dc:ec:ef:ad:ee:a6:
                    99:0b:77:7b:04:4e:61:2b:28:09:f4:20:38:c1:70:1d:
                    7e:8a:c9:fe:de:26:f0:55:87:92:75:77:9f:a3:8f:c2:
                    73:20:70:8c:55:85:8a:64:1c:7f:d0:f5:8c:08:3d:5b:
                    b8:40:c4:cc:0d:9f:d4:71:bc:9e:13:2c:dd:9f:c4:27:
                    03:e8:a2:ab:ee:22:df:53:b1:c0:1d:78:d7:07:0e:c9:
                    6a:16:86:37:26:cd:a2:7f:02:b9:69:e8:f1:0c:c8:da:
                    01:f3:c5:dd:c7:2c:1d:cc:85:26:1d:76:b1:be:6f:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:80:04:e6:6f:85:bf:91:9d:78:80:37:d1:3b:46:72:
        b0:bc:0a:bc:49:f8:ee:4c:5d:f3:aa:73:ca:6f:d4:1b:
        3d:61:b9:d0:8c:2d:0a:69:a0:6f:01:d4:04:9a:bd:d7:
        ec:2e:ff:8c:d7:eb:66:f6:e5:a3:45:08:33:0b:09:cc:
        90:ed:f3:64:b2:14:de:b0:00:b4:fe:48:55:36:a4:7c:
        3a:56:f1:99:8f:e9:af:9c:c7:5a:2f:ca:8a:36:e2:57:
        01:94:3a:85:ea:2c:ab:15:a7:5c:90:ae:11:6e:6b:d3:
        9f:85:e0:c6:e5:ef:88:ac:94:04:e6:bc:1a:ee:ab:49:
        dd:d7:9f:c8:17:b1:26:98:86:84:7b:fb:81:89:e6:69:
        fd:34:6c:48:57:de:9c:3e:ac:8e:65:d3:65:d1:b0:48:
        62:9e:e4:e7:f0:7b:8f:9e:9f:6a:8f:0b:30:d6:51:1a:
        5f:35:1e:c0:00:0c:17:24:78:b6:f3:ab:27:03:c6:5a:
        eb:1d:5a:59:87:f0:50:b8:44:4f:7f:c0:5b:00:41:4b:
        e4:7f:c4:d0:04:ad:03:3f:22:cd:5a:35:50:1e:2a:38:
        32:37:eb:e8:7d:cc:6e:6c:c4:c7:8c:c1:34:84:25:ad:
        a7:3a:8c:f1:1b:41:ab:2c:5e:82:97:98:99:3e:b2:a4
    Fingerprint (SHA-256):
        CE:CF:3C:ED:CE:FE:30:1C:7E:7E:59:E0:5D:C1:0D:80:9D:31:88:8C:F9:FE:0C:03:69:F4:5C:22:A4:22:0C:50
    Fingerprint (SHA1):
        4D:D2:C1:E1:16:FA:A3:10:6A:EC:CD:B2:14:39:69:D1:00:55:1E:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3611: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3612: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123181 (0x310fdced)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:09 2017
            Not After : Tue Aug 23 12:31:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:e2:a8:23:32:16:94:a1:a0:4d:d6:db:81:3f:fc:cd:
                    8c:ef:7e:63:be:50:7e:2f:08:3c:48:ab:b9:a1:49:8c:
                    46:5f:39:ac:84:4e:f0:e9:17:c5:86:b8:44:25:e3:77:
                    0a:bd:a7:0d:74:ca:55:c3:22:64:94:03:f8:6b:26:10:
                    98:b2:26:a5:c3:a8:18:77:aa:cd:1f:c2:58:4b:2f:30:
                    28:17:3f:e1:80:1b:7b:9a:fb:3f:7b:f5:55:a8:2c:86:
                    ec:fd:59:47:f2:e2:d6:fd:f4:dd:4b:b0:af:4b:f1:da:
                    1e:a6:34:f9:65:5a:97:e1:05:5a:3c:34:7b:d0:42:c7:
                    b8:4f:40:da:73:37:69:88:d7:90:4c:b2:c1:08:1b:43:
                    3f:ae:3b:05:21:aa:78:9e:0a:51:28:bd:80:e9:f4:f2:
                    0b:29:d6:b0:85:79:81:cd:85:12:2f:01:bf:78:5c:98:
                    09:f1:f2:c5:d6:3e:c8:b4:34:74:6a:46:c2:87:89:a8:
                    d3:e1:fb:e4:9b:3d:2f:5f:d1:27:26:30:11:00:6f:ad:
                    8e:c2:98:03:5e:b8:b2:c1:51:09:3d:b5:ee:2c:69:49:
                    0c:a5:84:98:14:78:c2:9a:c8:f4:ef:5f:7c:de:ca:31:
                    8a:80:4f:91:ab:fa:7d:1a:c0:da:22:e6:37:e6:33:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:69:be:c7:e8:00:36:d6:9e:68:90:70:04:55:04:1e:
        78:82:43:1e:21:c4:19:1e:30:a3:f6:5d:68:82:f2:29:
        8e:41:1a:18:e0:7d:f1:e8:5b:04:61:cc:6e:3f:4a:06:
        38:82:3f:6b:f8:72:3e:e3:82:63:e2:17:cf:4b:3a:99:
        05:12:b4:0f:62:18:7d:5e:2b:74:25:d1:f5:b3:20:d8:
        b3:1c:0d:66:40:93:da:c2:65:a5:14:a6:0f:eb:b5:5c:
        b2:f3:37:7b:51:07:98:18:f0:60:ca:0d:83:24:88:f4:
        a0:a3:75:a1:d5:e7:f7:64:74:74:55:a0:91:8b:09:d8:
        fe:c4:54:38:4b:be:1d:a1:8a:3b:76:69:6b:87:ce:63:
        18:9f:79:53:4f:8f:f8:94:c5:83:d2:d2:c5:79:b6:e3:
        11:89:da:6b:b9:c1:7d:1b:26:3b:4f:f5:7b:78:9c:e3:
        2c:d5:c5:da:0e:42:ca:b5:df:39:44:f4:66:b5:0b:ff:
        61:66:10:53:ad:be:ac:bd:56:4c:01:85:75:b6:26:5a:
        df:ae:ad:8e:77:c7:aa:59:f6:38:72:e5:18:41:23:0a:
        5f:0f:fe:36:b9:88:ae:1b:9d:89:b6:b5:e0:00:ac:c1:
        0c:f3:fc:d0:6e:19:17:0d:3e:21:f1:d3:c8:e8:b4:18
    Fingerprint (SHA-256):
        72:27:25:F5:A9:A5:3E:13:0F:5A:DB:C3:00:19:77:AB:48:2B:E8:7A:C4:48:E3:11:E3:0E:5A:A1:5C:A6:7B:80
    Fingerprint (SHA1):
        00:76:8F:80:E9:C9:11:51:54:40:A4:CF:E6:C5:A8:80:77:12:27:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3613: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3614: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3615: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3616: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3617: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123179 (0x310fdceb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:09 2017
            Not After : Tue Aug 23 12:31:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:f0:f3:6d:31:cd:76:9c:c8:08:3e:e8:0c:d4:52:6c:
                    75:a8:70:34:de:25:01:ef:6a:30:b6:7d:7d:48:7b:bb:
                    bb:63:a8:a0:bb:9b:b1:39:1e:95:9d:64:c0:e0:0a:4c:
                    a3:fb:21:34:86:54:29:f5:9c:44:93:e3:f7:ef:bb:24:
                    e7:03:8b:42:8c:71:4b:eb:f0:7a:69:7b:b0:7d:f3:28:
                    5d:ea:ba:a4:7f:58:10:1e:76:81:4c:74:05:5d:5f:52:
                    ee:29:ce:06:33:86:4a:2e:e6:bf:b9:32:00:da:8f:ac:
                    1d:82:21:7d:20:f7:9a:c6:af:f8:3e:bb:81:74:58:d4:
                    4f:fd:d1:a2:0c:00:c6:09:a3:ba:5b:7d:37:26:e3:58:
                    77:be:ad:96:8e:e9:1f:6f:1b:54:45:00:de:25:12:92:
                    d7:bd:86:f0:45:92:86:d5:9d:09:4c:bf:0e:37:11:19:
                    5f:e1:dd:20:39:b3:e8:72:e9:4d:50:05:2d:fa:e8:8e:
                    b1:f8:1e:b8:8d:69:e1:06:a3:a2:2f:49:bb:c5:09:5b:
                    92:3e:97:04:42:e4:1d:9e:e7:f8:36:04:df:8c:fb:a4:
                    07:09:5e:ab:9f:e9:ba:87:46:18:30:98:3e:c5:2f:19:
                    70:f0:6b:35:43:97:49:41:fa:99:57:b0:95:44:67:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:34:b7:71:3c:37:87:39:9b:3c:2f:57:62:a2:a7:08:
        b3:52:9e:a7:fa:11:a8:b3:7d:5a:de:20:7b:45:c6:b4:
        9e:5b:d1:f7:4f:e4:d9:f9:13:ac:18:41:60:d2:66:05:
        4e:7f:8e:9d:69:ce:be:e6:09:8d:a9:a3:66:b6:0d:42:
        b0:bf:b6:d9:12:5c:64:09:f4:77:d3:ef:8e:ed:a0:9e:
        b3:69:d5:93:b5:b6:8e:bb:4f:31:fc:e4:ec:7e:99:aa:
        9e:ec:41:d3:21:2e:46:d7:2d:4c:1e:32:55:67:50:d6:
        ce:2f:3d:b3:7a:1f:b7:c6:1e:3d:7d:0f:89:1a:1f:8b:
        12:2c:6e:e5:66:16:c7:1f:dd:d9:34:93:73:a0:68:e5:
        3f:8d:64:7d:d1:cb:78:66:cb:15:ae:83:32:c3:24:77:
        51:86:b7:e1:f9:cd:63:c7:de:12:89:4e:00:94:2f:48:
        c9:e6:2a:83:bf:e3:f5:b4:03:02:18:d7:43:67:42:99:
        66:a8:22:a1:3e:e6:1e:48:ef:a9:d3:d3:55:d1:16:12:
        03:0b:86:2e:72:b9:ce:f1:31:e9:d8:ea:21:07:3c:c2:
        1e:d6:b8:e7:2e:a9:c3:b0:c8:be:e8:78:c7:ce:5a:0b:
        ed:fb:c1:f8:18:12:3d:cc:69:e7:4a:ef:a3:fb:f8:37
    Fingerprint (SHA-256):
        C7:D5:08:F0:4D:27:30:31:EE:59:E0:CA:E3:DB:34:CA:F2:C4:9E:0A:BE:92:6D:29:B6:26:2F:87:98:26:FB:AE
    Fingerprint (SHA1):
        7C:5F:E8:9E:4F:E7:5D:FC:A1:5A:BB:0D:74:68:C7:F1:CD:FD:68:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3618: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3619: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123180 (0x310fdcec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:09 2017
            Not After : Tue Aug 23 12:31:09 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:7b:d5:77:dc:71:07:f9:1a:e6:6c:70:b5:dd:24:db:
                    fc:60:71:7a:b6:44:87:d9:d3:db:cd:ac:bc:fe:c0:80:
                    16:22:a3:0b:72:6e:d7:18:d1:87:f3:f4:b7:5b:ff:cc:
                    d5:c4:d2:98:ae:6c:f6:9f:50:04:30:13:3e:6a:c8:b8:
                    85:df:9a:02:5a:91:68:d0:79:e2:4a:fb:40:ef:02:c6:
                    bc:dd:b1:06:26:02:ae:fe:d5:17:8f:eb:b5:5e:60:41:
                    e7:82:f3:48:45:99:c9:f8:84:d5:93:6d:e3:d7:53:6e:
                    e9:69:07:e7:b8:ce:9a:a2:eb:88:16:f6:82:17:ba:ee:
                    f3:a8:34:05:93:ec:ab:08:a0:20:dc:ec:ef:ad:ee:a6:
                    99:0b:77:7b:04:4e:61:2b:28:09:f4:20:38:c1:70:1d:
                    7e:8a:c9:fe:de:26:f0:55:87:92:75:77:9f:a3:8f:c2:
                    73:20:70:8c:55:85:8a:64:1c:7f:d0:f5:8c:08:3d:5b:
                    b8:40:c4:cc:0d:9f:d4:71:bc:9e:13:2c:dd:9f:c4:27:
                    03:e8:a2:ab:ee:22:df:53:b1:c0:1d:78:d7:07:0e:c9:
                    6a:16:86:37:26:cd:a2:7f:02:b9:69:e8:f1:0c:c8:da:
                    01:f3:c5:dd:c7:2c:1d:cc:85:26:1d:76:b1:be:6f:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:80:04:e6:6f:85:bf:91:9d:78:80:37:d1:3b:46:72:
        b0:bc:0a:bc:49:f8:ee:4c:5d:f3:aa:73:ca:6f:d4:1b:
        3d:61:b9:d0:8c:2d:0a:69:a0:6f:01:d4:04:9a:bd:d7:
        ec:2e:ff:8c:d7:eb:66:f6:e5:a3:45:08:33:0b:09:cc:
        90:ed:f3:64:b2:14:de:b0:00:b4:fe:48:55:36:a4:7c:
        3a:56:f1:99:8f:e9:af:9c:c7:5a:2f:ca:8a:36:e2:57:
        01:94:3a:85:ea:2c:ab:15:a7:5c:90:ae:11:6e:6b:d3:
        9f:85:e0:c6:e5:ef:88:ac:94:04:e6:bc:1a:ee:ab:49:
        dd:d7:9f:c8:17:b1:26:98:86:84:7b:fb:81:89:e6:69:
        fd:34:6c:48:57:de:9c:3e:ac:8e:65:d3:65:d1:b0:48:
        62:9e:e4:e7:f0:7b:8f:9e:9f:6a:8f:0b:30:d6:51:1a:
        5f:35:1e:c0:00:0c:17:24:78:b6:f3:ab:27:03:c6:5a:
        eb:1d:5a:59:87:f0:50:b8:44:4f:7f:c0:5b:00:41:4b:
        e4:7f:c4:d0:04:ad:03:3f:22:cd:5a:35:50:1e:2a:38:
        32:37:eb:e8:7d:cc:6e:6c:c4:c7:8c:c1:34:84:25:ad:
        a7:3a:8c:f1:1b:41:ab:2c:5e:82:97:98:99:3e:b2:a4
    Fingerprint (SHA-256):
        CE:CF:3C:ED:CE:FE:30:1C:7E:7E:59:E0:5D:C1:0D:80:9D:31:88:8C:F9:FE:0C:03:69:F4:5C:22:A4:22:0C:50
    Fingerprint (SHA1):
        4D:D2:C1:E1:16:FA:A3:10:6A:EC:CD:B2:14:39:69:D1:00:55:1E:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3620: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3621: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123181 (0x310fdced)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:09 2017
            Not After : Tue Aug 23 12:31:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:e2:a8:23:32:16:94:a1:a0:4d:d6:db:81:3f:fc:cd:
                    8c:ef:7e:63:be:50:7e:2f:08:3c:48:ab:b9:a1:49:8c:
                    46:5f:39:ac:84:4e:f0:e9:17:c5:86:b8:44:25:e3:77:
                    0a:bd:a7:0d:74:ca:55:c3:22:64:94:03:f8:6b:26:10:
                    98:b2:26:a5:c3:a8:18:77:aa:cd:1f:c2:58:4b:2f:30:
                    28:17:3f:e1:80:1b:7b:9a:fb:3f:7b:f5:55:a8:2c:86:
                    ec:fd:59:47:f2:e2:d6:fd:f4:dd:4b:b0:af:4b:f1:da:
                    1e:a6:34:f9:65:5a:97:e1:05:5a:3c:34:7b:d0:42:c7:
                    b8:4f:40:da:73:37:69:88:d7:90:4c:b2:c1:08:1b:43:
                    3f:ae:3b:05:21:aa:78:9e:0a:51:28:bd:80:e9:f4:f2:
                    0b:29:d6:b0:85:79:81:cd:85:12:2f:01:bf:78:5c:98:
                    09:f1:f2:c5:d6:3e:c8:b4:34:74:6a:46:c2:87:89:a8:
                    d3:e1:fb:e4:9b:3d:2f:5f:d1:27:26:30:11:00:6f:ad:
                    8e:c2:98:03:5e:b8:b2:c1:51:09:3d:b5:ee:2c:69:49:
                    0c:a5:84:98:14:78:c2:9a:c8:f4:ef:5f:7c:de:ca:31:
                    8a:80:4f:91:ab:fa:7d:1a:c0:da:22:e6:37:e6:33:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:69:be:c7:e8:00:36:d6:9e:68:90:70:04:55:04:1e:
        78:82:43:1e:21:c4:19:1e:30:a3:f6:5d:68:82:f2:29:
        8e:41:1a:18:e0:7d:f1:e8:5b:04:61:cc:6e:3f:4a:06:
        38:82:3f:6b:f8:72:3e:e3:82:63:e2:17:cf:4b:3a:99:
        05:12:b4:0f:62:18:7d:5e:2b:74:25:d1:f5:b3:20:d8:
        b3:1c:0d:66:40:93:da:c2:65:a5:14:a6:0f:eb:b5:5c:
        b2:f3:37:7b:51:07:98:18:f0:60:ca:0d:83:24:88:f4:
        a0:a3:75:a1:d5:e7:f7:64:74:74:55:a0:91:8b:09:d8:
        fe:c4:54:38:4b:be:1d:a1:8a:3b:76:69:6b:87:ce:63:
        18:9f:79:53:4f:8f:f8:94:c5:83:d2:d2:c5:79:b6:e3:
        11:89:da:6b:b9:c1:7d:1b:26:3b:4f:f5:7b:78:9c:e3:
        2c:d5:c5:da:0e:42:ca:b5:df:39:44:f4:66:b5:0b:ff:
        61:66:10:53:ad:be:ac:bd:56:4c:01:85:75:b6:26:5a:
        df:ae:ad:8e:77:c7:aa:59:f6:38:72:e5:18:41:23:0a:
        5f:0f:fe:36:b9:88:ae:1b:9d:89:b6:b5:e0:00:ac:c1:
        0c:f3:fc:d0:6e:19:17:0d:3e:21:f1:d3:c8:e8:b4:18
    Fingerprint (SHA-256):
        72:27:25:F5:A9:A5:3E:13:0F:5A:DB:C3:00:19:77:AB:48:2B:E8:7A:C4:48:E3:11:E3:0E:5A:A1:5C:A6:7B:80
    Fingerprint (SHA1):
        00:76:8F:80:E9:C9:11:51:54:40:A4:CF:E6:C5:A8:80:77:12:27:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3622: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3623: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3624: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123183 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3625: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3626: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3627: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3628: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123184   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3629: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3630: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3631: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3632: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123185   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3633: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3634: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3635: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3636: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123186   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3637: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3638: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3639: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3640: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123187   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3641: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3642: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3643: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123183 (0x310fdcef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:7e:3b:34:0e:6d:e9:0c:9b:bc:44:d8:4a:8d:77:9d:
                    11:15:47:0b:5d:7d:7d:66:d3:28:38:9e:ea:c8:69:36:
                    bc:84:10:2e:a3:0e:35:e0:b6:a2:d4:b1:07:7e:ea:7f:
                    6e:b7:db:ba:7a:e9:b4:29:d7:72:a6:c9:80:85:8f:7b:
                    a3:09:8d:be:fd:4e:4d:33:fb:32:51:53:ed:70:30:b0:
                    2e:2c:9b:25:2f:57:07:19:de:f5:ee:a5:d5:8e:4e:bc:
                    21:00:fd:35:52:0e:09:9d:1c:85:dd:ef:21:c2:93:92:
                    a8:71:d4:a9:d2:38:28:94:aa:3c:86:58:cc:5d:5d:d7:
                    c3:cd:eb:15:b7:d8:64:be:dd:47:88:f4:cb:e3:e9:7d:
                    b2:21:e0:27:74:32:cd:e7:df:22:05:52:5d:d3:a0:e4:
                    d8:0f:68:a7:d5:22:61:24:7a:22:e8:c8:8d:85:a2:9f:
                    84:e7:00:b2:fb:1f:ad:c4:af:0d:2a:99:80:01:4a:f6:
                    f6:c3:e7:4e:5f:00:14:71:a5:db:30:97:a7:ec:aa:1e:
                    2e:3c:7b:22:0e:e1:c8:56:fc:97:ec:75:10:9a:69:62:
                    d5:55:97:29:32:11:68:24:d6:c2:16:61:c3:14:c8:3a:
                    14:1f:7e:5e:3f:67:33:12:a2:aa:b0:e4:5d:7d:23:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:c9:e5:c8:be:d6:a8:48:1a:9c:d0:2e:f1:46:2e:8e:
        50:3f:9b:d0:9c:15:f2:5f:0a:6d:be:1a:d4:8a:5f:70:
        04:5d:4f:1b:a0:60:a1:c8:ba:ca:36:c4:dc:97:b3:35:
        2a:60:cd:4a:96:d2:c7:0c:7b:6f:ad:fb:eb:b3:cc:f4:
        70:42:0f:17:44:7f:bb:cc:b8:b3:13:31:93:34:c8:a6:
        a7:93:4f:d4:fa:3a:19:95:ac:ef:bd:d1:e7:9c:a1:4d:
        4b:db:f3:d5:1a:1c:a3:e8:d0:8f:8a:64:fd:d7:eb:ef:
        e0:b8:ed:3e:68:e0:24:6c:c1:e4:42:5e:b6:12:12:df:
        c2:5a:1f:06:95:82:70:cf:89:4c:e1:11:4c:59:ba:9e:
        32:34:97:cb:48:60:da:dd:0b:38:b0:3e:49:f5:84:20:
        b5:bf:49:18:88:c0:95:e8:df:c8:60:6d:6f:18:ec:a2:
        f6:9f:c4:5f:be:a7:6f:2f:1d:41:2b:1b:51:88:30:ea:
        ed:e5:ea:7f:cd:3c:e0:40:b7:20:f4:46:56:97:85:f4:
        69:d9:15:3a:66:7e:4f:48:9c:67:da:e3:18:15:bd:c1:
        2b:10:85:67:61:87:17:96:98:f6:1b:d9:56:21:c5:b4:
        00:4e:be:fc:a0:c3:19:e9:6d:e4:71:77:71:6e:98:0e
    Fingerprint (SHA-256):
        0E:93:03:3E:F8:9E:2C:69:93:AE:2D:25:E8:24:4A:96:8A:19:18:45:8A:F8:EB:D5:69:D2:95:E1:5C:4D:E8:5E
    Fingerprint (SHA1):
        AC:18:BB:98:F6:C8:22:1B:B2:2B:DA:33:7C:55:23:67:91:85:95:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3644: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3645: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123184 (0x310fdcf0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:d8:8f:47:70:54:d0:4d:df:c6:d6:47:8c:dd:4d:b5:
                    b4:df:2d:2c:34:5f:6a:32:5d:77:bf:d9:1b:c8:6c:ad:
                    c9:9b:b6:9c:51:28:55:40:61:f1:46:0a:b7:6e:81:36:
                    66:15:43:83:6e:36:d8:3c:98:88:97:e3:10:d2:fb:05:
                    ba:99:9f:89:b6:63:d5:18:80:89:28:df:3c:5e:00:68:
                    36:52:3b:15:49:d2:a8:90:e6:f8:95:16:d2:05:8b:1a:
                    72:ed:9e:71:fb:64:0b:0b:98:0c:fb:84:20:ea:c4:01:
                    97:1b:25:fe:11:de:28:59:bb:73:31:df:76:61:44:97:
                    94:08:1c:a7:8a:94:db:63:c5:d7:4c:3d:cb:09:ea:80:
                    b4:b3:c5:90:fa:d4:d9:91:e3:03:c9:37:c8:7a:d6:e9:
                    5d:bf:66:cd:85:4a:71:c8:dc:4a:f1:ef:11:10:5b:b0:
                    ee:e9:af:8e:52:df:22:07:81:6f:90:ba:19:8d:85:17:
                    04:dd:99:0b:0a:d6:cb:c8:c7:8b:a8:c3:64:dd:df:ae:
                    a6:41:54:84:f3:11:8a:eb:ca:93:32:79:f1:43:24:a5:
                    66:7e:e7:0e:0f:e2:cf:5d:35:3a:6f:84:20:c1:4e:73:
                    9d:24:e0:61:af:83:ac:c8:07:38:07:dd:6f:3a:e3:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:5a:07:a0:dd:1a:81:35:4f:ea:a5:9c:8a:f1:2d:d7:
        ec:f7:05:e3:95:db:42:9a:e0:7b:f5:16:ef:80:39:3b:
        c9:80:d8:d2:52:51:e8:2f:72:10:73:67:e3:d2:c8:09:
        4a:a4:47:6a:cd:bd:45:54:f2:e9:d6:11:75:46:fe:cf:
        99:8e:00:49:03:a0:08:eb:e6:75:de:8b:22:d8:04:86:
        e1:33:eb:31:ac:5c:5f:b0:1e:be:1d:1a:35:75:78:9e:
        64:1d:a0:18:9c:80:89:d1:0f:fa:9b:ed:be:ca:a9:b9:
        93:3e:e0:ef:6a:4b:9b:ec:ef:35:be:87:89:c2:2c:c3:
        08:c0:b5:8a:3e:ca:5b:14:63:97:e8:80:d7:94:65:6d:
        a2:5c:a0:c1:3d:31:bc:97:12:0c:de:a4:fd:32:e8:50:
        07:9b:0c:d4:f1:2f:17:31:26:1f:bc:f1:9b:93:4e:9f:
        e0:16:43:35:a3:8a:c8:45:26:5e:8b:41:d3:9b:8b:9a:
        22:b4:fa:d6:c2:f0:79:cf:b1:35:a6:69:15:85:4a:0d:
        9b:51:0d:bd:1e:2d:69:e1:c2:ff:5f:f7:3e:30:20:19:
        cc:9b:32:bf:7c:7b:10:0a:1a:8d:a8:70:c2:47:c6:9f:
        b7:f6:1c:f1:00:c0:f2:e1:fa:0e:51:ce:d7:d9:f4:0b
    Fingerprint (SHA-256):
        73:5A:A0:60:FB:CA:D5:E5:33:48:C2:DC:AA:67:19:6C:2A:2F:A5:78:33:62:F5:61:1A:AC:8E:9E:CA:CA:BE:4B
    Fingerprint (SHA1):
        CA:02:82:B3:0A:7D:25:A6:3D:E0:8B:07:AC:2F:52:59:77:02:4A:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3646: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3647: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123185 (0x310fdcf1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:f1:59:6b:ef:68:3b:2c:85:c3:6d:c8:1b:98:15:72:
                    c9:80:91:bd:49:8b:5b:02:11:99:c9:8b:f6:5e:66:b0:
                    d9:70:b2:aa:c0:2d:e0:49:2c:74:7e:58:d7:26:b5:fd:
                    a3:d5:80:c8:3e:7a:1f:a7:46:5c:55:1d:d1:27:da:8f:
                    04:c7:2f:b5:aa:86:a4:fc:a3:bc:3e:ff:08:bf:cc:af:
                    36:0f:3d:b9:12:48:31:b9:22:08:c1:c3:68:c3:b4:3a:
                    0e:b0:d7:9b:94:06:bf:5c:a8:5a:2a:e5:85:6d:38:ba:
                    07:f9:04:f9:10:0d:f8:c4:42:dc:78:06:65:2a:f6:6d:
                    90:7c:17:0f:51:5b:36:f8:1a:db:e9:be:f9:c4:3d:74:
                    68:88:e3:01:5c:fd:0e:52:8a:de:45:36:1b:05:e4:0f:
                    d8:2d:32:57:97:26:37:8a:3e:16:cc:f9:ea:fe:17:e3:
                    8b:b8:91:97:fd:6b:88:29:a2:2f:bd:3a:16:49:36:16:
                    60:53:e4:4b:58:12:66:d7:ec:2f:87:2f:9a:a4:b2:3c:
                    50:4e:23:9d:99:8c:82:45:10:c0:49:26:91:0c:5b:fc:
                    7d:ef:fa:9b:89:2c:12:79:2c:a7:90:6b:18:f3:e6:7f:
                    e2:ef:e4:b7:44:33:f9:cc:15:e4:ba:c7:ae:ad:48:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:7c:b8:ea:1b:57:b3:27:82:0c:d8:09:58:c1:ea:43:
        90:d4:09:af:59:e8:ca:5f:84:64:15:ea:88:94:f8:42:
        a3:45:58:05:b6:ab:8f:83:a7:e0:eb:1e:3e:59:7b:3b:
        de:74:bf:02:a2:17:4a:da:a7:af:86:82:be:51:ac:2b:
        23:c4:7b:fa:c8:33:bc:7b:45:dc:80:f2:c0:f2:9a:69:
        a2:c5:36:dd:c8:01:6b:4e:fa:35:6a:10:c0:7f:f5:47:
        3c:f0:be:ab:9d:b5:68:12:18:2b:3e:bd:4a:82:61:ea:
        5a:d4:6d:59:25:94:96:a1:40:cf:bf:3f:ca:8e:d3:ce:
        50:9b:d4:2f:62:05:8d:5b:3c:26:a1:2d:08:4c:8e:d9:
        c4:ea:69:ee:90:6d:5d:e0:41:6d:2c:e3:e5:69:57:78:
        43:d7:2f:03:0d:70:17:51:0e:eb:6e:e5:ad:24:a8:54:
        20:04:5d:83:cf:72:14:10:b9:19:33:b7:c9:79:2e:c2:
        2c:58:6d:97:0b:02:ab:99:1f:e8:9a:9e:60:55:19:3b:
        2d:11:78:3c:1e:8c:73:a7:1f:ef:48:f5:81:a6:75:21:
        02:85:19:db:99:42:96:a4:cc:81:16:0d:db:1f:03:ad:
        88:44:1c:f7:81:d5:92:a8:ef:6f:dd:c6:d6:9f:ed:3c
    Fingerprint (SHA-256):
        DF:1E:2A:24:DC:ED:DD:38:0E:BD:19:04:4B:5A:0E:1E:78:10:0A:AA:3E:25:4F:CB:A3:9C:A3:AA:F8:C9:90:FD
    Fingerprint (SHA1):
        95:2A:9E:93:79:6F:B4:56:B8:5A:B9:80:F3:FB:4A:B0:41:A1:C2:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3648: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3649: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3650: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3651: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3652: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123183 (0x310fdcef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:7e:3b:34:0e:6d:e9:0c:9b:bc:44:d8:4a:8d:77:9d:
                    11:15:47:0b:5d:7d:7d:66:d3:28:38:9e:ea:c8:69:36:
                    bc:84:10:2e:a3:0e:35:e0:b6:a2:d4:b1:07:7e:ea:7f:
                    6e:b7:db:ba:7a:e9:b4:29:d7:72:a6:c9:80:85:8f:7b:
                    a3:09:8d:be:fd:4e:4d:33:fb:32:51:53:ed:70:30:b0:
                    2e:2c:9b:25:2f:57:07:19:de:f5:ee:a5:d5:8e:4e:bc:
                    21:00:fd:35:52:0e:09:9d:1c:85:dd:ef:21:c2:93:92:
                    a8:71:d4:a9:d2:38:28:94:aa:3c:86:58:cc:5d:5d:d7:
                    c3:cd:eb:15:b7:d8:64:be:dd:47:88:f4:cb:e3:e9:7d:
                    b2:21:e0:27:74:32:cd:e7:df:22:05:52:5d:d3:a0:e4:
                    d8:0f:68:a7:d5:22:61:24:7a:22:e8:c8:8d:85:a2:9f:
                    84:e7:00:b2:fb:1f:ad:c4:af:0d:2a:99:80:01:4a:f6:
                    f6:c3:e7:4e:5f:00:14:71:a5:db:30:97:a7:ec:aa:1e:
                    2e:3c:7b:22:0e:e1:c8:56:fc:97:ec:75:10:9a:69:62:
                    d5:55:97:29:32:11:68:24:d6:c2:16:61:c3:14:c8:3a:
                    14:1f:7e:5e:3f:67:33:12:a2:aa:b0:e4:5d:7d:23:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:c9:e5:c8:be:d6:a8:48:1a:9c:d0:2e:f1:46:2e:8e:
        50:3f:9b:d0:9c:15:f2:5f:0a:6d:be:1a:d4:8a:5f:70:
        04:5d:4f:1b:a0:60:a1:c8:ba:ca:36:c4:dc:97:b3:35:
        2a:60:cd:4a:96:d2:c7:0c:7b:6f:ad:fb:eb:b3:cc:f4:
        70:42:0f:17:44:7f:bb:cc:b8:b3:13:31:93:34:c8:a6:
        a7:93:4f:d4:fa:3a:19:95:ac:ef:bd:d1:e7:9c:a1:4d:
        4b:db:f3:d5:1a:1c:a3:e8:d0:8f:8a:64:fd:d7:eb:ef:
        e0:b8:ed:3e:68:e0:24:6c:c1:e4:42:5e:b6:12:12:df:
        c2:5a:1f:06:95:82:70:cf:89:4c:e1:11:4c:59:ba:9e:
        32:34:97:cb:48:60:da:dd:0b:38:b0:3e:49:f5:84:20:
        b5:bf:49:18:88:c0:95:e8:df:c8:60:6d:6f:18:ec:a2:
        f6:9f:c4:5f:be:a7:6f:2f:1d:41:2b:1b:51:88:30:ea:
        ed:e5:ea:7f:cd:3c:e0:40:b7:20:f4:46:56:97:85:f4:
        69:d9:15:3a:66:7e:4f:48:9c:67:da:e3:18:15:bd:c1:
        2b:10:85:67:61:87:17:96:98:f6:1b:d9:56:21:c5:b4:
        00:4e:be:fc:a0:c3:19:e9:6d:e4:71:77:71:6e:98:0e
    Fingerprint (SHA-256):
        0E:93:03:3E:F8:9E:2C:69:93:AE:2D:25:E8:24:4A:96:8A:19:18:45:8A:F8:EB:D5:69:D2:95:E1:5C:4D:E8:5E
    Fingerprint (SHA1):
        AC:18:BB:98:F6:C8:22:1B:B2:2B:DA:33:7C:55:23:67:91:85:95:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3653: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3654: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123184 (0x310fdcf0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:d8:8f:47:70:54:d0:4d:df:c6:d6:47:8c:dd:4d:b5:
                    b4:df:2d:2c:34:5f:6a:32:5d:77:bf:d9:1b:c8:6c:ad:
                    c9:9b:b6:9c:51:28:55:40:61:f1:46:0a:b7:6e:81:36:
                    66:15:43:83:6e:36:d8:3c:98:88:97:e3:10:d2:fb:05:
                    ba:99:9f:89:b6:63:d5:18:80:89:28:df:3c:5e:00:68:
                    36:52:3b:15:49:d2:a8:90:e6:f8:95:16:d2:05:8b:1a:
                    72:ed:9e:71:fb:64:0b:0b:98:0c:fb:84:20:ea:c4:01:
                    97:1b:25:fe:11:de:28:59:bb:73:31:df:76:61:44:97:
                    94:08:1c:a7:8a:94:db:63:c5:d7:4c:3d:cb:09:ea:80:
                    b4:b3:c5:90:fa:d4:d9:91:e3:03:c9:37:c8:7a:d6:e9:
                    5d:bf:66:cd:85:4a:71:c8:dc:4a:f1:ef:11:10:5b:b0:
                    ee:e9:af:8e:52:df:22:07:81:6f:90:ba:19:8d:85:17:
                    04:dd:99:0b:0a:d6:cb:c8:c7:8b:a8:c3:64:dd:df:ae:
                    a6:41:54:84:f3:11:8a:eb:ca:93:32:79:f1:43:24:a5:
                    66:7e:e7:0e:0f:e2:cf:5d:35:3a:6f:84:20:c1:4e:73:
                    9d:24:e0:61:af:83:ac:c8:07:38:07:dd:6f:3a:e3:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:5a:07:a0:dd:1a:81:35:4f:ea:a5:9c:8a:f1:2d:d7:
        ec:f7:05:e3:95:db:42:9a:e0:7b:f5:16:ef:80:39:3b:
        c9:80:d8:d2:52:51:e8:2f:72:10:73:67:e3:d2:c8:09:
        4a:a4:47:6a:cd:bd:45:54:f2:e9:d6:11:75:46:fe:cf:
        99:8e:00:49:03:a0:08:eb:e6:75:de:8b:22:d8:04:86:
        e1:33:eb:31:ac:5c:5f:b0:1e:be:1d:1a:35:75:78:9e:
        64:1d:a0:18:9c:80:89:d1:0f:fa:9b:ed:be:ca:a9:b9:
        93:3e:e0:ef:6a:4b:9b:ec:ef:35:be:87:89:c2:2c:c3:
        08:c0:b5:8a:3e:ca:5b:14:63:97:e8:80:d7:94:65:6d:
        a2:5c:a0:c1:3d:31:bc:97:12:0c:de:a4:fd:32:e8:50:
        07:9b:0c:d4:f1:2f:17:31:26:1f:bc:f1:9b:93:4e:9f:
        e0:16:43:35:a3:8a:c8:45:26:5e:8b:41:d3:9b:8b:9a:
        22:b4:fa:d6:c2:f0:79:cf:b1:35:a6:69:15:85:4a:0d:
        9b:51:0d:bd:1e:2d:69:e1:c2:ff:5f:f7:3e:30:20:19:
        cc:9b:32:bf:7c:7b:10:0a:1a:8d:a8:70:c2:47:c6:9f:
        b7:f6:1c:f1:00:c0:f2:e1:fa:0e:51:ce:d7:d9:f4:0b
    Fingerprint (SHA-256):
        73:5A:A0:60:FB:CA:D5:E5:33:48:C2:DC:AA:67:19:6C:2A:2F:A5:78:33:62:F5:61:1A:AC:8E:9E:CA:CA:BE:4B
    Fingerprint (SHA1):
        CA:02:82:B3:0A:7D:25:A6:3D:E0:8B:07:AC:2F:52:59:77:02:4A:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3655: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3656: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123185 (0x310fdcf1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:f1:59:6b:ef:68:3b:2c:85:c3:6d:c8:1b:98:15:72:
                    c9:80:91:bd:49:8b:5b:02:11:99:c9:8b:f6:5e:66:b0:
                    d9:70:b2:aa:c0:2d:e0:49:2c:74:7e:58:d7:26:b5:fd:
                    a3:d5:80:c8:3e:7a:1f:a7:46:5c:55:1d:d1:27:da:8f:
                    04:c7:2f:b5:aa:86:a4:fc:a3:bc:3e:ff:08:bf:cc:af:
                    36:0f:3d:b9:12:48:31:b9:22:08:c1:c3:68:c3:b4:3a:
                    0e:b0:d7:9b:94:06:bf:5c:a8:5a:2a:e5:85:6d:38:ba:
                    07:f9:04:f9:10:0d:f8:c4:42:dc:78:06:65:2a:f6:6d:
                    90:7c:17:0f:51:5b:36:f8:1a:db:e9:be:f9:c4:3d:74:
                    68:88:e3:01:5c:fd:0e:52:8a:de:45:36:1b:05:e4:0f:
                    d8:2d:32:57:97:26:37:8a:3e:16:cc:f9:ea:fe:17:e3:
                    8b:b8:91:97:fd:6b:88:29:a2:2f:bd:3a:16:49:36:16:
                    60:53:e4:4b:58:12:66:d7:ec:2f:87:2f:9a:a4:b2:3c:
                    50:4e:23:9d:99:8c:82:45:10:c0:49:26:91:0c:5b:fc:
                    7d:ef:fa:9b:89:2c:12:79:2c:a7:90:6b:18:f3:e6:7f:
                    e2:ef:e4:b7:44:33:f9:cc:15:e4:ba:c7:ae:ad:48:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:7c:b8:ea:1b:57:b3:27:82:0c:d8:09:58:c1:ea:43:
        90:d4:09:af:59:e8:ca:5f:84:64:15:ea:88:94:f8:42:
        a3:45:58:05:b6:ab:8f:83:a7:e0:eb:1e:3e:59:7b:3b:
        de:74:bf:02:a2:17:4a:da:a7:af:86:82:be:51:ac:2b:
        23:c4:7b:fa:c8:33:bc:7b:45:dc:80:f2:c0:f2:9a:69:
        a2:c5:36:dd:c8:01:6b:4e:fa:35:6a:10:c0:7f:f5:47:
        3c:f0:be:ab:9d:b5:68:12:18:2b:3e:bd:4a:82:61:ea:
        5a:d4:6d:59:25:94:96:a1:40:cf:bf:3f:ca:8e:d3:ce:
        50:9b:d4:2f:62:05:8d:5b:3c:26:a1:2d:08:4c:8e:d9:
        c4:ea:69:ee:90:6d:5d:e0:41:6d:2c:e3:e5:69:57:78:
        43:d7:2f:03:0d:70:17:51:0e:eb:6e:e5:ad:24:a8:54:
        20:04:5d:83:cf:72:14:10:b9:19:33:b7:c9:79:2e:c2:
        2c:58:6d:97:0b:02:ab:99:1f:e8:9a:9e:60:55:19:3b:
        2d:11:78:3c:1e:8c:73:a7:1f:ef:48:f5:81:a6:75:21:
        02:85:19:db:99:42:96:a4:cc:81:16:0d:db:1f:03:ad:
        88:44:1c:f7:81:d5:92:a8:ef:6f:dd:c6:d6:9f:ed:3c
    Fingerprint (SHA-256):
        DF:1E:2A:24:DC:ED:DD:38:0E:BD:19:04:4B:5A:0E:1E:78:10:0A:AA:3E:25:4F:CB:A3:9C:A3:AA:F8:C9:90:FD
    Fingerprint (SHA1):
        95:2A:9E:93:79:6F:B4:56:B8:5A:B9:80:F3:FB:4A:B0:41:A1:C2:E7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3657: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3658: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123183 (0x310fdcef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:7e:3b:34:0e:6d:e9:0c:9b:bc:44:d8:4a:8d:77:9d:
                    11:15:47:0b:5d:7d:7d:66:d3:28:38:9e:ea:c8:69:36:
                    bc:84:10:2e:a3:0e:35:e0:b6:a2:d4:b1:07:7e:ea:7f:
                    6e:b7:db:ba:7a:e9:b4:29:d7:72:a6:c9:80:85:8f:7b:
                    a3:09:8d:be:fd:4e:4d:33:fb:32:51:53:ed:70:30:b0:
                    2e:2c:9b:25:2f:57:07:19:de:f5:ee:a5:d5:8e:4e:bc:
                    21:00:fd:35:52:0e:09:9d:1c:85:dd:ef:21:c2:93:92:
                    a8:71:d4:a9:d2:38:28:94:aa:3c:86:58:cc:5d:5d:d7:
                    c3:cd:eb:15:b7:d8:64:be:dd:47:88:f4:cb:e3:e9:7d:
                    b2:21:e0:27:74:32:cd:e7:df:22:05:52:5d:d3:a0:e4:
                    d8:0f:68:a7:d5:22:61:24:7a:22:e8:c8:8d:85:a2:9f:
                    84:e7:00:b2:fb:1f:ad:c4:af:0d:2a:99:80:01:4a:f6:
                    f6:c3:e7:4e:5f:00:14:71:a5:db:30:97:a7:ec:aa:1e:
                    2e:3c:7b:22:0e:e1:c8:56:fc:97:ec:75:10:9a:69:62:
                    d5:55:97:29:32:11:68:24:d6:c2:16:61:c3:14:c8:3a:
                    14:1f:7e:5e:3f:67:33:12:a2:aa:b0:e4:5d:7d:23:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:c9:e5:c8:be:d6:a8:48:1a:9c:d0:2e:f1:46:2e:8e:
        50:3f:9b:d0:9c:15:f2:5f:0a:6d:be:1a:d4:8a:5f:70:
        04:5d:4f:1b:a0:60:a1:c8:ba:ca:36:c4:dc:97:b3:35:
        2a:60:cd:4a:96:d2:c7:0c:7b:6f:ad:fb:eb:b3:cc:f4:
        70:42:0f:17:44:7f:bb:cc:b8:b3:13:31:93:34:c8:a6:
        a7:93:4f:d4:fa:3a:19:95:ac:ef:bd:d1:e7:9c:a1:4d:
        4b:db:f3:d5:1a:1c:a3:e8:d0:8f:8a:64:fd:d7:eb:ef:
        e0:b8:ed:3e:68:e0:24:6c:c1:e4:42:5e:b6:12:12:df:
        c2:5a:1f:06:95:82:70:cf:89:4c:e1:11:4c:59:ba:9e:
        32:34:97:cb:48:60:da:dd:0b:38:b0:3e:49:f5:84:20:
        b5:bf:49:18:88:c0:95:e8:df:c8:60:6d:6f:18:ec:a2:
        f6:9f:c4:5f:be:a7:6f:2f:1d:41:2b:1b:51:88:30:ea:
        ed:e5:ea:7f:cd:3c:e0:40:b7:20:f4:46:56:97:85:f4:
        69:d9:15:3a:66:7e:4f:48:9c:67:da:e3:18:15:bd:c1:
        2b:10:85:67:61:87:17:96:98:f6:1b:d9:56:21:c5:b4:
        00:4e:be:fc:a0:c3:19:e9:6d:e4:71:77:71:6e:98:0e
    Fingerprint (SHA-256):
        0E:93:03:3E:F8:9E:2C:69:93:AE:2D:25:E8:24:4A:96:8A:19:18:45:8A:F8:EB:D5:69:D2:95:E1:5C:4D:E8:5E
    Fingerprint (SHA1):
        AC:18:BB:98:F6:C8:22:1B:B2:2B:DA:33:7C:55:23:67:91:85:95:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3659: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123183 (0x310fdcef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:7e:3b:34:0e:6d:e9:0c:9b:bc:44:d8:4a:8d:77:9d:
                    11:15:47:0b:5d:7d:7d:66:d3:28:38:9e:ea:c8:69:36:
                    bc:84:10:2e:a3:0e:35:e0:b6:a2:d4:b1:07:7e:ea:7f:
                    6e:b7:db:ba:7a:e9:b4:29:d7:72:a6:c9:80:85:8f:7b:
                    a3:09:8d:be:fd:4e:4d:33:fb:32:51:53:ed:70:30:b0:
                    2e:2c:9b:25:2f:57:07:19:de:f5:ee:a5:d5:8e:4e:bc:
                    21:00:fd:35:52:0e:09:9d:1c:85:dd:ef:21:c2:93:92:
                    a8:71:d4:a9:d2:38:28:94:aa:3c:86:58:cc:5d:5d:d7:
                    c3:cd:eb:15:b7:d8:64:be:dd:47:88:f4:cb:e3:e9:7d:
                    b2:21:e0:27:74:32:cd:e7:df:22:05:52:5d:d3:a0:e4:
                    d8:0f:68:a7:d5:22:61:24:7a:22:e8:c8:8d:85:a2:9f:
                    84:e7:00:b2:fb:1f:ad:c4:af:0d:2a:99:80:01:4a:f6:
                    f6:c3:e7:4e:5f:00:14:71:a5:db:30:97:a7:ec:aa:1e:
                    2e:3c:7b:22:0e:e1:c8:56:fc:97:ec:75:10:9a:69:62:
                    d5:55:97:29:32:11:68:24:d6:c2:16:61:c3:14:c8:3a:
                    14:1f:7e:5e:3f:67:33:12:a2:aa:b0:e4:5d:7d:23:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:c9:e5:c8:be:d6:a8:48:1a:9c:d0:2e:f1:46:2e:8e:
        50:3f:9b:d0:9c:15:f2:5f:0a:6d:be:1a:d4:8a:5f:70:
        04:5d:4f:1b:a0:60:a1:c8:ba:ca:36:c4:dc:97:b3:35:
        2a:60:cd:4a:96:d2:c7:0c:7b:6f:ad:fb:eb:b3:cc:f4:
        70:42:0f:17:44:7f:bb:cc:b8:b3:13:31:93:34:c8:a6:
        a7:93:4f:d4:fa:3a:19:95:ac:ef:bd:d1:e7:9c:a1:4d:
        4b:db:f3:d5:1a:1c:a3:e8:d0:8f:8a:64:fd:d7:eb:ef:
        e0:b8:ed:3e:68:e0:24:6c:c1:e4:42:5e:b6:12:12:df:
        c2:5a:1f:06:95:82:70:cf:89:4c:e1:11:4c:59:ba:9e:
        32:34:97:cb:48:60:da:dd:0b:38:b0:3e:49:f5:84:20:
        b5:bf:49:18:88:c0:95:e8:df:c8:60:6d:6f:18:ec:a2:
        f6:9f:c4:5f:be:a7:6f:2f:1d:41:2b:1b:51:88:30:ea:
        ed:e5:ea:7f:cd:3c:e0:40:b7:20:f4:46:56:97:85:f4:
        69:d9:15:3a:66:7e:4f:48:9c:67:da:e3:18:15:bd:c1:
        2b:10:85:67:61:87:17:96:98:f6:1b:d9:56:21:c5:b4:
        00:4e:be:fc:a0:c3:19:e9:6d:e4:71:77:71:6e:98:0e
    Fingerprint (SHA-256):
        0E:93:03:3E:F8:9E:2C:69:93:AE:2D:25:E8:24:4A:96:8A:19:18:45:8A:F8:EB:D5:69:D2:95:E1:5C:4D:E8:5E
    Fingerprint (SHA1):
        AC:18:BB:98:F6:C8:22:1B:B2:2B:DA:33:7C:55:23:67:91:85:95:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3660: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123184 (0x310fdcf0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:d8:8f:47:70:54:d0:4d:df:c6:d6:47:8c:dd:4d:b5:
                    b4:df:2d:2c:34:5f:6a:32:5d:77:bf:d9:1b:c8:6c:ad:
                    c9:9b:b6:9c:51:28:55:40:61:f1:46:0a:b7:6e:81:36:
                    66:15:43:83:6e:36:d8:3c:98:88:97:e3:10:d2:fb:05:
                    ba:99:9f:89:b6:63:d5:18:80:89:28:df:3c:5e:00:68:
                    36:52:3b:15:49:d2:a8:90:e6:f8:95:16:d2:05:8b:1a:
                    72:ed:9e:71:fb:64:0b:0b:98:0c:fb:84:20:ea:c4:01:
                    97:1b:25:fe:11:de:28:59:bb:73:31:df:76:61:44:97:
                    94:08:1c:a7:8a:94:db:63:c5:d7:4c:3d:cb:09:ea:80:
                    b4:b3:c5:90:fa:d4:d9:91:e3:03:c9:37:c8:7a:d6:e9:
                    5d:bf:66:cd:85:4a:71:c8:dc:4a:f1:ef:11:10:5b:b0:
                    ee:e9:af:8e:52:df:22:07:81:6f:90:ba:19:8d:85:17:
                    04:dd:99:0b:0a:d6:cb:c8:c7:8b:a8:c3:64:dd:df:ae:
                    a6:41:54:84:f3:11:8a:eb:ca:93:32:79:f1:43:24:a5:
                    66:7e:e7:0e:0f:e2:cf:5d:35:3a:6f:84:20:c1:4e:73:
                    9d:24:e0:61:af:83:ac:c8:07:38:07:dd:6f:3a:e3:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:5a:07:a0:dd:1a:81:35:4f:ea:a5:9c:8a:f1:2d:d7:
        ec:f7:05:e3:95:db:42:9a:e0:7b:f5:16:ef:80:39:3b:
        c9:80:d8:d2:52:51:e8:2f:72:10:73:67:e3:d2:c8:09:
        4a:a4:47:6a:cd:bd:45:54:f2:e9:d6:11:75:46:fe:cf:
        99:8e:00:49:03:a0:08:eb:e6:75:de:8b:22:d8:04:86:
        e1:33:eb:31:ac:5c:5f:b0:1e:be:1d:1a:35:75:78:9e:
        64:1d:a0:18:9c:80:89:d1:0f:fa:9b:ed:be:ca:a9:b9:
        93:3e:e0:ef:6a:4b:9b:ec:ef:35:be:87:89:c2:2c:c3:
        08:c0:b5:8a:3e:ca:5b:14:63:97:e8:80:d7:94:65:6d:
        a2:5c:a0:c1:3d:31:bc:97:12:0c:de:a4:fd:32:e8:50:
        07:9b:0c:d4:f1:2f:17:31:26:1f:bc:f1:9b:93:4e:9f:
        e0:16:43:35:a3:8a:c8:45:26:5e:8b:41:d3:9b:8b:9a:
        22:b4:fa:d6:c2:f0:79:cf:b1:35:a6:69:15:85:4a:0d:
        9b:51:0d:bd:1e:2d:69:e1:c2:ff:5f:f7:3e:30:20:19:
        cc:9b:32:bf:7c:7b:10:0a:1a:8d:a8:70:c2:47:c6:9f:
        b7:f6:1c:f1:00:c0:f2:e1:fa:0e:51:ce:d7:d9:f4:0b
    Fingerprint (SHA-256):
        73:5A:A0:60:FB:CA:D5:E5:33:48:C2:DC:AA:67:19:6C:2A:2F:A5:78:33:62:F5:61:1A:AC:8E:9E:CA:CA:BE:4B
    Fingerprint (SHA1):
        CA:02:82:B3:0A:7D:25:A6:3D:E0:8B:07:AC:2F:52:59:77:02:4A:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3661: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123184 (0x310fdcf0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:d8:8f:47:70:54:d0:4d:df:c6:d6:47:8c:dd:4d:b5:
                    b4:df:2d:2c:34:5f:6a:32:5d:77:bf:d9:1b:c8:6c:ad:
                    c9:9b:b6:9c:51:28:55:40:61:f1:46:0a:b7:6e:81:36:
                    66:15:43:83:6e:36:d8:3c:98:88:97:e3:10:d2:fb:05:
                    ba:99:9f:89:b6:63:d5:18:80:89:28:df:3c:5e:00:68:
                    36:52:3b:15:49:d2:a8:90:e6:f8:95:16:d2:05:8b:1a:
                    72:ed:9e:71:fb:64:0b:0b:98:0c:fb:84:20:ea:c4:01:
                    97:1b:25:fe:11:de:28:59:bb:73:31:df:76:61:44:97:
                    94:08:1c:a7:8a:94:db:63:c5:d7:4c:3d:cb:09:ea:80:
                    b4:b3:c5:90:fa:d4:d9:91:e3:03:c9:37:c8:7a:d6:e9:
                    5d:bf:66:cd:85:4a:71:c8:dc:4a:f1:ef:11:10:5b:b0:
                    ee:e9:af:8e:52:df:22:07:81:6f:90:ba:19:8d:85:17:
                    04:dd:99:0b:0a:d6:cb:c8:c7:8b:a8:c3:64:dd:df:ae:
                    a6:41:54:84:f3:11:8a:eb:ca:93:32:79:f1:43:24:a5:
                    66:7e:e7:0e:0f:e2:cf:5d:35:3a:6f:84:20:c1:4e:73:
                    9d:24:e0:61:af:83:ac:c8:07:38:07:dd:6f:3a:e3:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:5a:07:a0:dd:1a:81:35:4f:ea:a5:9c:8a:f1:2d:d7:
        ec:f7:05:e3:95:db:42:9a:e0:7b:f5:16:ef:80:39:3b:
        c9:80:d8:d2:52:51:e8:2f:72:10:73:67:e3:d2:c8:09:
        4a:a4:47:6a:cd:bd:45:54:f2:e9:d6:11:75:46:fe:cf:
        99:8e:00:49:03:a0:08:eb:e6:75:de:8b:22:d8:04:86:
        e1:33:eb:31:ac:5c:5f:b0:1e:be:1d:1a:35:75:78:9e:
        64:1d:a0:18:9c:80:89:d1:0f:fa:9b:ed:be:ca:a9:b9:
        93:3e:e0:ef:6a:4b:9b:ec:ef:35:be:87:89:c2:2c:c3:
        08:c0:b5:8a:3e:ca:5b:14:63:97:e8:80:d7:94:65:6d:
        a2:5c:a0:c1:3d:31:bc:97:12:0c:de:a4:fd:32:e8:50:
        07:9b:0c:d4:f1:2f:17:31:26:1f:bc:f1:9b:93:4e:9f:
        e0:16:43:35:a3:8a:c8:45:26:5e:8b:41:d3:9b:8b:9a:
        22:b4:fa:d6:c2:f0:79:cf:b1:35:a6:69:15:85:4a:0d:
        9b:51:0d:bd:1e:2d:69:e1:c2:ff:5f:f7:3e:30:20:19:
        cc:9b:32:bf:7c:7b:10:0a:1a:8d:a8:70:c2:47:c6:9f:
        b7:f6:1c:f1:00:c0:f2:e1:fa:0e:51:ce:d7:d9:f4:0b
    Fingerprint (SHA-256):
        73:5A:A0:60:FB:CA:D5:E5:33:48:C2:DC:AA:67:19:6C:2A:2F:A5:78:33:62:F5:61:1A:AC:8E:9E:CA:CA:BE:4B
    Fingerprint (SHA1):
        CA:02:82:B3:0A:7D:25:A6:3D:E0:8B:07:AC:2F:52:59:77:02:4A:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3662: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123185 (0x310fdcf1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:f1:59:6b:ef:68:3b:2c:85:c3:6d:c8:1b:98:15:72:
                    c9:80:91:bd:49:8b:5b:02:11:99:c9:8b:f6:5e:66:b0:
                    d9:70:b2:aa:c0:2d:e0:49:2c:74:7e:58:d7:26:b5:fd:
                    a3:d5:80:c8:3e:7a:1f:a7:46:5c:55:1d:d1:27:da:8f:
                    04:c7:2f:b5:aa:86:a4:fc:a3:bc:3e:ff:08:bf:cc:af:
                    36:0f:3d:b9:12:48:31:b9:22:08:c1:c3:68:c3:b4:3a:
                    0e:b0:d7:9b:94:06:bf:5c:a8:5a:2a:e5:85:6d:38:ba:
                    07:f9:04:f9:10:0d:f8:c4:42:dc:78:06:65:2a:f6:6d:
                    90:7c:17:0f:51:5b:36:f8:1a:db:e9:be:f9:c4:3d:74:
                    68:88:e3:01:5c:fd:0e:52:8a:de:45:36:1b:05:e4:0f:
                    d8:2d:32:57:97:26:37:8a:3e:16:cc:f9:ea:fe:17:e3:
                    8b:b8:91:97:fd:6b:88:29:a2:2f:bd:3a:16:49:36:16:
                    60:53:e4:4b:58:12:66:d7:ec:2f:87:2f:9a:a4:b2:3c:
                    50:4e:23:9d:99:8c:82:45:10:c0:49:26:91:0c:5b:fc:
                    7d:ef:fa:9b:89:2c:12:79:2c:a7:90:6b:18:f3:e6:7f:
                    e2:ef:e4:b7:44:33:f9:cc:15:e4:ba:c7:ae:ad:48:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:7c:b8:ea:1b:57:b3:27:82:0c:d8:09:58:c1:ea:43:
        90:d4:09:af:59:e8:ca:5f:84:64:15:ea:88:94:f8:42:
        a3:45:58:05:b6:ab:8f:83:a7:e0:eb:1e:3e:59:7b:3b:
        de:74:bf:02:a2:17:4a:da:a7:af:86:82:be:51:ac:2b:
        23:c4:7b:fa:c8:33:bc:7b:45:dc:80:f2:c0:f2:9a:69:
        a2:c5:36:dd:c8:01:6b:4e:fa:35:6a:10:c0:7f:f5:47:
        3c:f0:be:ab:9d:b5:68:12:18:2b:3e:bd:4a:82:61:ea:
        5a:d4:6d:59:25:94:96:a1:40:cf:bf:3f:ca:8e:d3:ce:
        50:9b:d4:2f:62:05:8d:5b:3c:26:a1:2d:08:4c:8e:d9:
        c4:ea:69:ee:90:6d:5d:e0:41:6d:2c:e3:e5:69:57:78:
        43:d7:2f:03:0d:70:17:51:0e:eb:6e:e5:ad:24:a8:54:
        20:04:5d:83:cf:72:14:10:b9:19:33:b7:c9:79:2e:c2:
        2c:58:6d:97:0b:02:ab:99:1f:e8:9a:9e:60:55:19:3b:
        2d:11:78:3c:1e:8c:73:a7:1f:ef:48:f5:81:a6:75:21:
        02:85:19:db:99:42:96:a4:cc:81:16:0d:db:1f:03:ad:
        88:44:1c:f7:81:d5:92:a8:ef:6f:dd:c6:d6:9f:ed:3c
    Fingerprint (SHA-256):
        DF:1E:2A:24:DC:ED:DD:38:0E:BD:19:04:4B:5A:0E:1E:78:10:0A:AA:3E:25:4F:CB:A3:9C:A3:AA:F8:C9:90:FD
    Fingerprint (SHA1):
        95:2A:9E:93:79:6F:B4:56:B8:5A:B9:80:F3:FB:4A:B0:41:A1:C2:E7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3663: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123185 (0x310fdcf1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:10 2017
            Not After : Tue Aug 23 12:31:10 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:f1:59:6b:ef:68:3b:2c:85:c3:6d:c8:1b:98:15:72:
                    c9:80:91:bd:49:8b:5b:02:11:99:c9:8b:f6:5e:66:b0:
                    d9:70:b2:aa:c0:2d:e0:49:2c:74:7e:58:d7:26:b5:fd:
                    a3:d5:80:c8:3e:7a:1f:a7:46:5c:55:1d:d1:27:da:8f:
                    04:c7:2f:b5:aa:86:a4:fc:a3:bc:3e:ff:08:bf:cc:af:
                    36:0f:3d:b9:12:48:31:b9:22:08:c1:c3:68:c3:b4:3a:
                    0e:b0:d7:9b:94:06:bf:5c:a8:5a:2a:e5:85:6d:38:ba:
                    07:f9:04:f9:10:0d:f8:c4:42:dc:78:06:65:2a:f6:6d:
                    90:7c:17:0f:51:5b:36:f8:1a:db:e9:be:f9:c4:3d:74:
                    68:88:e3:01:5c:fd:0e:52:8a:de:45:36:1b:05:e4:0f:
                    d8:2d:32:57:97:26:37:8a:3e:16:cc:f9:ea:fe:17:e3:
                    8b:b8:91:97:fd:6b:88:29:a2:2f:bd:3a:16:49:36:16:
                    60:53:e4:4b:58:12:66:d7:ec:2f:87:2f:9a:a4:b2:3c:
                    50:4e:23:9d:99:8c:82:45:10:c0:49:26:91:0c:5b:fc:
                    7d:ef:fa:9b:89:2c:12:79:2c:a7:90:6b:18:f3:e6:7f:
                    e2:ef:e4:b7:44:33:f9:cc:15:e4:ba:c7:ae:ad:48:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:7c:b8:ea:1b:57:b3:27:82:0c:d8:09:58:c1:ea:43:
        90:d4:09:af:59:e8:ca:5f:84:64:15:ea:88:94:f8:42:
        a3:45:58:05:b6:ab:8f:83:a7:e0:eb:1e:3e:59:7b:3b:
        de:74:bf:02:a2:17:4a:da:a7:af:86:82:be:51:ac:2b:
        23:c4:7b:fa:c8:33:bc:7b:45:dc:80:f2:c0:f2:9a:69:
        a2:c5:36:dd:c8:01:6b:4e:fa:35:6a:10:c0:7f:f5:47:
        3c:f0:be:ab:9d:b5:68:12:18:2b:3e:bd:4a:82:61:ea:
        5a:d4:6d:59:25:94:96:a1:40:cf:bf:3f:ca:8e:d3:ce:
        50:9b:d4:2f:62:05:8d:5b:3c:26:a1:2d:08:4c:8e:d9:
        c4:ea:69:ee:90:6d:5d:e0:41:6d:2c:e3:e5:69:57:78:
        43:d7:2f:03:0d:70:17:51:0e:eb:6e:e5:ad:24:a8:54:
        20:04:5d:83:cf:72:14:10:b9:19:33:b7:c9:79:2e:c2:
        2c:58:6d:97:0b:02:ab:99:1f:e8:9a:9e:60:55:19:3b:
        2d:11:78:3c:1e:8c:73:a7:1f:ef:48:f5:81:a6:75:21:
        02:85:19:db:99:42:96:a4:cc:81:16:0d:db:1f:03:ad:
        88:44:1c:f7:81:d5:92:a8:ef:6f:dd:c6:d6:9f:ed:3c
    Fingerprint (SHA-256):
        DF:1E:2A:24:DC:ED:DD:38:0E:BD:19:04:4B:5A:0E:1E:78:10:0A:AA:3E:25:4F:CB:A3:9C:A3:AA:F8:C9:90:FD
    Fingerprint (SHA1):
        95:2A:9E:93:79:6F:B4:56:B8:5A:B9:80:F3:FB:4A:B0:41:A1:C2:E7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3664: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3665: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123188 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3666: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3667: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3668: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3669: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123189   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3670: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3671: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3672: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3673: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123190   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3674: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3675: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3676: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3677: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 823123191   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3678: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3679: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3680: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3681: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123192   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3682: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3683: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3684: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3685: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123193   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3686: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3687: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3688: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3689: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 823123194   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3690: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3691: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3692: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3693: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3694: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3695: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3696: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123188 (0x310fdcf4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:11 2017
            Not After : Tue Aug 23 12:31:11 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:29:a0:38:92:bf:2a:db:5b:85:2a:35:46:12:c6:16:
                    55:86:92:26:b9:15:8d:4d:22:52:49:7c:80:0a:75:3f:
                    ef:37:0d:fc:36:5b:47:df:62:ad:ff:04:c0:f8:53:cc:
                    f4:90:06:fb:16:df:76:bc:6f:d2:54:c5:4f:f3:e9:10:
                    86:c7:e1:73:b6:2d:ca:f8:bd:da:b3:93:35:57:2a:70:
                    6d:7f:cf:1f:aa:b1:31:15:da:e2:96:79:44:41:33:70:
                    b8:28:5e:01:fb:1b:f3:3a:00:fd:8e:d7:cb:f6:c4:1f:
                    c2:28:07:6d:15:12:cd:f8:da:67:67:de:b4:88:15:4b:
                    c3:1d:7e:2e:21:35:c3:bb:a5:b7:14:77:d9:d5:56:95:
                    06:be:d0:01:06:b6:d8:cb:7d:ad:cc:45:ab:00:62:03:
                    43:87:fe:cb:60:68:e4:70:05:fb:e2:54:3a:78:fe:8c:
                    69:87:83:bf:9f:d3:59:a7:c0:29:10:c6:c7:a9:16:9c:
                    cc:93:b4:b6:3d:8b:9d:b8:2c:0e:49:54:18:21:2f:09:
                    c1:0d:cc:34:26:06:e6:62:b1:67:a4:e5:20:dd:4c:87:
                    30:97:c7:8d:b1:df:63:4b:64:b1:a5:ac:f8:d1:f0:07:
                    0d:73:61:88:f2:29:14:8f:bf:03:7b:e8:fc:da:44:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:d8:52:59:a0:7a:90:f4:46:0d:0e:6c:b7:5b:a0:6d:
        04:55:0d:ca:60:92:1f:da:aa:17:3f:0e:0d:bf:3e:21:
        ed:0c:48:86:a7:ce:4f:9d:97:25:a7:2a:f1:62:58:e9:
        4a:de:6e:31:f6:82:ec:b8:aa:2f:91:29:a8:f0:f7:01:
        83:f0:c5:83:a5:b5:1e:bf:5c:6a:cd:ae:3a:80:8a:8e:
        21:00:e2:df:52:4c:4e:9e:c5:1c:1b:30:51:82:37:82:
        e1:ac:eb:9c:30:82:26:ff:ff:8c:dc:11:f5:1a:aa:bf:
        1a:ed:83:3a:25:9c:73:51:3c:e6:3e:7d:f8:42:90:07:
        fc:f2:ea:45:9a:d4:93:41:ec:9f:76:dd:3f:21:9a:06:
        ce:5f:81:14:b3:9e:59:17:fc:17:5f:8b:c4:b4:44:e1:
        5b:9c:22:cd:a3:26:b3:85:7b:45:15:62:c0:c1:c4:21:
        59:05:90:a0:a5:5f:87:2c:38:2a:14:17:18:5a:d7:4a:
        b2:a5:e0:c1:a3:26:55:4e:34:c2:e1:e7:77:c7:d3:58:
        cc:60:85:db:78:0e:b2:f6:57:84:91:27:84:9f:cf:95:
        bf:a3:32:84:04:2b:7b:fb:2d:ec:04:6b:5e:30:18:0d:
        28:f7:9d:fc:d2:df:e7:6a:0f:76:73:7e:9b:25:7b:cc
    Fingerprint (SHA-256):
        3F:04:FE:8D:F7:DE:F2:0A:A4:DD:7A:0C:D1:C0:98:71:C9:2F:CD:BE:E9:B1:82:0A:B6:40:C4:94:D3:50:A7:8D
    Fingerprint (SHA1):
        BB:CD:1F:C0:7D:95:73:99:C5:0A:F5:64:7B:ED:7B:CB:A9:87:DB:BF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3697: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3698: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3699: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3700: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123188 (0x310fdcf4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:11 2017
            Not After : Tue Aug 23 12:31:11 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:29:a0:38:92:bf:2a:db:5b:85:2a:35:46:12:c6:16:
                    55:86:92:26:b9:15:8d:4d:22:52:49:7c:80:0a:75:3f:
                    ef:37:0d:fc:36:5b:47:df:62:ad:ff:04:c0:f8:53:cc:
                    f4:90:06:fb:16:df:76:bc:6f:d2:54:c5:4f:f3:e9:10:
                    86:c7:e1:73:b6:2d:ca:f8:bd:da:b3:93:35:57:2a:70:
                    6d:7f:cf:1f:aa:b1:31:15:da:e2:96:79:44:41:33:70:
                    b8:28:5e:01:fb:1b:f3:3a:00:fd:8e:d7:cb:f6:c4:1f:
                    c2:28:07:6d:15:12:cd:f8:da:67:67:de:b4:88:15:4b:
                    c3:1d:7e:2e:21:35:c3:bb:a5:b7:14:77:d9:d5:56:95:
                    06:be:d0:01:06:b6:d8:cb:7d:ad:cc:45:ab:00:62:03:
                    43:87:fe:cb:60:68:e4:70:05:fb:e2:54:3a:78:fe:8c:
                    69:87:83:bf:9f:d3:59:a7:c0:29:10:c6:c7:a9:16:9c:
                    cc:93:b4:b6:3d:8b:9d:b8:2c:0e:49:54:18:21:2f:09:
                    c1:0d:cc:34:26:06:e6:62:b1:67:a4:e5:20:dd:4c:87:
                    30:97:c7:8d:b1:df:63:4b:64:b1:a5:ac:f8:d1:f0:07:
                    0d:73:61:88:f2:29:14:8f:bf:03:7b:e8:fc:da:44:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:d8:52:59:a0:7a:90:f4:46:0d:0e:6c:b7:5b:a0:6d:
        04:55:0d:ca:60:92:1f:da:aa:17:3f:0e:0d:bf:3e:21:
        ed:0c:48:86:a7:ce:4f:9d:97:25:a7:2a:f1:62:58:e9:
        4a:de:6e:31:f6:82:ec:b8:aa:2f:91:29:a8:f0:f7:01:
        83:f0:c5:83:a5:b5:1e:bf:5c:6a:cd:ae:3a:80:8a:8e:
        21:00:e2:df:52:4c:4e:9e:c5:1c:1b:30:51:82:37:82:
        e1:ac:eb:9c:30:82:26:ff:ff:8c:dc:11:f5:1a:aa:bf:
        1a:ed:83:3a:25:9c:73:51:3c:e6:3e:7d:f8:42:90:07:
        fc:f2:ea:45:9a:d4:93:41:ec:9f:76:dd:3f:21:9a:06:
        ce:5f:81:14:b3:9e:59:17:fc:17:5f:8b:c4:b4:44:e1:
        5b:9c:22:cd:a3:26:b3:85:7b:45:15:62:c0:c1:c4:21:
        59:05:90:a0:a5:5f:87:2c:38:2a:14:17:18:5a:d7:4a:
        b2:a5:e0:c1:a3:26:55:4e:34:c2:e1:e7:77:c7:d3:58:
        cc:60:85:db:78:0e:b2:f6:57:84:91:27:84:9f:cf:95:
        bf:a3:32:84:04:2b:7b:fb:2d:ec:04:6b:5e:30:18:0d:
        28:f7:9d:fc:d2:df:e7:6a:0f:76:73:7e:9b:25:7b:cc
    Fingerprint (SHA-256):
        3F:04:FE:8D:F7:DE:F2:0A:A4:DD:7A:0C:D1:C0:98:71:C9:2F:CD:BE:E9:B1:82:0A:B6:40:C4:94:D3:50:A7:8D
    Fingerprint (SHA1):
        BB:CD:1F:C0:7D:95:73:99:C5:0A:F5:64:7B:ED:7B:CB:A9:87:DB:BF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3701: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3702: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3703: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123195 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3704: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3705: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3706: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3707: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123196   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3709: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3710: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3711: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 823123197   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3713: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3714: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3715: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 823123198   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3717: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3718: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3719: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 823123199   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3720: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3721: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3722: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3723: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 823123200   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3725: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3726: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3727: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 823123201   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3729: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3730: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3731: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 823123202   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3732: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3733: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3734: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3735: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 823123203   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3737: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3738: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3739: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 823123204   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3741: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3742: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3743: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 823123205   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3744: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3745: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3746: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3747: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 823123206   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3749: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3750: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3751: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 823123207   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3752: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3753: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3754: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3755: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 823123208   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3756: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3757: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3758: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3759: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 823123209   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3760: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3761: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3762: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3763: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 823123210   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3764: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3765: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3766: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3767: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 823123211   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3768: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3769: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3770: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3771: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 823123212   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3772: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3773: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3774: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3775: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 823123213   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3776: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3777: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3778: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3779: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 823123214   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3780: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3781: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3782: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3783: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 823123215   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3784: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3785: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3786: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3787: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 823123216   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3788: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3789: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3790: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3791: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 823123217   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3792: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3793: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3794: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3795: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 823123218   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3796: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3797: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3798: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3799: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 823123219   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3800: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3801: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3802: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3803: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 823123220   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3804: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3805: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3806: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3807: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 823123221   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3808: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3809: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3810: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3811: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 823123222   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3812: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3813: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3814: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3815: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 823123223   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3816: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3817: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3818: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3819: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 823123224   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3820: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3821: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3822: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3823: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3824: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3825: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3826: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3827: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3828: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3829: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3830: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3832: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3833: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3835: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3836: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3837: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3838: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3839: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3840: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3841: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3842: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3843: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3844: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123195 (0x310fdcfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:13 2017
            Not After : Tue Aug 23 12:31:13 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:68:7f:5a:8e:3e:6c:4c:4d:ab:55:be:5a:fa:8f:64:
                    3c:0a:64:a3:66:92:9b:e8:36:33:ea:50:37:49:f2:63:
                    31:d6:bb:01:e0:a6:8d:36:4d:49:f5:3f:3c:7e:5c:42:
                    18:f8:cd:a5:c2:00:ac:9e:e3:b5:4a:3f:97:47:1c:fa:
                    de:cb:4a:aa:18:9f:7c:b9:6d:a7:0f:e4:5e:64:13:c7:
                    0e:42:40:65:d2:19:d1:b0:13:d4:3e:d6:bd:0e:f0:63:
                    e9:57:e5:46:67:d1:ac:34:fe:55:d2:41:9f:63:8a:8b:
                    4d:54:91:64:ee:32:4e:46:11:99:e1:6d:9f:28:0e:0a:
                    b6:32:99:a5:63:4a:2c:2a:b5:d1:90:a3:ba:1a:04:e6:
                    b3:e5:05:da:cf:cf:c7:cf:77:f5:18:2e:d1:7b:7c:57:
                    c7:72:d1:fd:49:a7:50:24:b5:f6:3a:9f:e9:06:4e:6d:
                    18:c6:bf:0d:ce:93:bb:c4:fa:84:a9:0d:5a:a2:ee:e1:
                    5b:35:52:ee:b2:17:0e:23:c9:80:12:2f:69:43:ed:fa:
                    53:a9:b3:f4:82:06:0f:7c:6c:ab:82:b9:bd:78:f0:40:
                    f8:a0:e3:ed:d8:21:74:4f:e9:83:90:01:ef:1e:80:a7:
                    82:24:83:88:42:56:48:26:02:38:91:f5:e6:b4:ab:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:c3:12:fa:a8:9b:4c:9f:b3:55:8f:7a:f0:34:61:b2:
        8a:2a:cc:2d:72:04:f3:01:13:d1:64:32:8b:fe:44:63:
        d7:76:52:be:43:2d:cb:91:58:51:8a:e9:7e:00:36:cb:
        19:77:a3:28:12:d9:0f:27:aa:0e:a5:98:d7:36:f8:e3:
        bd:1e:1d:21:4a:b0:4f:61:d8:84:6c:55:c8:3e:63:27:
        e4:f5:71:bc:42:05:29:a0:2f:47:40:f3:4b:6c:de:62:
        6c:04:f8:3d:01:e3:af:28:ee:9d:9d:42:02:ce:99:94:
        13:5f:29:d8:0e:8c:7e:52:fb:d6:79:8f:be:cf:48:85:
        d3:0d:1f:99:4c:a7:bb:59:d1:b9:f9:af:6d:57:6b:88:
        5c:12:a6:e3:c9:51:51:63:d1:1e:40:4f:7d:a1:f2:75:
        b5:cd:aa:eb:37:12:ff:f8:48:b0:72:ad:1b:ea:f2:3a:
        39:67:96:60:b5:89:6d:81:84:5c:07:18:0f:52:4f:15:
        47:d3:ab:bf:d6:8d:a1:0b:19:7f:02:62:28:3d:a3:3b:
        7d:0e:ca:d1:56:e2:53:fd:b5:0f:6e:cc:69:3a:fa:d0:
        98:bf:75:83:2d:51:3a:eb:de:f7:37:8c:79:02:88:f1:
        0c:3c:a8:92:7b:4c:ae:4d:3e:de:36:c9:9e:3d:87:bf
    Fingerprint (SHA-256):
        03:54:C0:3C:55:15:A7:88:F3:3D:04:D3:93:7D:C9:87:67:F5:39:FE:06:29:BE:B2:42:89:E3:26:5E:DC:C4:07
    Fingerprint (SHA1):
        AE:BD:D0:C3:FF:22:6F:A1:6F:DC:43:0B:E2:32:47:D8:B4:F4:93:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3845: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3846: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3847: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123225 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3848: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3849: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3850: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3851: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 823123226   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3852: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3853: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3854: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3855: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 823123227   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3856: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3857: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3858: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3859: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 823123228   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3860: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3861: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3862: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3863: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 823123229   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3864: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3865: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3866: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3867: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 823123230   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3868: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3869: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3870: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3871: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 823123231   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3872: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3873: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3874: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123225 (0x310fdd19)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:20 2017
            Not After : Tue Aug 23 12:31:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:18:52:c8:20:35:36:39:90:aa:58:16:82:08:f8:f1:
                    42:e3:93:46:c3:05:05:27:49:6f:18:f2:70:8a:b3:16:
                    f7:8a:3e:19:ff:dc:d7:78:27:b6:53:75:8c:e6:21:34:
                    35:a1:e6:20:84:ea:ff:18:a9:65:ce:0f:a4:3d:3b:37:
                    81:82:0e:bd:ef:05:57:4b:18:e1:33:5d:90:4c:ee:a4:
                    aa:51:f9:db:98:fc:cf:5e:ef:0f:f3:16:1d:17:fa:a7:
                    a5:f1:82:44:6e:ee:b2:94:47:f8:07:23:2d:30:e1:7f:
                    30:ec:72:f6:65:de:62:0f:4d:1c:e9:e2:21:60:6d:f4:
                    21:0c:f3:c7:93:90:03:61:3c:ad:cb:00:06:65:bc:68:
                    b9:eb:e0:80:01:f6:c4:00:a9:bc:dc:f1:ee:1a:2e:54:
                    4d:95:87:73:75:d5:83:15:f7:15:2a:90:5e:2a:92:97:
                    2a:8c:bd:ac:b7:06:cd:97:21:38:de:4a:cd:7b:3e:9b:
                    f3:ea:30:21:86:e3:b1:48:d7:e3:d1:6f:56:4f:d2:b9:
                    29:3d:56:7e:e5:45:4a:a8:6d:49:6b:87:cb:ca:0e:0a:
                    ab:98:db:4a:84:34:f5:28:14:66:a1:03:f7:25:34:a3:
                    10:92:f4:42:90:88:4a:1c:23:c4:7e:a3:fc:41:a5:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0c:a8:e1:2c:33:53:84:1e:10:9d:25:89:cf:e1:bd:
        4e:ac:a9:f1:ce:97:2a:c0:91:91:3e:72:e4:8e:22:57:
        d8:5c:f2:a6:9d:d8:27:ff:99:db:4c:e2:18:c0:09:82:
        3a:f7:a2:d4:96:40:ed:3b:f4:32:81:32:a4:b1:6a:5c:
        8b:88:be:94:60:4f:01:10:18:97:3c:24:3c:95:0c:f9:
        7d:93:f4:a8:7e:64:7a:c4:d4:d3:30:8f:82:0b:ba:ed:
        3b:9f:70:d1:f0:5f:8d:ed:2f:ff:16:26:6d:30:26:60:
        85:7c:47:c8:ff:ef:bf:79:a3:a1:bc:2e:78:a1:c6:fe:
        b5:f2:3b:df:d7:ba:f8:46:74:1b:46:91:15:a0:76:bc:
        f6:99:d1:68:79:c5:45:0d:6f:cc:b8:ba:5f:2e:63:17:
        a8:20:19:c2:0b:f5:81:37:60:a4:21:9f:e0:a1:17:3d:
        3c:29:4e:14:e4:da:71:2d:5b:1b:b1:85:af:0a:08:8f:
        89:75:f0:03:89:3d:f4:14:f3:c2:e0:fd:03:4f:b0:c2:
        9c:82:ee:95:db:8b:14:38:5c:36:35:01:74:7e:bb:dc:
        e1:0c:08:94:d5:e9:23:9c:10:ea:6a:fc:82:76:b2:00:
        74:37:0a:39:6f:b0:78:43:a8:ed:81:ea:b6:05:bd:00
    Fingerprint (SHA-256):
        2D:6A:BB:84:59:4F:CE:6D:36:91:12:06:C7:8C:AA:E9:06:72:16:C2:4F:C3:39:39:1F:DE:6E:39:83:09:D5:E1
    Fingerprint (SHA1):
        99:10:B0:9A:E0:D0:2B:B0:26:70:ED:BB:55:19:38:13:2E:9D:B4:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3875: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3876: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3877: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3878: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123225 (0x310fdd19)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:20 2017
            Not After : Tue Aug 23 12:31:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:18:52:c8:20:35:36:39:90:aa:58:16:82:08:f8:f1:
                    42:e3:93:46:c3:05:05:27:49:6f:18:f2:70:8a:b3:16:
                    f7:8a:3e:19:ff:dc:d7:78:27:b6:53:75:8c:e6:21:34:
                    35:a1:e6:20:84:ea:ff:18:a9:65:ce:0f:a4:3d:3b:37:
                    81:82:0e:bd:ef:05:57:4b:18:e1:33:5d:90:4c:ee:a4:
                    aa:51:f9:db:98:fc:cf:5e:ef:0f:f3:16:1d:17:fa:a7:
                    a5:f1:82:44:6e:ee:b2:94:47:f8:07:23:2d:30:e1:7f:
                    30:ec:72:f6:65:de:62:0f:4d:1c:e9:e2:21:60:6d:f4:
                    21:0c:f3:c7:93:90:03:61:3c:ad:cb:00:06:65:bc:68:
                    b9:eb:e0:80:01:f6:c4:00:a9:bc:dc:f1:ee:1a:2e:54:
                    4d:95:87:73:75:d5:83:15:f7:15:2a:90:5e:2a:92:97:
                    2a:8c:bd:ac:b7:06:cd:97:21:38:de:4a:cd:7b:3e:9b:
                    f3:ea:30:21:86:e3:b1:48:d7:e3:d1:6f:56:4f:d2:b9:
                    29:3d:56:7e:e5:45:4a:a8:6d:49:6b:87:cb:ca:0e:0a:
                    ab:98:db:4a:84:34:f5:28:14:66:a1:03:f7:25:34:a3:
                    10:92:f4:42:90:88:4a:1c:23:c4:7e:a3:fc:41:a5:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0c:a8:e1:2c:33:53:84:1e:10:9d:25:89:cf:e1:bd:
        4e:ac:a9:f1:ce:97:2a:c0:91:91:3e:72:e4:8e:22:57:
        d8:5c:f2:a6:9d:d8:27:ff:99:db:4c:e2:18:c0:09:82:
        3a:f7:a2:d4:96:40:ed:3b:f4:32:81:32:a4:b1:6a:5c:
        8b:88:be:94:60:4f:01:10:18:97:3c:24:3c:95:0c:f9:
        7d:93:f4:a8:7e:64:7a:c4:d4:d3:30:8f:82:0b:ba:ed:
        3b:9f:70:d1:f0:5f:8d:ed:2f:ff:16:26:6d:30:26:60:
        85:7c:47:c8:ff:ef:bf:79:a3:a1:bc:2e:78:a1:c6:fe:
        b5:f2:3b:df:d7:ba:f8:46:74:1b:46:91:15:a0:76:bc:
        f6:99:d1:68:79:c5:45:0d:6f:cc:b8:ba:5f:2e:63:17:
        a8:20:19:c2:0b:f5:81:37:60:a4:21:9f:e0:a1:17:3d:
        3c:29:4e:14:e4:da:71:2d:5b:1b:b1:85:af:0a:08:8f:
        89:75:f0:03:89:3d:f4:14:f3:c2:e0:fd:03:4f:b0:c2:
        9c:82:ee:95:db:8b:14:38:5c:36:35:01:74:7e:bb:dc:
        e1:0c:08:94:d5:e9:23:9c:10:ea:6a:fc:82:76:b2:00:
        74:37:0a:39:6f:b0:78:43:a8:ed:81:ea:b6:05:bd:00
    Fingerprint (SHA-256):
        2D:6A:BB:84:59:4F:CE:6D:36:91:12:06:C7:8C:AA:E9:06:72:16:C2:4F:C3:39:39:1F:DE:6E:39:83:09:D5:E1
    Fingerprint (SHA1):
        99:10:B0:9A:E0:D0:2B:B0:26:70:ED:BB:55:19:38:13:2E:9D:B4:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3879: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3880: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3881: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3882: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123232 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3883: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3884: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3885: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3886: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123233   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3887: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3888: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3889: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3890: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123234   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3891: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3892: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3893: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3894: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123235   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3895: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3896: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3897: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3898: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3899: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3900: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123232 (0x310fdd20)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:22 2017
            Not After : Tue Aug 23 12:31:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:8c:cf:ab:42:0d:4a:4a:67:86:a7:19:12:dc:15:63:
                    88:a0:0a:d2:81:7a:92:53:37:a4:00:f5:36:ea:0c:0a:
                    ab:da:aa:d7:77:db:9d:b6:2f:11:a9:c8:49:17:86:8c:
                    ac:08:20:74:01:59:c6:44:5a:f4:79:1e:28:7a:c1:ca:
                    39:d0:74:d7:e0:de:26:3e:b0:82:24:77:1d:a5:75:fc:
                    34:e2:28:c5:44:97:8f:d5:6d:28:64:8c:16:88:d8:e2:
                    ea:dc:60:46:a5:38:e4:ee:be:71:84:15:30:7b:b4:6f:
                    4b:43:24:05:11:10:e9:41:e9:f0:93:48:ec:ee:48:0f:
                    b8:ca:77:95:e8:2b:b1:bb:12:38:2f:1b:d9:40:ca:9b:
                    86:f2:66:cc:f3:18:67:32:86:9a:86:47:cb:25:83:7d:
                    30:d2:69:73:98:ca:6d:04:bc:41:2a:ee:a0:2c:78:c0:
                    03:8c:ce:78:4a:76:d1:cf:f8:fe:b2:e3:fe:01:bf:4a:
                    9d:20:da:e1:c6:92:bb:28:1c:a4:4f:79:08:33:5c:09:
                    28:ed:a8:92:a1:a0:94:98:cf:2d:4a:1a:b3:fb:ee:37:
                    e1:81:78:45:f6:ce:16:d7:b9:50:8a:cb:17:af:84:3a:
                    a8:c6:11:9e:a5:7d:df:d5:f6:28:16:6a:67:b5:fc:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:6a:84:56:b7:81:e1:7e:c5:92:9d:4d:68:e3:1e:79:
        ed:5c:22:8f:db:0e:c8:d2:55:c4:4a:35:dc:93:f6:88:
        08:71:6a:87:f0:b2:77:87:31:23:bc:ee:19:2b:54:46:
        fb:58:6c:9c:4d:e5:30:51:4c:48:7b:13:90:b7:36:f7:
        56:3d:7d:e0:c1:d5:ac:5b:f0:72:f8:c5:bc:e0:f1:17:
        05:49:9d:25:fc:97:b5:a0:e1:e9:98:c3:b0:54:3b:1c:
        b8:5a:9a:72:67:3b:e2:26:de:d2:8e:82:31:da:33:ff:
        99:3d:77:fa:37:ad:ce:ee:be:b9:5f:86:f9:78:07:d1:
        69:5f:8f:46:fd:3b:f9:1f:73:c4:78:ee:e3:63:bc:45:
        0a:09:e9:46:35:db:8b:8b:f1:cf:eb:c2:b6:e6:6d:67:
        f5:e3:79:16:de:c6:07:bc:af:a6:6d:c2:b0:59:ea:5e:
        a1:0a:3f:ad:fb:2c:fd:50:e0:d4:f0:f5:b1:0c:92:1b:
        3f:b7:64:fa:45:4d:80:e4:1c:3e:28:1b:8b:ea:c2:59:
        52:59:50:3a:59:5b:c1:f6:3a:5a:75:b2:2b:20:00:cb:
        e9:45:9b:12:db:1a:6b:97:43:a8:9f:e6:7c:09:fd:07:
        82:19:50:36:49:c7:dc:00:2a:66:20:2d:eb:a6:54:c7
    Fingerprint (SHA-256):
        19:FB:6C:69:A9:D4:4E:BC:AC:35:75:28:BA:D6:31:22:25:0D:85:89:DF:03:DA:ED:73:2C:22:9B:08:10:6A:23
    Fingerprint (SHA1):
        15:EE:5F:E8:7A:BB:23:7E:24:C3:4B:A5:45:B3:C0:E7:E9:A3:07:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3901: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3902: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3903: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123233 (0x310fdd21)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:22 2017
            Not After : Tue Aug 23 12:31:22 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ea:09:83:92:09:72:81:88:d2:a1:0e:9d:0f:83:fd:
                    5a:3e:9f:ef:3b:1d:e1:08:13:7d:b6:97:6b:8f:16:21:
                    09:a3:28:33:ee:b9:6c:f3:9f:37:8c:fb:63:1c:ff:82:
                    b9:90:99:ce:90:b1:3f:74:8f:48:83:e3:07:be:63:10:
                    dc:a3:70:37:97:f9:2c:2f:48:a0:f2:b4:9b:5f:28:9a:
                    56:1a:67:31:39:aa:0c:10:e1:f8:db:d3:be:cf:e5:3d:
                    6b:78:ce:31:83:5b:5d:c5:ad:26:e7:56:cf:a3:05:74:
                    39:66:d3:7a:40:e6:e3:68:82:91:be:0d:4b:29:ee:e6:
                    7e:a4:3e:f9:4f:2e:6b:28:01:38:99:35:0d:28:b5:ad:
                    a0:eb:fb:1d:da:1a:24:b3:be:72:5b:ab:2c:70:c9:80:
                    8b:f7:db:b7:38:bc:01:ee:e6:2f:80:b5:b5:a9:46:37:
                    8f:7a:6f:8a:4c:f0:7b:88:39:52:e6:36:fd:1b:2e:c9:
                    81:e5:7a:27:00:63:52:4a:e9:ff:df:49:f3:d5:ab:b1:
                    a3:dc:6e:69:e0:61:be:66:12:3d:98:04:9d:a0:ad:65:
                    20:07:07:7e:61:71:2c:a2:27:6b:d4:9e:28:0b:89:81:
                    02:27:0c:a0:8c:a1:e0:bc:41:c7:5d:0c:06:9b:24:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:bc:9b:2b:a2:47:ef:0a:ae:28:a3:01:74:68:31:2c:
        d3:8a:72:41:0c:7b:d7:d3:08:c5:da:61:da:e4:ca:d7:
        6e:b5:0e:aa:65:d4:84:c2:fc:86:3f:69:ee:28:db:e7:
        35:e1:f6:88:d0:fe:50:a3:4e:38:83:3a:97:dd:fb:46:
        5b:f6:34:c1:b6:ee:92:b1:c6:11:c7:06:b7:02:21:30:
        95:9d:7a:e6:70:54:b2:cc:42:8e:87:6c:ab:a8:e4:2c:
        33:8b:3a:f7:73:4e:3c:84:67:5b:ab:ef:79:64:72:ce:
        1c:5b:d9:d5:cf:1e:ac:5a:a8:07:57:84:63:04:54:df:
        dc:3f:1a:e7:67:fd:8a:ed:d4:d3:8d:ab:97:c1:fd:31:
        34:f0:d3:d1:9f:45:2c:b3:b8:7b:96:31:24:d4:9d:f0:
        cf:80:5d:95:70:a7:83:7e:9d:37:e4:67:dd:b1:4e:e0:
        ae:a7:c5:1f:7f:27:e8:81:4e:a5:7f:c2:8a:a6:85:d7:
        85:b9:54:54:7e:b5:d4:45:27:72:90:8b:61:16:ca:b6:
        61:62:f1:61:1a:85:cb:2c:d6:9e:75:eb:cd:da:b1:ff:
        c2:69:5e:c6:4e:31:64:1c:8f:3b:8a:5e:2d:79:22:1b:
        4d:d1:1c:b0:78:09:00:9b:0a:f0:f5:c6:0d:b4:3f:aa
    Fingerprint (SHA-256):
        3A:08:52:C4:35:D2:31:A0:28:8F:26:30:43:71:57:A5:66:DF:37:25:0C:09:D0:77:AD:77:8E:14:EA:B3:08:60
    Fingerprint (SHA1):
        A8:B8:F1:1D:9B:A4:69:00:01:5A:1C:B2:C5:59:43:59:DD:00:87:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3904: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3905: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123234 (0x310fdd22)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:23 2017
            Not After : Tue Aug 23 12:31:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:3c:ad:00:ca:5d:79:b2:57:b1:39:b9:55:c3:67:62:
                    d0:92:4a:75:d6:c8:29:a2:98:49:41:36:d1:1b:f3:0a:
                    2d:d4:50:79:03:f4:9f:5c:87:ea:68:b2:3e:61:25:f7:
                    f7:3e:2a:ce:5e:4a:ac:d7:5a:8d:9d:37:98:4b:74:be:
                    80:c3:7f:57:63:35:be:ab:cd:4a:31:2e:c5:8e:16:f2:
                    34:ce:35:85:17:82:e6:a7:76:ea:fa:00:b3:a7:f9:44:
                    b7:2b:93:e7:d9:e3:a8:6c:af:b2:c3:6c:8e:c0:1f:3c:
                    8a:7a:41:26:73:ec:07:38:52:96:44:80:e4:d2:02:5a:
                    79:9d:b9:70:51:e3:a9:76:7a:76:ac:ae:76:7a:06:4c:
                    5e:77:da:c9:ea:f7:8d:66:0f:a0:7e:fc:47:10:bd:f3:
                    26:7f:9e:bc:ff:9b:2b:98:8f:0c:54:10:42:6b:2b:e7:
                    10:78:35:97:a6:59:01:80:9f:1f:eb:d3:02:8b:05:ed:
                    44:a0:7e:fd:9d:c4:6f:fb:95:73:c9:60:cc:b4:d5:72:
                    ea:cc:ff:3c:b8:ae:83:cf:f8:02:f3:95:0e:1d:26:c5:
                    1f:37:20:71:cb:56:f1:5c:8a:d0:fb:5d:f1:ee:fc:68:
                    19:d5:ed:8b:92:2e:32:c1:43:12:2f:61:70:52:4d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:67:ec:02:f1:87:11:f3:03:f5:c0:e7:57:d6:d1:a0:
        8f:f7:38:d2:d7:88:d8:73:08:78:db:23:dd:77:24:36:
        28:dd:0e:f4:1d:7a:b7:d5:f3:84:7c:c2:fd:f3:2e:c8:
        e0:c7:bd:f0:da:38:53:c8:ed:20:43:ff:45:2f:79:92:
        72:ff:fc:55:fa:f4:0c:cd:4d:58:a7:e1:39:ca:d9:93:
        41:20:2f:cd:72:ef:48:3e:05:cc:5c:cd:12:e4:85:2b:
        70:e9:28:70:bf:2b:d6:87:e6:9e:b5:fb:75:e9:17:13:
        8c:31:2d:d4:86:a8:c6:30:ba:09:93:cb:81:16:fe:36:
        57:69:41:7b:6d:11:08:eb:da:e7:17:80:66:0d:e8:1c:
        bc:8c:e6:3b:5b:38:9b:f2:b8:67:2c:8c:5e:39:cb:2d:
        ea:a4:44:31:f5:c9:84:f0:50:76:39:2f:1a:5f:4f:63:
        77:05:a9:94:40:ae:d9:be:d3:49:6a:54:4e:f9:ea:80:
        d7:57:5c:60:b5:86:dd:cd:a1:37:f4:4f:3f:2c:16:8f:
        07:aa:a9:02:c1:54:88:57:1a:99:fa:72:34:ca:7a:cc:
        81:c4:02:71:19:6c:3f:f9:c3:42:56:2b:be:40:81:5a:
        f5:2b:a6:03:40:a1:3c:90:a8:5b:ce:41:5d:bd:bd:51
    Fingerprint (SHA-256):
        86:F1:FC:18:B0:17:CD:65:6C:BA:50:0F:2A:BB:E6:66:39:5D:30:59:21:7F:DE:94:18:71:03:01:D3:65:37:A3
    Fingerprint (SHA1):
        5B:25:9A:AB:9A:C5:0A:93:41:1B:B7:2B:50:A1:77:D3:15:15:82:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3906: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3907: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123236 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3908: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3909: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3910: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3911: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123237   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3912: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3913: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3914: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3915: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123238   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3916: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3917: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3918: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3919: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 823123239   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3920: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3921: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3922: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3923: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 823123240   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3924: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3925: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3926: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3927: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3928: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3929: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3930: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123236 (0x310fdd24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:23 2017
            Not After : Tue Aug 23 12:31:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:db:8f:01:00:6a:25:c1:5c:63:42:05:3c:e8:8d:8c:
                    b6:50:00:81:32:b2:bd:55:dc:04:27:de:d1:8d:d6:06:
                    ed:f8:a0:22:a0:25:4c:03:f4:9c:a1:2b:1c:a8:56:24:
                    45:0c:b3:4a:39:7d:18:56:56:bf:85:a2:22:44:01:ec:
                    f2:8d:ee:6f:b1:da:b9:45:c7:69:67:c0:09:a2:8a:d2:
                    54:ff:a7:01:d5:68:9a:d5:df:a0:e6:9a:29:9f:78:e7:
                    97:bc:32:fe:c1:22:3c:3a:fc:aa:c3:0e:b4:5f:50:14:
                    5a:29:5e:53:ae:bf:9d:a6:f9:80:fb:d5:31:ff:63:bc:
                    f2:2a:7a:38:22:a2:93:5e:4d:d7:51:c2:15:a6:7f:7c:
                    30:61:ec:bd:2f:4b:84:de:09:ac:3e:f6:e0:52:39:85:
                    8f:af:a3:b9:f9:13:18:ba:40:1c:2a:af:9f:42:38:aa:
                    5b:75:64:36:63:a7:4c:d8:7f:bb:00:43:b1:6b:eb:88:
                    82:b8:d4:2f:60:1c:01:4b:d7:7e:b6:b8:9b:3a:dc:6a:
                    3d:1b:4c:98:94:53:f8:2e:40:2f:6b:77:5d:7b:b7:db:
                    0d:b6:2b:89:d8:0a:ac:97:88:83:03:29:81:02:8a:ee:
                    88:1f:57:a4:97:fc:21:8d:c3:2d:e7:32:ea:0e:c7:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        13:8e:25:1f:eb:6c:d3:f3:40:29:90:f4:9c:8e:bd:26:
        18:22:aa:4a:7b:4a:28:b4:f4:f4:f0:c3:25:49:ea:98:
        98:a6:21:58:56:4c:ba:a8:e8:a5:27:23:a9:13:94:22:
        92:32:44:cc:8c:7b:20:3a:3d:3d:91:50:65:93:54:ad:
        d4:8d:47:ed:f5:95:00:ff:ae:fe:da:be:48:a8:23:91:
        41:b5:38:81:83:d0:28:31:00:38:8a:84:98:af:3a:09:
        25:9b:4d:9b:84:8a:b9:32:c1:61:2f:7c:90:7e:8f:d9:
        89:f1:21:f0:76:a8:53:8a:ab:c3:82:ae:98:57:b2:3f:
        d1:b7:7e:c6:28:5e:74:88:9f:bf:a7:48:c0:bb:f1:99:
        95:ba:90:d1:61:06:f3:0d:ad:2b:9d:4c:70:33:e9:e7:
        5c:7f:55:1f:72:1d:93:63:32:72:fc:a6:b0:0e:d1:40:
        e8:8f:84:d4:8d:ea:5e:07:f4:ac:bd:dc:74:8c:f1:ba:
        1c:95:c7:ca:6a:9f:cf:bb:65:e0:2a:75:48:57:d0:c5:
        2f:5b:ec:9e:9c:b7:aa:13:80:d2:6e:ed:20:d5:3f:6c:
        b9:10:89:c9:9a:83:98:26:49:a4:33:af:33:be:11:89:
        64:b5:bb:16:cf:9e:c4:92:ef:ea:b8:db:2d:3d:ac:cc
    Fingerprint (SHA-256):
        C5:F4:1B:58:2D:76:24:28:15:42:64:ED:09:5F:04:BD:F2:C3:82:E8:27:15:42:9C:D7:E4:9B:EB:73:12:88:07
    Fingerprint (SHA1):
        5B:8B:86:5E:B6:8F:89:22:20:AA:5C:F0:D1:1E:6D:8F:C4:C8:77:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3931: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3932: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123237 (0x310fdd25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:23 2017
            Not After : Tue Aug 23 12:31:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:74:d8:f6:dd:9e:77:f5:16:45:b0:01:a9:b2:6f:f7:
                    67:f6:ac:d2:93:0a:0a:2e:8d:a9:ea:6a:0a:17:32:83:
                    a5:45:d3:4c:1b:1b:94:ca:73:98:6a:57:4c:3d:6f:3c:
                    34:70:26:10:be:7d:fd:08:15:03:34:43:31:e4:99:c8:
                    6a:83:80:4b:95:30:6a:21:53:38:d9:e3:3b:89:3e:14:
                    ba:fb:4e:69:3b:3f:ab:45:ab:27:e8:1d:e8:28:18:04:
                    2e:f5:a4:46:14:3b:26:b1:fa:0c:02:32:27:48:3a:14:
                    f9:b3:a4:ec:ca:05:65:1d:ea:f3:df:5b:b3:03:c1:58:
                    61:6b:28:bd:51:c9:50:df:da:49:a5:dd:d8:19:b5:51:
                    e0:52:70:a4:5e:d4:12:90:f0:ec:5c:e8:e2:db:15:13:
                    f0:63:0c:51:27:0a:bb:63:68:73:14:eb:96:b5:5f:27:
                    33:7c:d2:cd:61:73:5a:79:b0:43:c3:ac:29:bf:73:20:
                    34:6a:c5:fd:3f:4d:8a:3c:63:9f:bb:ed:cd:4a:cc:79:
                    56:30:46:51:dc:92:8f:1e:25:63:e8:9b:48:b2:1c:09:
                    83:e8:77:2b:dc:92:32:bc:f1:a1:08:7f:19:bf:71:d9:
                    b6:0f:68:a4:f8:99:86:30:5b:da:4f:75:e1:86:7f:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:16:b8:d7:fc:c4:fa:fc:14:45:85:c2:cf:be:bd:24:
        2a:aa:e7:90:b2:bc:48:99:61:28:33:01:3f:8d:77:57:
        a0:f7:c3:78:8b:f7:5b:28:c7:f5:6c:56:a8:4f:cd:4f:
        a2:0a:dc:23:4e:f6:f9:48:68:20:f1:df:09:d1:71:9f:
        d2:08:9f:c2:44:f4:30:db:10:bd:42:37:c9:cc:c1:04:
        99:32:eb:91:cd:e0:10:95:c1:4e:15:fd:e5:7f:1f:35:
        dc:93:b6:52:c9:63:3b:08:4b:80:99:2f:70:81:ba:81:
        9b:01:34:10:0c:20:9d:90:78:7c:b2:f9:81:a4:16:da:
        01:4e:77:6a:19:18:2d:f4:62:be:31:91:64:1d:3e:09:
        92:2b:8c:ed:a3:99:8c:8a:4b:e0:24:70:78:f4:10:94:
        8f:a2:df:08:62:dd:83:8c:e5:c2:26:1e:a1:3e:3b:15:
        5b:f7:78:ed:a4:f6:8a:c2:02:9b:3b:d7:89:ac:9f:a0:
        9a:f5:7d:52:c6:53:d1:44:5f:e0:5a:b7:65:29:d7:95:
        45:3d:74:55:87:ca:30:04:72:02:22:43:76:7e:a5:80:
        b1:e8:64:9c:45:e8:15:9b:f9:e3:4f:33:36:a7:bc:ea:
        47:9b:b4:07:89:a8:82:e2:35:4d:a9:e7:25:3e:06:e3
    Fingerprint (SHA-256):
        3A:26:3C:E9:FC:F0:7C:A9:BF:7E:BD:95:59:AE:01:CF:79:C1:1E:80:FA:0C:20:74:AA:C7:1D:7A:AA:9A:64:6F
    Fingerprint (SHA1):
        50:31:FF:AF:9B:FD:87:1D:32:FF:B0:C8:E1:7E:CB:9F:73:CB:E1:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3933: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3934: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3935: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123238 (0x310fdd26)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:24 2017
            Not After : Tue Aug 23 12:31:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:00:7f:9f:10:e8:3c:6a:08:98:41:03:60:9a:d9:58:
                    97:ff:d0:bf:28:6a:13:b1:1c:1d:4f:5e:d9:b9:35:ee:
                    7e:4a:e0:ae:d5:76:10:ba:68:d4:88:c0:58:67:ce:18:
                    ec:3f:4f:e7:ea:95:65:c7:eb:83:b8:09:b7:7b:f8:b0:
                    6e:58:30:24:d7:6a:01:a8:9d:79:86:c9:73:8c:de:be:
                    ef:75:44:69:1e:9e:2c:eb:84:86:34:b6:c9:ed:ee:a9:
                    cb:d8:f1:d0:74:51:d9:ef:6b:4c:98:2c:07:b4:69:0c:
                    72:2e:b1:94:86:a7:c7:47:4d:37:af:7c:60:b7:25:a3:
                    80:94:21:01:a9:38:e6:21:27:e1:a1:6c:12:8f:11:da:
                    11:ff:77:26:2e:e2:23:ef:0d:c1:99:15:8f:49:7a:ff:
                    46:5e:0d:07:09:02:ec:53:cd:97:db:0c:be:67:d8:e1:
                    fe:ff:ea:3f:7d:af:62:44:e5:f7:a9:4e:5c:86:16:b8:
                    f6:39:fa:b1:f6:87:12:4b:ad:a1:86:7c:9c:97:5f:be:
                    27:f1:33:8e:88:59:fd:9d:d8:e5:09:68:34:0a:89:72:
                    ff:e2:4a:4d:46:19:ab:99:dc:d5:0e:47:b6:95:78:6e:
                    e4:2a:17:33:cb:44:63:82:91:8c:e9:ae:6e:4c:b1:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:0e:6b:95:27:22:2c:38:f2:d1:b6:ec:06:a9:13:79:
        e0:cf:96:db:5a:98:0a:4c:67:0c:b2:02:67:f8:50:e1:
        18:95:c9:62:de:c2:e4:17:56:e4:af:b7:0e:f0:b7:44:
        88:5a:bd:b8:27:b7:26:12:ea:9f:d8:87:99:b1:b9:74:
        63:a6:50:7a:19:68:22:b3:87:8d:ec:a7:96:4d:b7:8a:
        e8:17:68:08:dd:32:56:db:b0:11:7f:b8:92:1a:ea:91:
        6f:51:02:d5:ed:4a:53:10:5d:7d:21:5a:72:29:4d:c7:
        04:13:ee:19:71:30:bc:a8:0b:dc:15:61:c0:91:b9:49:
        17:a7:a1:2b:8b:8f:1f:65:f4:f8:49:b4:a2:a9:7a:be:
        d9:56:29:97:c5:45:e5:6b:4d:b7:f6:cc:3a:e3:f7:f8:
        10:66:98:40:bc:ab:60:35:a6:c0:92:5d:bb:3c:02:eb:
        54:bc:bb:fe:8c:ac:31:39:d2:57:30:91:1b:13:a9:58:
        a9:93:65:dd:50:ed:ad:a4:56:02:01:6f:70:b2:0f:2f:
        8d:e2:9a:82:32:c4:68:e3:f6:64:0c:c7:1a:c2:24:0a:
        14:99:d3:32:cb:29:d1:3f:ee:93:91:43:f1:08:b7:8a:
        61:24:7e:32:e0:6e:f4:d7:20:93:ce:f2:aa:0a:65:2d
    Fingerprint (SHA-256):
        66:E2:AB:EC:2A:F5:88:A2:97:D9:E7:7F:2A:A2:88:51:57:36:E0:0C:A3:CA:92:7B:EA:CF:4C:32:A2:7A:08:DD
    Fingerprint (SHA1):
        0C:43:47:85:62:7D:A5:DA:89:A5:39:77:EF:D1:0A:4E:51:43:6A:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3936: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3937: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123241 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3938: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3939: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3940: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3941: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123242   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3942: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3943: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3944: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3945: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123243   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA1Root-823123020.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3946: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3947: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3948: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3949: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123244   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3950: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3951: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3952: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123241 (0x310fdd29)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:25 2017
            Not After : Tue Aug 23 12:31:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:db:47:2c:9a:83:5c:1d:8e:d9:cb:ed:b2:47:10:45:
                    af:0a:55:d2:e5:30:ee:46:fd:a9:30:51:23:29:12:ee:
                    b5:35:0a:b5:40:ae:32:82:14:08:75:51:45:ed:55:e4:
                    d1:e4:3e:f5:ed:1b:41:13:f5:9b:6d:99:24:ea:04:5e:
                    8b:b0:32:7f:0b:b4:35:08:09:22:f4:3f:b4:a1:37:ec:
                    46:b4:f5:92:ad:f0:86:f0:d2:12:56:b7:35:f4:96:70:
                    de:8c:35:a6:30:3b:8a:f1:cb:5f:7e:d1:23:cf:f3:3f:
                    a6:e2:67:5e:56:cb:cf:28:98:b4:66:f0:17:3b:7a:81:
                    7a:f3:4d:4e:d2:a0:16:51:60:74:9d:e7:99:77:f1:ff:
                    e7:c0:87:7d:80:cc:39:b4:cf:f9:82:90:ac:f0:7d:e5:
                    ce:0c:b8:bc:37:b4:4f:4e:a8:4d:43:50:ce:d0:ea:05:
                    73:ef:80:54:c3:f6:f7:47:39:04:b7:4d:83:f3:d4:03:
                    d7:8d:eb:81:46:64:ba:b4:be:f6:9b:11:e0:c7:65:b1:
                    16:03:2e:71:fe:ed:36:fd:a4:6f:90:22:70:fc:9b:b8:
                    a9:1b:66:6f:8f:49:3c:a4:e6:6a:4f:71:a0:59:81:f0:
                    3a:98:f4:2d:74:53:63:0f:f1:fd:32:d8:ce:b0:66:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:c3:c2:01:29:00:f2:f4:f0:2b:72:6d:ef:d3:cf:4d:
        b3:f5:3c:54:b5:19:e5:83:99:2e:6e:cb:1f:45:76:47:
        63:e8:85:4d:09:82:79:b0:8a:32:92:2b:65:2b:aa:5e:
        ec:5d:65:22:b2:2d:22:8b:80:1d:19:74:fa:c4:f5:a8:
        63:73:9e:6c:61:3b:4f:b6:e8:b2:5f:e1:24:b1:d9:5a:
        14:29:99:66:2d:86:05:c5:7d:4e:e5:84:54:70:e6:27:
        0b:7c:31:0d:65:c5:fe:ff:44:ef:5c:e1:43:da:6d:a7:
        62:13:f4:50:c8:c7:7a:48:92:a6:be:3b:12:e9:c9:b4:
        8f:c0:95:13:bd:2e:a8:d5:9e:45:4f:80:fd:62:17:f0:
        90:39:92:aa:56:fa:38:e5:8c:81:46:e5:28:fa:50:b4:
        18:a1:b0:2e:61:8f:73:a0:ed:6d:4e:83:6b:dc:87:c4:
        fb:08:a4:81:db:70:89:33:21:40:a8:04:41:62:49:5e:
        6e:01:ec:d4:55:4b:5e:78:38:21:15:4f:88:06:60:ce:
        92:97:26:8c:f0:f5:3f:30:51:0a:65:28:b1:8c:8b:64:
        a8:d2:30:ba:bf:18:46:bb:6e:8e:a6:d9:33:9c:f4:c2:
        27:7e:6a:4a:69:d6:59:16:e1:aa:30:a1:78:df:de:7d
    Fingerprint (SHA-256):
        C4:3F:45:AD:D0:6B:EC:79:FB:11:08:26:A0:7D:90:C6:A6:00:25:D0:A0:99:73:9E:F0:FF:CF:12:7B:A7:A0:B8
    Fingerprint (SHA1):
        7E:6E:73:E1:9C:73:EE:A0:7F:B5:A3:4D:DE:B1:89:57:DC:2E:82:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3953: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3954: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123245 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3955: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3956: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3957: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123246 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3958: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3959: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3960: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3961: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123247 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3962: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3963: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123248 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3964: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3965: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3966: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3967: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3968: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123249   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123021.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3969: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3970: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3971: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3972: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123250   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3973: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3974: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3975: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3976: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123246 (0x310fdd2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:26 2017
            Not After : Tue Aug 23 12:31:26 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:2f:9b:75:f9:e0:6a:86:aa:b6:57:34:1c:cb:1f:e0:
                    47:41:c0:4e:c8:6c:1a:19:70:8c:91:af:07:06:63:ba:
                    86:f4:72:66:4f:99:fc:79:4f:f9:cf:43:da:92:89:b3:
                    2d:e6:b0:c8:38:55:fd:cf:86:a7:8e:ee:4b:b1:83:8b:
                    c5:68:56:13:b9:a7:1d:58:da:b0:8e:ad:27:99:83:d0:
                    40:4a:ab:db:02:b0:51:37:6c:98:6b:4f:05:c1:96:44:
                    ef:47:ed:f1:f2:09:44:89:fe:81:ed:36:d9:f0:af:25:
                    a8:80:51:c3:4d:e3:70:ff:59:dd:b9:f4:fb:dd:35:43:
                    05:17:fa:e6:f1:1f:4f:de:55:0f:bd:c8:ae:16:a5:11:
                    b5:9f:09:3f:a1:bb:1e:0b:38:61:d9:bc:17:4e:b5:80:
                    a4:0f:2b:23:c6:d1:06:70:0c:a7:ea:65:cf:ac:08:91:
                    e5:d5:94:ec:eb:37:1f:b8:50:30:65:ea:69:cb:3b:01:
                    41:d9:82:58:92:49:90:d9:e5:5d:b9:90:67:d4:e1:93:
                    fd:6d:a6:a5:3e:42:37:14:2c:a0:83:49:e8:f8:91:4e:
                    ab:38:88:9b:1e:55:65:42:7e:b0:ae:33:29:99:6b:12:
                    6a:2d:82:39:b5:8a:91:e8:2e:66:28:93:b9:c6:e0:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:37:ac:d0:1d:33:a7:3a:7d:cd:91:d5:af:85:95:5a:
        bd:f6:c1:03:8f:3f:a7:39:05:5f:5a:43:5f:42:73:3c:
        5b:34:ad:92:ed:80:f0:d0:26:42:5b:ac:74:c7:93:1d:
        01:0e:a4:0c:fd:f4:67:a7:7c:e5:22:da:c5:ba:cc:0d:
        01:07:00:3e:79:63:0c:cd:ee:09:78:4f:60:8f:ef:33:
        a4:57:1e:c5:f1:d7:51:81:53:27:ae:49:7c:0c:b2:35:
        10:f8:2d:7d:b1:d3:5c:c3:f0:9a:83:e0:81:9a:1e:72:
        e5:e0:ea:ea:17:7f:42:22:0e:28:08:74:ae:5d:4e:63:
        e4:41:be:a5:db:98:3d:e2:ce:f4:cf:94:cb:1c:95:fb:
        8d:b7:e4:14:24:5b:2b:1b:b2:62:11:d3:5f:3c:af:e3:
        5e:c3:a5:2c:aa:eb:a9:50:eb:18:7a:a5:c6:6c:79:dc:
        96:96:39:3a:97:f3:9e:45:7b:7b:5a:08:8a:3e:f3:c6:
        47:31:32:20:5a:45:b4:ff:eb:b4:f4:35:4f:1f:98:06:
        30:52:38:71:a9:cc:24:bf:06:be:db:81:e4:65:41:c7:
        e1:d7:27:65:23:2e:fc:78:43:4c:81:8c:c4:6c:f7:08:
        6d:c4:50:f8:f9:a2:4c:91:cd:02:7a:ea:4e:bf:4b:2a
    Fingerprint (SHA-256):
        9D:9C:15:6A:AF:9C:9B:6C:4B:22:28:04:69:9B:B6:E0:4D:CD:86:E5:DC:F4:D0:A2:7E:DB:78:68:07:EF:A2:C5
    Fingerprint (SHA1):
        17:E3:FF:2E:C9:16:02:80:0C:50:0E:5C:FE:AF:09:CD:6F:6D:9A:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3977: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123246 (0x310fdd2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:26 2017
            Not After : Tue Aug 23 12:31:26 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:2f:9b:75:f9:e0:6a:86:aa:b6:57:34:1c:cb:1f:e0:
                    47:41:c0:4e:c8:6c:1a:19:70:8c:91:af:07:06:63:ba:
                    86:f4:72:66:4f:99:fc:79:4f:f9:cf:43:da:92:89:b3:
                    2d:e6:b0:c8:38:55:fd:cf:86:a7:8e:ee:4b:b1:83:8b:
                    c5:68:56:13:b9:a7:1d:58:da:b0:8e:ad:27:99:83:d0:
                    40:4a:ab:db:02:b0:51:37:6c:98:6b:4f:05:c1:96:44:
                    ef:47:ed:f1:f2:09:44:89:fe:81:ed:36:d9:f0:af:25:
                    a8:80:51:c3:4d:e3:70:ff:59:dd:b9:f4:fb:dd:35:43:
                    05:17:fa:e6:f1:1f:4f:de:55:0f:bd:c8:ae:16:a5:11:
                    b5:9f:09:3f:a1:bb:1e:0b:38:61:d9:bc:17:4e:b5:80:
                    a4:0f:2b:23:c6:d1:06:70:0c:a7:ea:65:cf:ac:08:91:
                    e5:d5:94:ec:eb:37:1f:b8:50:30:65:ea:69:cb:3b:01:
                    41:d9:82:58:92:49:90:d9:e5:5d:b9:90:67:d4:e1:93:
                    fd:6d:a6:a5:3e:42:37:14:2c:a0:83:49:e8:f8:91:4e:
                    ab:38:88:9b:1e:55:65:42:7e:b0:ae:33:29:99:6b:12:
                    6a:2d:82:39:b5:8a:91:e8:2e:66:28:93:b9:c6:e0:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:37:ac:d0:1d:33:a7:3a:7d:cd:91:d5:af:85:95:5a:
        bd:f6:c1:03:8f:3f:a7:39:05:5f:5a:43:5f:42:73:3c:
        5b:34:ad:92:ed:80:f0:d0:26:42:5b:ac:74:c7:93:1d:
        01:0e:a4:0c:fd:f4:67:a7:7c:e5:22:da:c5:ba:cc:0d:
        01:07:00:3e:79:63:0c:cd:ee:09:78:4f:60:8f:ef:33:
        a4:57:1e:c5:f1:d7:51:81:53:27:ae:49:7c:0c:b2:35:
        10:f8:2d:7d:b1:d3:5c:c3:f0:9a:83:e0:81:9a:1e:72:
        e5:e0:ea:ea:17:7f:42:22:0e:28:08:74:ae:5d:4e:63:
        e4:41:be:a5:db:98:3d:e2:ce:f4:cf:94:cb:1c:95:fb:
        8d:b7:e4:14:24:5b:2b:1b:b2:62:11:d3:5f:3c:af:e3:
        5e:c3:a5:2c:aa:eb:a9:50:eb:18:7a:a5:c6:6c:79:dc:
        96:96:39:3a:97:f3:9e:45:7b:7b:5a:08:8a:3e:f3:c6:
        47:31:32:20:5a:45:b4:ff:eb:b4:f4:35:4f:1f:98:06:
        30:52:38:71:a9:cc:24:bf:06:be:db:81:e4:65:41:c7:
        e1:d7:27:65:23:2e:fc:78:43:4c:81:8c:c4:6c:f7:08:
        6d:c4:50:f8:f9:a2:4c:91:cd:02:7a:ea:4e:bf:4b:2a
    Fingerprint (SHA-256):
        9D:9C:15:6A:AF:9C:9B:6C:4B:22:28:04:69:9B:B6:E0:4D:CD:86:E5:DC:F4:D0:A2:7E:DB:78:68:07:EF:A2:C5
    Fingerprint (SHA1):
        17:E3:FF:2E:C9:16:02:80:0C:50:0E:5C:FE:AF:09:CD:6F:6D:9A:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3978: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3979: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123251 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3980: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3981: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3982: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123252 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3983: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3984: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3985: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3986: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123253 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3987: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3988: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123254 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3989: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3990: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3991: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3992: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3993: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123255   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123022.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3994: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3995: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3996: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3997: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123256   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3998: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3999: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4000: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4001: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123257   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-BridgeNavy-823123023.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4002: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4003: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4004: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4005: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123258   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4006: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4007: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #4008: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #4009: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123252 (0x310fdd34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:27 2017
            Not After : Tue Aug 23 12:31:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:3a:d6:54:e9:6c:c1:40:bc:51:a0:42:de:16:17:fd:
                    39:8f:5f:82:b8:63:16:d3:6c:3b:a5:3f:a1:50:49:bd:
                    3a:f7:dd:97:b3:ed:2b:d5:dd:8e:58:96:2d:f0:cd:00:
                    24:2b:f9:ae:d9:89:70:09:41:b5:a6:3c:48:24:19:8c:
                    36:e0:3c:f6:cc:e6:c1:9c:49:b7:3e:16:01:51:8a:6d:
                    96:14:03:a2:2f:6b:05:71:0a:c7:e8:af:bf:47:75:fc:
                    3e:da:9a:fd:57:19:1a:70:41:df:8e:57:9a:17:dd:eb:
                    3d:3e:29:fb:ed:52:e1:a1:1a:2f:a7:a7:76:b9:04:75:
                    22:0f:7c:a5:eb:1e:d2:5a:cf:e8:ba:41:e9:e3:69:20:
                    89:14:66:15:82:82:0f:2b:2d:77:8d:a9:e4:f8:e4:d1:
                    e9:8e:92:81:0c:5b:e7:82:8f:90:21:45:13:b2:5f:04:
                    eb:83:67:0f:62:b9:64:ed:63:af:4f:be:0a:31:fe:1e:
                    b8:05:53:37:b5:64:9c:fa:a6:d5:1c:bc:f1:1f:39:e4:
                    b6:55:ed:8a:84:27:4e:46:4d:76:1b:07:93:9b:1f:fb:
                    0c:33:cd:8e:29:35:d5:f7:d7:b1:b1:be:66:b7:b1:1d:
                    77:4c:09:e3:1d:01:15:49:1b:44:b6:be:d4:af:75:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:1c:e3:f0:be:5d:9e:d5:76:3b:f0:d5:b9:f5:81:b3:
        77:fa:3e:40:de:79:53:8a:e2:4c:25:7f:73:fb:56:3f:
        10:57:27:43:c2:93:b2:ef:cf:b3:80:60:6b:a7:6c:47:
        be:a5:1c:c1:1f:5a:af:e4:b2:3b:43:6e:f0:9b:e0:bc:
        38:36:20:4d:8b:50:4a:37:17:76:fd:b3:09:63:7e:89:
        51:e9:85:c6:12:3e:9f:b5:b0:e4:7b:a9:52:35:5c:fc:
        03:49:6d:58:ad:93:0f:94:e2:22:5d:0e:56:a4:96:be:
        6d:f8:9e:60:29:67:ea:0f:c8:b2:13:8b:0a:60:85:f7:
        52:7b:9b:39:31:cb:e2:f6:85:b6:a3:05:82:ac:c9:8f:
        7f:4c:fd:6f:4b:4e:bc:99:3a:85:53:4e:82:66:cf:7d:
        fe:f7:c3:26:7d:68:23:93:2a:ec:ff:aa:df:b3:14:f9:
        71:73:60:de:e6:8f:66:3a:4b:e4:9e:87:18:7f:60:6a:
        ef:a3:8a:77:e8:56:21:62:79:86:a3:74:5c:2b:1f:43:
        9d:66:a0:ca:2e:66:5a:b9:fe:e6:80:70:55:87:bc:3d:
        17:bf:9c:ed:70:25:3c:65:69:03:6d:be:6a:c8:40:95:
        64:25:6b:52:17:9c:c4:e8:be:04:75:5d:fb:eb:87:ee
    Fingerprint (SHA-256):
        72:71:7A:8C:C4:3E:39:2D:D7:F5:A0:20:46:E4:70:75:6B:EE:48:2A:AF:A8:5E:CC:03:DD:23:E1:6F:8B:F7:30
    Fingerprint (SHA1):
        F9:70:A5:08:96:FD:B8:82:5D:0F:B5:B2:86:05:1B:48:6B:45:C4:37
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4010: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123252 (0x310fdd34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:27 2017
            Not After : Tue Aug 23 12:31:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:3a:d6:54:e9:6c:c1:40:bc:51:a0:42:de:16:17:fd:
                    39:8f:5f:82:b8:63:16:d3:6c:3b:a5:3f:a1:50:49:bd:
                    3a:f7:dd:97:b3:ed:2b:d5:dd:8e:58:96:2d:f0:cd:00:
                    24:2b:f9:ae:d9:89:70:09:41:b5:a6:3c:48:24:19:8c:
                    36:e0:3c:f6:cc:e6:c1:9c:49:b7:3e:16:01:51:8a:6d:
                    96:14:03:a2:2f:6b:05:71:0a:c7:e8:af:bf:47:75:fc:
                    3e:da:9a:fd:57:19:1a:70:41:df:8e:57:9a:17:dd:eb:
                    3d:3e:29:fb:ed:52:e1:a1:1a:2f:a7:a7:76:b9:04:75:
                    22:0f:7c:a5:eb:1e:d2:5a:cf:e8:ba:41:e9:e3:69:20:
                    89:14:66:15:82:82:0f:2b:2d:77:8d:a9:e4:f8:e4:d1:
                    e9:8e:92:81:0c:5b:e7:82:8f:90:21:45:13:b2:5f:04:
                    eb:83:67:0f:62:b9:64:ed:63:af:4f:be:0a:31:fe:1e:
                    b8:05:53:37:b5:64:9c:fa:a6:d5:1c:bc:f1:1f:39:e4:
                    b6:55:ed:8a:84:27:4e:46:4d:76:1b:07:93:9b:1f:fb:
                    0c:33:cd:8e:29:35:d5:f7:d7:b1:b1:be:66:b7:b1:1d:
                    77:4c:09:e3:1d:01:15:49:1b:44:b6:be:d4:af:75:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:1c:e3:f0:be:5d:9e:d5:76:3b:f0:d5:b9:f5:81:b3:
        77:fa:3e:40:de:79:53:8a:e2:4c:25:7f:73:fb:56:3f:
        10:57:27:43:c2:93:b2:ef:cf:b3:80:60:6b:a7:6c:47:
        be:a5:1c:c1:1f:5a:af:e4:b2:3b:43:6e:f0:9b:e0:bc:
        38:36:20:4d:8b:50:4a:37:17:76:fd:b3:09:63:7e:89:
        51:e9:85:c6:12:3e:9f:b5:b0:e4:7b:a9:52:35:5c:fc:
        03:49:6d:58:ad:93:0f:94:e2:22:5d:0e:56:a4:96:be:
        6d:f8:9e:60:29:67:ea:0f:c8:b2:13:8b:0a:60:85:f7:
        52:7b:9b:39:31:cb:e2:f6:85:b6:a3:05:82:ac:c9:8f:
        7f:4c:fd:6f:4b:4e:bc:99:3a:85:53:4e:82:66:cf:7d:
        fe:f7:c3:26:7d:68:23:93:2a:ec:ff:aa:df:b3:14:f9:
        71:73:60:de:e6:8f:66:3a:4b:e4:9e:87:18:7f:60:6a:
        ef:a3:8a:77:e8:56:21:62:79:86:a3:74:5c:2b:1f:43:
        9d:66:a0:ca:2e:66:5a:b9:fe:e6:80:70:55:87:bc:3d:
        17:bf:9c:ed:70:25:3c:65:69:03:6d:be:6a:c8:40:95:
        64:25:6b:52:17:9c:c4:e8:be:04:75:5d:fb:eb:87:ee
    Fingerprint (SHA-256):
        72:71:7A:8C:C4:3E:39:2D:D7:F5:A0:20:46:E4:70:75:6B:EE:48:2A:AF:A8:5E:CC:03:DD:23:E1:6F:8B:F7:30
    Fingerprint (SHA1):
        F9:70:A5:08:96:FD:B8:82:5D:0F:B5:B2:86:05:1B:48:6B:45:C4:37
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4011: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #4012: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123251 (0x310fdd33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:27 2017
            Not After : Tue Aug 23 12:31:27 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:ae:30:3f:99:e3:82:c4:9d:cb:07:91:3c:fd:c8:7d:
                    eb:33:cc:03:c7:cf:09:c9:c6:43:2b:e2:7d:a0:63:48:
                    02:b9:3d:d4:04:2b:1e:45:76:c2:23:78:d6:48:42:cb:
                    66:30:d8:29:04:68:c0:1a:34:dc:ae:30:6c:f7:60:ac:
                    59:bc:09:94:69:a3:2a:07:de:80:15:36:19:0a:46:6a:
                    3b:dd:a3:ad:8d:c5:29:07:94:c3:e7:49:48:c5:36:c2:
                    fb:5f:d5:2d:d5:a5:18:22:2e:ef:5b:79:6f:8a:24:be:
                    e9:a2:92:e5:bc:b5:c9:29:f1:97:3e:84:1c:c1:b9:8a:
                    43:f0:ae:d1:84:dd:b7:7b:22:ba:fa:99:1e:e4:aa:02:
                    7f:23:ca:52:33:38:6a:cd:9c:56:09:23:87:33:b3:22:
                    b0:0d:4e:b4:71:c2:f9:db:18:95:57:3f:49:89:fd:b5:
                    6f:93:d7:7a:c0:42:06:aa:a6:95:7f:6d:d4:c8:6e:79:
                    9f:f2:2e:0b:72:43:27:42:de:d2:eb:a9:f7:a5:3d:9f:
                    a9:9e:30:a2:b2:6b:5d:18:35:b5:67:43:f9:fa:10:b2:
                    50:d7:c7:8a:d2:a2:c3:57:06:9b:3d:e0:fb:4d:84:29:
                    62:ec:20:76:8c:df:d8:02:78:61:f1:dd:b2:06:07:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:fe:9c:fb:6b:fe:b4:49:b0:23:a6:9f:eb:2d:5e:3b:
        d4:0c:de:d5:a9:27:d6:cd:93:2a:0b:78:5f:16:6e:b3:
        33:c7:ee:a9:aa:b3:9b:ca:7e:c1:73:df:36:0b:11:8e:
        2b:19:ff:cb:69:7c:a6:cd:0a:66:e5:ab:f0:fc:89:70:
        35:c3:53:63:54:88:96:40:ff:06:43:5e:ff:9d:43:d4:
        32:5b:fd:24:35:87:d7:ef:c4:fe:3e:88:64:61:74:93:
        f8:dc:55:1a:ef:2f:b0:4f:69:b7:88:74:56:c6:1a:7b:
        06:35:70:d9:50:17:e1:28:2e:ec:80:29:62:af:ee:85:
        80:09:65:b4:7e:94:2b:7d:70:1f:f7:e1:d0:58:88:ba:
        4b:30:c5:a0:88:b0:f1:08:e0:58:f3:b5:22:1f:59:83:
        a5:01:29:f9:af:24:4a:e8:49:b3:e1:5c:fc:bb:03:b1:
        89:1f:ff:a8:69:66:36:d7:4d:da:1a:0a:8d:e8:de:da:
        e1:5e:4e:04:2c:0d:1a:3d:da:72:d5:44:b6:1f:b7:82:
        11:88:ac:33:f8:38:e4:20:fa:66:9c:96:c9:65:08:ca:
        a2:f3:75:f3:6f:1a:6e:46:fb:b9:ab:2b:32:34:0c:cf:
        c4:20:5e:a2:07:14:e1:55:9e:6b:df:46:2c:4b:99:d8
    Fingerprint (SHA-256):
        41:E1:7B:48:D8:29:C9:71:49:BF:40:1A:56:E7:75:99:3C:E7:5B:9F:A8:72:91:9E:02:1E:EA:30:12:2A:9D:B4
    Fingerprint (SHA1):
        3D:2C:6A:E0:B1:15:18:04:8A:14:5C:74:C2:61:6D:CD:C0:94:BD:12
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4013: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123252 (0x310fdd34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:27 2017
            Not After : Tue Aug 23 12:31:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:3a:d6:54:e9:6c:c1:40:bc:51:a0:42:de:16:17:fd:
                    39:8f:5f:82:b8:63:16:d3:6c:3b:a5:3f:a1:50:49:bd:
                    3a:f7:dd:97:b3:ed:2b:d5:dd:8e:58:96:2d:f0:cd:00:
                    24:2b:f9:ae:d9:89:70:09:41:b5:a6:3c:48:24:19:8c:
                    36:e0:3c:f6:cc:e6:c1:9c:49:b7:3e:16:01:51:8a:6d:
                    96:14:03:a2:2f:6b:05:71:0a:c7:e8:af:bf:47:75:fc:
                    3e:da:9a:fd:57:19:1a:70:41:df:8e:57:9a:17:dd:eb:
                    3d:3e:29:fb:ed:52:e1:a1:1a:2f:a7:a7:76:b9:04:75:
                    22:0f:7c:a5:eb:1e:d2:5a:cf:e8:ba:41:e9:e3:69:20:
                    89:14:66:15:82:82:0f:2b:2d:77:8d:a9:e4:f8:e4:d1:
                    e9:8e:92:81:0c:5b:e7:82:8f:90:21:45:13:b2:5f:04:
                    eb:83:67:0f:62:b9:64:ed:63:af:4f:be:0a:31:fe:1e:
                    b8:05:53:37:b5:64:9c:fa:a6:d5:1c:bc:f1:1f:39:e4:
                    b6:55:ed:8a:84:27:4e:46:4d:76:1b:07:93:9b:1f:fb:
                    0c:33:cd:8e:29:35:d5:f7:d7:b1:b1:be:66:b7:b1:1d:
                    77:4c:09:e3:1d:01:15:49:1b:44:b6:be:d4:af:75:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:1c:e3:f0:be:5d:9e:d5:76:3b:f0:d5:b9:f5:81:b3:
        77:fa:3e:40:de:79:53:8a:e2:4c:25:7f:73:fb:56:3f:
        10:57:27:43:c2:93:b2:ef:cf:b3:80:60:6b:a7:6c:47:
        be:a5:1c:c1:1f:5a:af:e4:b2:3b:43:6e:f0:9b:e0:bc:
        38:36:20:4d:8b:50:4a:37:17:76:fd:b3:09:63:7e:89:
        51:e9:85:c6:12:3e:9f:b5:b0:e4:7b:a9:52:35:5c:fc:
        03:49:6d:58:ad:93:0f:94:e2:22:5d:0e:56:a4:96:be:
        6d:f8:9e:60:29:67:ea:0f:c8:b2:13:8b:0a:60:85:f7:
        52:7b:9b:39:31:cb:e2:f6:85:b6:a3:05:82:ac:c9:8f:
        7f:4c:fd:6f:4b:4e:bc:99:3a:85:53:4e:82:66:cf:7d:
        fe:f7:c3:26:7d:68:23:93:2a:ec:ff:aa:df:b3:14:f9:
        71:73:60:de:e6:8f:66:3a:4b:e4:9e:87:18:7f:60:6a:
        ef:a3:8a:77:e8:56:21:62:79:86:a3:74:5c:2b:1f:43:
        9d:66:a0:ca:2e:66:5a:b9:fe:e6:80:70:55:87:bc:3d:
        17:bf:9c:ed:70:25:3c:65:69:03:6d:be:6a:c8:40:95:
        64:25:6b:52:17:9c:c4:e8:be:04:75:5d:fb:eb:87:ee
    Fingerprint (SHA-256):
        72:71:7A:8C:C4:3E:39:2D:D7:F5:A0:20:46:E4:70:75:6B:EE:48:2A:AF:A8:5E:CC:03:DD:23:E1:6F:8B:F7:30
    Fingerprint (SHA1):
        F9:70:A5:08:96:FD:B8:82:5D:0F:B5:B2:86:05:1B:48:6B:45:C4:37
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4014: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123252 (0x310fdd34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:27 2017
            Not After : Tue Aug 23 12:31:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:3a:d6:54:e9:6c:c1:40:bc:51:a0:42:de:16:17:fd:
                    39:8f:5f:82:b8:63:16:d3:6c:3b:a5:3f:a1:50:49:bd:
                    3a:f7:dd:97:b3:ed:2b:d5:dd:8e:58:96:2d:f0:cd:00:
                    24:2b:f9:ae:d9:89:70:09:41:b5:a6:3c:48:24:19:8c:
                    36:e0:3c:f6:cc:e6:c1:9c:49:b7:3e:16:01:51:8a:6d:
                    96:14:03:a2:2f:6b:05:71:0a:c7:e8:af:bf:47:75:fc:
                    3e:da:9a:fd:57:19:1a:70:41:df:8e:57:9a:17:dd:eb:
                    3d:3e:29:fb:ed:52:e1:a1:1a:2f:a7:a7:76:b9:04:75:
                    22:0f:7c:a5:eb:1e:d2:5a:cf:e8:ba:41:e9:e3:69:20:
                    89:14:66:15:82:82:0f:2b:2d:77:8d:a9:e4:f8:e4:d1:
                    e9:8e:92:81:0c:5b:e7:82:8f:90:21:45:13:b2:5f:04:
                    eb:83:67:0f:62:b9:64:ed:63:af:4f:be:0a:31:fe:1e:
                    b8:05:53:37:b5:64:9c:fa:a6:d5:1c:bc:f1:1f:39:e4:
                    b6:55:ed:8a:84:27:4e:46:4d:76:1b:07:93:9b:1f:fb:
                    0c:33:cd:8e:29:35:d5:f7:d7:b1:b1:be:66:b7:b1:1d:
                    77:4c:09:e3:1d:01:15:49:1b:44:b6:be:d4:af:75:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:1c:e3:f0:be:5d:9e:d5:76:3b:f0:d5:b9:f5:81:b3:
        77:fa:3e:40:de:79:53:8a:e2:4c:25:7f:73:fb:56:3f:
        10:57:27:43:c2:93:b2:ef:cf:b3:80:60:6b:a7:6c:47:
        be:a5:1c:c1:1f:5a:af:e4:b2:3b:43:6e:f0:9b:e0:bc:
        38:36:20:4d:8b:50:4a:37:17:76:fd:b3:09:63:7e:89:
        51:e9:85:c6:12:3e:9f:b5:b0:e4:7b:a9:52:35:5c:fc:
        03:49:6d:58:ad:93:0f:94:e2:22:5d:0e:56:a4:96:be:
        6d:f8:9e:60:29:67:ea:0f:c8:b2:13:8b:0a:60:85:f7:
        52:7b:9b:39:31:cb:e2:f6:85:b6:a3:05:82:ac:c9:8f:
        7f:4c:fd:6f:4b:4e:bc:99:3a:85:53:4e:82:66:cf:7d:
        fe:f7:c3:26:7d:68:23:93:2a:ec:ff:aa:df:b3:14:f9:
        71:73:60:de:e6:8f:66:3a:4b:e4:9e:87:18:7f:60:6a:
        ef:a3:8a:77:e8:56:21:62:79:86:a3:74:5c:2b:1f:43:
        9d:66:a0:ca:2e:66:5a:b9:fe:e6:80:70:55:87:bc:3d:
        17:bf:9c:ed:70:25:3c:65:69:03:6d:be:6a:c8:40:95:
        64:25:6b:52:17:9c:c4:e8:be:04:75:5d:fb:eb:87:ee
    Fingerprint (SHA-256):
        72:71:7A:8C:C4:3E:39:2D:D7:F5:A0:20:46:E4:70:75:6B:EE:48:2A:AF:A8:5E:CC:03:DD:23:E1:6F:8B:F7:30
    Fingerprint (SHA1):
        F9:70:A5:08:96:FD:B8:82:5D:0F:B5:B2:86:05:1B:48:6B:45:C4:37
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4015: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #4016: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123259 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4017: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #4018: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #4019: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123260 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4020: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #4021: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #4022: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4023: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 823123261   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4024: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4025: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #4026: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4027: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 823123262   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4028: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4029: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #4030: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4031: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 823123263 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4032: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4033: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 823123264 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4034: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4035: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #4036: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4037: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4038: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123265   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4039: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4040: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4041: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4042: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123266   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4043: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4044: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4045: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4046: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123267   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4047: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4048: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4049: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4050: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123268   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4051: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4052: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4053: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123259 (0x310fdd3b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:28 2017
            Not After : Tue Aug 23 12:31:28 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:e2:b0:99:0b:0d:0d:08:44:f3:9a:e6:8f:75:f1:ab:
                    71:be:7f:d4:73:5b:5f:b1:ac:55:5a:0a:f9:95:17:07:
                    96:c9:75:3d:00:df:b2:12:92:33:1f:a5:a6:89:e0:77:
                    c8:8c:06:cd:02:cd:22:82:91:74:0d:48:1c:df:12:b6:
                    d4:bb:cb:c0:4d:44:0c:fe:7a:65:c6:3a:9b:ac:3e:4a:
                    51:5a:27:23:8b:51:d2:50:fd:25:24:c8:b7:c0:b5:fc:
                    5b:a8:93:9e:a7:2b:4c:e7:d2:10:6a:30:b9:7a:7c:e1:
                    a2:c0:a3:60:3b:1e:d7:d1:a8:1f:e6:4b:74:5a:29:00:
                    aa:5e:b8:12:10:93:40:b1:a0:bc:8f:58:4e:1b:1e:2e:
                    0d:5f:2f:b4:51:f1:0f:75:d9:e4:70:f6:ac:3e:2f:60:
                    a7:75:9c:83:e6:e9:54:36:09:95:df:ae:7e:d4:23:1c:
                    81:b0:d1:4c:30:45:24:16:bb:ba:55:0e:d8:0d:7e:d9:
                    2e:db:65:41:42:b4:30:a9:3a:8f:44:8e:a1:99:7e:f9:
                    88:8b:c4:60:11:19:3c:a8:75:4f:e9:47:c4:7b:d1:95:
                    2a:5a:fa:8d:89:fa:1b:b6:cb:81:72:9c:a5:54:56:b7:
                    a3:b5:50:ca:a9:1b:0a:80:da:95:9d:52:c3:1e:17:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:71:4a:6b:17:7a:61:03:61:33:85:f2:04:b9:a9:7a:
        1f:bd:6c:8d:77:7f:a2:00:8b:ca:8b:d2:5f:f1:50:b3:
        23:ea:16:23:0e:da:6b:af:ba:c7:2d:c8:63:74:32:be:
        21:ae:38:42:e2:03:35:52:31:0a:a1:cf:74:e8:c7:d5:
        03:6d:bd:9e:d6:05:ba:72:7a:10:b2:7f:43:2e:d8:00:
        ed:fc:59:c6:e2:f1:00:00:6b:05:67:e6:39:b6:09:c3:
        b4:6a:fb:15:53:af:ab:ec:24:93:0c:02:05:a0:4d:dc:
        1f:a0:34:1d:15:b8:8e:08:fa:ff:c2:39:0f:9d:c7:4f:
        5a:cc:02:0d:c2:84:2c:7e:42:66:cf:1f:78:a6:b9:ee:
        a0:f0:6d:74:0a:dc:c6:4c:a5:a2:58:7c:4d:9f:5e:bc:
        a3:c7:89:a6:01:ee:a1:11:3e:4d:6b:69:9d:77:47:22:
        78:d7:2d:f9:a9:2d:23:f6:7a:9b:a9:28:eb:bc:17:6e:
        e2:05:7e:1e:49:7e:cc:c9:5d:e8:60:04:dc:4f:02:f6:
        d3:32:7e:44:f8:c0:4e:da:a7:31:5f:53:97:c8:6b:43:
        e7:ad:31:b2:ee:49:b2:a3:e3:5c:23:6b:c9:ed:63:ba:
        2b:d1:e9:de:c0:88:07:3a:ba:b6:c4:8f:65:6e:6e:ea
    Fingerprint (SHA-256):
        E1:81:C0:0A:2E:22:39:B7:69:1A:A7:65:63:8E:6A:92:05:E2:C7:57:32:0B:5B:A2:5F:55:D9:15:FE:4E:EC:E9
    Fingerprint (SHA1):
        C2:96:60:18:EC:E0:66:79:EF:7A:CD:B3:38:33:A0:02:47:35:04:FC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4054: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4055: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4056: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4057: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4058: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4059: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4060: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4061: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4062: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123260 (0x310fdd3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:28 2017
            Not After : Tue Aug 23 12:31:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:30:ec:78:76:ec:3d:41:77:a5:45:4f:61:9f:d5:c2:
                    76:75:9a:2a:c2:d0:e6:95:33:15:a1:67:72:9d:9a:b9:
                    84:47:73:e5:6d:8a:a9:a6:1e:63:48:25:d8:69:1d:47:
                    35:80:e8:dc:27:b4:ed:ee:5c:58:17:3b:aa:4c:2a:d9:
                    4a:cc:6e:ea:38:c1:76:8b:3b:01:69:3b:87:4a:e1:c5:
                    d6:2c:bf:94:93:49:85:05:3a:f9:ce:fe:3c:6a:d2:31:
                    bd:53:44:6c:e9:23:a7:11:8e:6f:81:17:e0:7b:93:09:
                    64:b4:87:00:fb:e1:30:bf:98:bc:70:c3:55:b2:39:64:
                    5c:e9:e4:3b:44:5e:c9:44:bc:f2:d5:cd:d6:d8:b6:ca:
                    ea:aa:5f:22:00:39:b3:29:d7:a5:d6:ba:56:ff:1c:e0:
                    6f:26:df:b4:01:c3:21:65:38:e7:06:68:49:f9:ad:ff:
                    d6:1b:09:31:ed:4b:c1:d2:39:22:43:04:01:bc:36:fb:
                    6a:2b:80:82:b5:14:a0:3e:8f:0c:dc:48:df:cc:f0:69:
                    2e:a4:11:29:1b:7f:ab:32:4a:68:af:b8:70:e1:39:d2:
                    eb:22:62:76:e1:a0:93:e3:c7:2a:da:22:0e:e2:b7:02:
                    88:f9:fb:d4:15:37:29:3b:39:84:bd:b2:45:df:3a:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:a0:1d:8b:c0:ae:99:08:22:8c:49:b6:2c:a6:5d:93:
        0f:7e:88:23:85:97:76:48:8b:fc:9c:2c:b8:11:98:f1:
        1e:8d:e2:39:0a:43:3e:63:e1:fa:cf:e6:4c:5b:66:ba:
        5b:2c:c8:48:71:97:31:bd:18:17:1b:3e:da:86:ba:6c:
        08:a3:dc:af:67:f2:40:3b:e1:57:11:1a:2f:38:24:d5:
        5a:ec:86:a8:45:1e:ee:8f:49:9c:51:5d:f3:71:5b:a7:
        05:b5:0c:ea:30:cb:88:7e:29:f9:59:c0:6e:16:e8:41:
        bd:35:21:43:a7:ed:cd:54:e7:de:57:e0:66:df:f9:4a:
        8c:d6:cb:42:06:5c:b5:9d:57:88:af:33:c3:f2:81:42:
        24:2c:ba:05:43:a1:21:45:c2:e4:f6:c4:c6:57:bc:1a:
        b8:2c:fa:a4:fc:04:1f:19:1e:39:29:22:1a:69:b6:23:
        ee:81:eb:ca:b6:a4:12:45:2b:51:fc:49:fb:a3:c4:76:
        a3:16:e7:f6:70:6d:a9:41:1a:2b:ce:3b:1e:74:c5:cc:
        06:53:60:d8:34:33:75:a8:af:f0:16:1b:f2:b4:94:3b:
        eb:d2:9b:38:35:89:90:3b:47:4d:1c:f4:88:6a:ba:46:
        66:e6:a9:07:01:17:a9:8a:63:3f:76:1e:1b:bc:02:b7
    Fingerprint (SHA-256):
        C1:B2:E1:E2:B6:B5:E6:FF:6B:C0:27:2C:AE:2B:C6:A5:40:E5:9D:B4:08:CD:67:4A:03:92:FF:B1:B7:9D:14:E9
    Fingerprint (SHA1):
        C9:66:3E:D7:33:1E:AA:73:58:DA:6D:8B:0F:A1:81:98:E2:39:39:27
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4063: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4064: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4065: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4066: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4067: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4068: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4069: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #4070: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #4071: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4072: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4073: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4074: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4075: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4076: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4077: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4078: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4079: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4080: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4081: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123269 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4082: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4083: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4084: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4085: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123270   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4086: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4087: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4088: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4089: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123271   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4090: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4091: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4092: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4093: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 823123272   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4094: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4095: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4096: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4097: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123273   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4098: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4099: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4100: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4101: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 823123274   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4102: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4103: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4104: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4105: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 823123275   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4106: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4107: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4108: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4109: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 823123276   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4110: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4111: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4112: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4113: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 823123277   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4114: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4115: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4116: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123269 (0x310fdd45)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:31 2017
            Not After : Tue Aug 23 12:31:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    42:23:e9:cd:09:2f:d1:0b:87:2e:12:ea:ab:e6:b6:3e:
                    cd:97:8a:c8:bc:67:f7:04:a0:9e:fc:d0:d0:a9:6b:79:
                    a9:91:be:72:6d:22:6f:ca:92:ce:62:09:b1:7f:8c:37:
                    31:23:1b:7a:9d:db:da:a3:96:75:71:54:a5:89:3d:51:
                    b0:74:82:9f:29:02:a5:00:81:44:44:51:10:d0:3c:ee:
                    4a:21:f6:f9:71:fb:3f:e2:df:c9:ac:53:17:66:8c:9c:
                    8d:c7:f0:89:e1:a3:9e:44:43:e0:cb:44:72:60:ea:e7:
                    1f:80:d7:88:dc:34:7d:3c:6c:b0:50:f8:a2:ec:93:73:
                    33:2c:ad:1e:f0:31:f6:90:8d:7a:f2:81:77:24:f4:4f:
                    92:e6:76:9e:95:d3:4f:00:3f:13:ca:35:13:ee:5c:eb:
                    bd:a6:72:c1:08:1d:a8:68:44:19:7f:02:0c:6a:3f:6d:
                    96:e8:4f:be:34:ab:15:9f:18:95:3a:3d:6f:f9:4c:38:
                    8b:f0:38:c3:62:e2:de:82:4e:29:e4:06:fa:ef:73:71:
                    7e:75:70:21:5d:ed:1e:f8:d2:0d:0f:3c:c0:ab:09:08:
                    90:c0:c5:16:fc:e9:89:1b:f7:f2:59:ca:31:c3:b4:47:
                    e5:54:be:b2:f0:5c:7e:eb:51:e6:a9:de:56:ed:bc:69
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:03:41:64:7f:10:49:00:44:d0:c2:94:52:
        10:f1:f5:8a:21:8e:a3:cf:8f:bd:45:65:1b:42:fa:c6:
        02:1c:5c:e6:3e:dc:cb:b7:fd:5f:02:fd:86:b4:23:0b:
        08:36:98:b8:6a:c5:07:ac:90:e1:45:13:28:55
    Fingerprint (SHA-256):
        7C:87:59:8F:77:3B:CF:29:A1:B7:3D:8C:27:92:7B:11:04:1D:AA:6E:12:15:EF:8E:55:80:26:E3:FB:69:F0:03
    Fingerprint (SHA1):
        FE:C4:3E:44:2C:97:6E:15:8E:72:4A:AD:2A:AF:A4:2A:6C:1B:6A:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4117: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123269 (0x310fdd45)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:31 2017
            Not After : Tue Aug 23 12:31:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    42:23:e9:cd:09:2f:d1:0b:87:2e:12:ea:ab:e6:b6:3e:
                    cd:97:8a:c8:bc:67:f7:04:a0:9e:fc:d0:d0:a9:6b:79:
                    a9:91:be:72:6d:22:6f:ca:92:ce:62:09:b1:7f:8c:37:
                    31:23:1b:7a:9d:db:da:a3:96:75:71:54:a5:89:3d:51:
                    b0:74:82:9f:29:02:a5:00:81:44:44:51:10:d0:3c:ee:
                    4a:21:f6:f9:71:fb:3f:e2:df:c9:ac:53:17:66:8c:9c:
                    8d:c7:f0:89:e1:a3:9e:44:43:e0:cb:44:72:60:ea:e7:
                    1f:80:d7:88:dc:34:7d:3c:6c:b0:50:f8:a2:ec:93:73:
                    33:2c:ad:1e:f0:31:f6:90:8d:7a:f2:81:77:24:f4:4f:
                    92:e6:76:9e:95:d3:4f:00:3f:13:ca:35:13:ee:5c:eb:
                    bd:a6:72:c1:08:1d:a8:68:44:19:7f:02:0c:6a:3f:6d:
                    96:e8:4f:be:34:ab:15:9f:18:95:3a:3d:6f:f9:4c:38:
                    8b:f0:38:c3:62:e2:de:82:4e:29:e4:06:fa:ef:73:71:
                    7e:75:70:21:5d:ed:1e:f8:d2:0d:0f:3c:c0:ab:09:08:
                    90:c0:c5:16:fc:e9:89:1b:f7:f2:59:ca:31:c3:b4:47:
                    e5:54:be:b2:f0:5c:7e:eb:51:e6:a9:de:56:ed:bc:69
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:03:41:64:7f:10:49:00:44:d0:c2:94:52:
        10:f1:f5:8a:21:8e:a3:cf:8f:bd:45:65:1b:42:fa:c6:
        02:1c:5c:e6:3e:dc:cb:b7:fd:5f:02:fd:86:b4:23:0b:
        08:36:98:b8:6a:c5:07:ac:90:e1:45:13:28:55
    Fingerprint (SHA-256):
        7C:87:59:8F:77:3B:CF:29:A1:B7:3D:8C:27:92:7B:11:04:1D:AA:6E:12:15:EF:8E:55:80:26:E3:FB:69:F0:03
    Fingerprint (SHA1):
        FE:C4:3E:44:2C:97:6E:15:8E:72:4A:AD:2A:AF:A4:2A:6C:1B:6A:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4118: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123269 (0x310fdd45)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:31 2017
            Not After : Tue Aug 23 12:31:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    42:23:e9:cd:09:2f:d1:0b:87:2e:12:ea:ab:e6:b6:3e:
                    cd:97:8a:c8:bc:67:f7:04:a0:9e:fc:d0:d0:a9:6b:79:
                    a9:91:be:72:6d:22:6f:ca:92:ce:62:09:b1:7f:8c:37:
                    31:23:1b:7a:9d:db:da:a3:96:75:71:54:a5:89:3d:51:
                    b0:74:82:9f:29:02:a5:00:81:44:44:51:10:d0:3c:ee:
                    4a:21:f6:f9:71:fb:3f:e2:df:c9:ac:53:17:66:8c:9c:
                    8d:c7:f0:89:e1:a3:9e:44:43:e0:cb:44:72:60:ea:e7:
                    1f:80:d7:88:dc:34:7d:3c:6c:b0:50:f8:a2:ec:93:73:
                    33:2c:ad:1e:f0:31:f6:90:8d:7a:f2:81:77:24:f4:4f:
                    92:e6:76:9e:95:d3:4f:00:3f:13:ca:35:13:ee:5c:eb:
                    bd:a6:72:c1:08:1d:a8:68:44:19:7f:02:0c:6a:3f:6d:
                    96:e8:4f:be:34:ab:15:9f:18:95:3a:3d:6f:f9:4c:38:
                    8b:f0:38:c3:62:e2:de:82:4e:29:e4:06:fa:ef:73:71:
                    7e:75:70:21:5d:ed:1e:f8:d2:0d:0f:3c:c0:ab:09:08:
                    90:c0:c5:16:fc:e9:89:1b:f7:f2:59:ca:31:c3:b4:47:
                    e5:54:be:b2:f0:5c:7e:eb:51:e6:a9:de:56:ed:bc:69
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:03:41:64:7f:10:49:00:44:d0:c2:94:52:
        10:f1:f5:8a:21:8e:a3:cf:8f:bd:45:65:1b:42:fa:c6:
        02:1c:5c:e6:3e:dc:cb:b7:fd:5f:02:fd:86:b4:23:0b:
        08:36:98:b8:6a:c5:07:ac:90:e1:45:13:28:55
    Fingerprint (SHA-256):
        7C:87:59:8F:77:3B:CF:29:A1:B7:3D:8C:27:92:7B:11:04:1D:AA:6E:12:15:EF:8E:55:80:26:E3:FB:69:F0:03
    Fingerprint (SHA1):
        FE:C4:3E:44:2C:97:6E:15:8E:72:4A:AD:2A:AF:A4:2A:6C:1B:6A:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4119: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123269 (0x310fdd45)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:31 2017
            Not After : Tue Aug 23 12:31:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    42:23:e9:cd:09:2f:d1:0b:87:2e:12:ea:ab:e6:b6:3e:
                    cd:97:8a:c8:bc:67:f7:04:a0:9e:fc:d0:d0:a9:6b:79:
                    a9:91:be:72:6d:22:6f:ca:92:ce:62:09:b1:7f:8c:37:
                    31:23:1b:7a:9d:db:da:a3:96:75:71:54:a5:89:3d:51:
                    b0:74:82:9f:29:02:a5:00:81:44:44:51:10:d0:3c:ee:
                    4a:21:f6:f9:71:fb:3f:e2:df:c9:ac:53:17:66:8c:9c:
                    8d:c7:f0:89:e1:a3:9e:44:43:e0:cb:44:72:60:ea:e7:
                    1f:80:d7:88:dc:34:7d:3c:6c:b0:50:f8:a2:ec:93:73:
                    33:2c:ad:1e:f0:31:f6:90:8d:7a:f2:81:77:24:f4:4f:
                    92:e6:76:9e:95:d3:4f:00:3f:13:ca:35:13:ee:5c:eb:
                    bd:a6:72:c1:08:1d:a8:68:44:19:7f:02:0c:6a:3f:6d:
                    96:e8:4f:be:34:ab:15:9f:18:95:3a:3d:6f:f9:4c:38:
                    8b:f0:38:c3:62:e2:de:82:4e:29:e4:06:fa:ef:73:71:
                    7e:75:70:21:5d:ed:1e:f8:d2:0d:0f:3c:c0:ab:09:08:
                    90:c0:c5:16:fc:e9:89:1b:f7:f2:59:ca:31:c3:b4:47:
                    e5:54:be:b2:f0:5c:7e:eb:51:e6:a9:de:56:ed:bc:69
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:03:41:64:7f:10:49:00:44:d0:c2:94:52:
        10:f1:f5:8a:21:8e:a3:cf:8f:bd:45:65:1b:42:fa:c6:
        02:1c:5c:e6:3e:dc:cb:b7:fd:5f:02:fd:86:b4:23:0b:
        08:36:98:b8:6a:c5:07:ac:90:e1:45:13:28:55
    Fingerprint (SHA-256):
        7C:87:59:8F:77:3B:CF:29:A1:B7:3D:8C:27:92:7B:11:04:1D:AA:6E:12:15:EF:8E:55:80:26:E3:FB:69:F0:03
    Fingerprint (SHA1):
        FE:C4:3E:44:2C:97:6E:15:8E:72:4A:AD:2A:AF:A4:2A:6C:1B:6A:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4120: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4121: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4122: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4123: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4124: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4125: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4126: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4127: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4128: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4129: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4130: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4131: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4132: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4133: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4134: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4135: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4136: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4137: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4138: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4139: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4140: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4141: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4142: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4143: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4144: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4145: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4146: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4147: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123135Z
nextupdate=20180823123135Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:31:35 2017
    Next Update: Thu Aug 23 12:31:35 2018
    CRL Extensions:
chains.sh: #4148: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123135Z
nextupdate=20180823123135Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:31:35 2017
    Next Update: Thu Aug 23 12:31:35 2018
    CRL Extensions:
chains.sh: #4149: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123135Z
nextupdate=20180823123135Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:31:35 2017
    Next Update: Thu Aug 23 12:31:35 2018
    CRL Extensions:
chains.sh: #4150: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123135Z
nextupdate=20180823123135Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:31:35 2017
    Next Update: Thu Aug 23 12:31:35 2018
    CRL Extensions:
chains.sh: #4151: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123136Z
addcert 14 20170823123136Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:31:36 2017
    Next Update: Thu Aug 23 12:31:35 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed Aug 23 12:31:36 2017
    CRL Extensions:
chains.sh: #4152: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123137Z
addcert 15 20170823123137Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:31:37 2017
    Next Update: Thu Aug 23 12:31:35 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed Aug 23 12:31:37 2017
    CRL Extensions:
chains.sh: #4153: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4154: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4155: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4156: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4157: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4158: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4159: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4160: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4161: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4162: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:33 2017
            Not After : Tue Aug 23 12:31:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:12:b5:56:f2:ed:e1:42:1f:fb:7f:75:71:0c:3e:43:
                    a3:8f:b6:7b:f7:dc:3a:75:37:0e:8d:76:04:ee:55:47:
                    96:d2:2c:8d:64:c6:6f:03:99:fe:9d:35:0f:8c:72:87:
                    7e:bd:f7:0e:a2:80:73:90:ab:54:8d:9f:70:21:eb:e2:
                    40:b1:fe:60:cb:e5:db:87:b2:34:f2:ba:57:67:06:2a:
                    57:5a:26:c6:8e:14:37:ac:61:2b:7a:2b:3e:92:8b:6a:
                    f5:6c:8f:46:c9:7e:23:ef:e8:e6:73:0a:5e:c1:1e:e7:
                    d8:27:38:4e:3f:ea:d6:38:84:41:4b:04:bb:b1:ff:10:
                    6e:98:d3:c4:bb:f0:65:25:1a:c8:f4:b3:20:64:d6:31:
                    73:d3:52:22:8c:6a:65:83:c9:d2:37:19:92:c2:83:8f:
                    77:d6:49:7a:ef:e7:b0:42:8c:65:de:cd:f0:ba:ee:64:
                    20:49:5a:5e:d4:9c:bd:ac:bf:87:96:1d:73:38:00:ec:
                    c5:7a:f8:95:9f:2a:8f:d4:bf:05:ca:0a:0b:bd:1d:cf:
                    f6:c1:2e:4c:81:fe:a7:eb:b2:c2:8e:f6:ea:56:96:41:
                    a0:6e:06:24:d0:a1:c9:e4:63:38:40:d2:a4:46:cd:97:
                    c7:d0:27:66:b8:8c:78:86:e5:0d:8a:90:7c:39:4d:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:85:51:ef:4e:4c:b7:b8:82:5c:c7:62:c7:d1:f2:7f:
        ae:e1:c5:5a:cd:5d:66:01:40:84:23:08:e1:42:20:b7:
        55:09:54:d4:45:3d:6b:e9:50:86:7b:6f:eb:d9:14:31:
        9e:57:3e:6d:b6:84:0d:e1:72:7a:72:03:fe:f3:f5:67:
        55:08:ad:92:77:be:a3:75:44:60:36:a3:00:60:66:73:
        fa:97:11:4b:c1:1f:d8:81:89:df:aa:f5:01:eb:e0:db:
        e6:ec:a0:bd:6b:ba:20:e9:d8:45:b1:ff:f6:04:db:1e:
        c1:ca:38:2e:d5:cf:52:99:7a:07:f6:4e:45:ad:96:57:
        f1:73:c4:48:d8:86:86:db:4f:2b:da:b5:90:4c:e6:f4:
        00:6c:9f:39:8c:27:32:df:db:16:ea:fc:fd:06:5e:e7:
        04:a7:e5:c5:c2:d9:f9:e2:33:3b:19:2e:bc:98:f8:da:
        3c:17:12:25:12:9b:81:af:ff:ce:2d:4a:15:3e:bd:b6:
        23:22:76:de:63:7e:99:f7:37:21:06:cc:72:bd:19:b6:
        6e:b3:a0:89:d0:a1:89:44:83:e7:82:f3:15:82:ce:8a:
        64:47:57:8c:68:ed:87:bf:eb:85:bb:27:ec:37:96:f3:
        41:f8:98:c0:ea:d0:b2:8f:9e:07:e8:a9:00:c3:ee:41
    Fingerprint (SHA-256):
        37:29:9E:ED:22:8A:53:CF:AD:EB:5A:C1:F0:75:04:5C:51:BF:BE:36:52:6E:5C:8A:13:83:2F:9E:18:89:75:E4
    Fingerprint (SHA1):
        4B:FC:8F:8C:B0:7D:F6:5D:83:E5:F2:F0:4E:B3:45:6D:66:28:69:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4163: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4164: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:33 2017
            Not After : Tue Aug 23 12:31:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:12:b5:56:f2:ed:e1:42:1f:fb:7f:75:71:0c:3e:43:
                    a3:8f:b6:7b:f7:dc:3a:75:37:0e:8d:76:04:ee:55:47:
                    96:d2:2c:8d:64:c6:6f:03:99:fe:9d:35:0f:8c:72:87:
                    7e:bd:f7:0e:a2:80:73:90:ab:54:8d:9f:70:21:eb:e2:
                    40:b1:fe:60:cb:e5:db:87:b2:34:f2:ba:57:67:06:2a:
                    57:5a:26:c6:8e:14:37:ac:61:2b:7a:2b:3e:92:8b:6a:
                    f5:6c:8f:46:c9:7e:23:ef:e8:e6:73:0a:5e:c1:1e:e7:
                    d8:27:38:4e:3f:ea:d6:38:84:41:4b:04:bb:b1:ff:10:
                    6e:98:d3:c4:bb:f0:65:25:1a:c8:f4:b3:20:64:d6:31:
                    73:d3:52:22:8c:6a:65:83:c9:d2:37:19:92:c2:83:8f:
                    77:d6:49:7a:ef:e7:b0:42:8c:65:de:cd:f0:ba:ee:64:
                    20:49:5a:5e:d4:9c:bd:ac:bf:87:96:1d:73:38:00:ec:
                    c5:7a:f8:95:9f:2a:8f:d4:bf:05:ca:0a:0b:bd:1d:cf:
                    f6:c1:2e:4c:81:fe:a7:eb:b2:c2:8e:f6:ea:56:96:41:
                    a0:6e:06:24:d0:a1:c9:e4:63:38:40:d2:a4:46:cd:97:
                    c7:d0:27:66:b8:8c:78:86:e5:0d:8a:90:7c:39:4d:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:85:51:ef:4e:4c:b7:b8:82:5c:c7:62:c7:d1:f2:7f:
        ae:e1:c5:5a:cd:5d:66:01:40:84:23:08:e1:42:20:b7:
        55:09:54:d4:45:3d:6b:e9:50:86:7b:6f:eb:d9:14:31:
        9e:57:3e:6d:b6:84:0d:e1:72:7a:72:03:fe:f3:f5:67:
        55:08:ad:92:77:be:a3:75:44:60:36:a3:00:60:66:73:
        fa:97:11:4b:c1:1f:d8:81:89:df:aa:f5:01:eb:e0:db:
        e6:ec:a0:bd:6b:ba:20:e9:d8:45:b1:ff:f6:04:db:1e:
        c1:ca:38:2e:d5:cf:52:99:7a:07:f6:4e:45:ad:96:57:
        f1:73:c4:48:d8:86:86:db:4f:2b:da:b5:90:4c:e6:f4:
        00:6c:9f:39:8c:27:32:df:db:16:ea:fc:fd:06:5e:e7:
        04:a7:e5:c5:c2:d9:f9:e2:33:3b:19:2e:bc:98:f8:da:
        3c:17:12:25:12:9b:81:af:ff:ce:2d:4a:15:3e:bd:b6:
        23:22:76:de:63:7e:99:f7:37:21:06:cc:72:bd:19:b6:
        6e:b3:a0:89:d0:a1:89:44:83:e7:82:f3:15:82:ce:8a:
        64:47:57:8c:68:ed:87:bf:eb:85:bb:27:ec:37:96:f3:
        41:f8:98:c0:ea:d0:b2:8f:9e:07:e8:a9:00:c3:ee:41
    Fingerprint (SHA-256):
        37:29:9E:ED:22:8A:53:CF:AD:EB:5A:C1:F0:75:04:5C:51:BF:BE:36:52:6E:5C:8A:13:83:2F:9E:18:89:75:E4
    Fingerprint (SHA1):
        4B:FC:8F:8C:B0:7D:F6:5D:83:E5:F2:F0:4E:B3:45:6D:66:28:69:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4165: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4166: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4167: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123278 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4168: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4169: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4170: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4171: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 823123279   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4172: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4173: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4174: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4175: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123024.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4176: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4177: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4178: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4179: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 823123280   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4180: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4181: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4182: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4183: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123025.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4184: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4185: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4186: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4187: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 823123281   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4188: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4189: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4190: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4191: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123026.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4192: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4193: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4194: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4195: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123027.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4196: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4197: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123139Z
nextupdate=20180823123139Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:31:39 2017
    Next Update: Thu Aug 23 12:31:39 2018
    CRL Extensions:
chains.sh: #4198: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123139Z
nextupdate=20180823123139Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:31:39 2017
    Next Update: Thu Aug 23 12:31:39 2018
    CRL Extensions:
chains.sh: #4199: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123139Z
nextupdate=20180823123139Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:31:39 2017
    Next Update: Thu Aug 23 12:31:39 2018
    CRL Extensions:
chains.sh: #4200: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123139Z
nextupdate=20180823123139Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:31:39 2017
    Next Update: Thu Aug 23 12:31:39 2018
    CRL Extensions:
chains.sh: #4201: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123140Z
addcert 20 20170823123140Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:31:40 2017
    Next Update: Thu Aug 23 12:31:39 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:31:40 2017
    CRL Extensions:
chains.sh: #4202: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123141Z
addcert 40 20170823123141Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:31:41 2017
    Next Update: Thu Aug 23 12:31:39 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:31:40 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:31:41 2017
    CRL Extensions:
chains.sh: #4203: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4204: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4205: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4206: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123278 (0x310fdd4e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:37 2017
            Not After : Tue Aug 23 12:31:37 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:51:01:86:ee:15:0c:46:15:04:df:56:bb:c2:46:9b:
                    66:fe:fd:bb:5e:24:3c:b8:b7:29:48:2e:71:f5:15:50:
                    91:52:fe:8e:74:7a:af:ee:48:90:7c:a3:d5:03:10:3a:
                    57:0a:91:5d:0f:25:21:49:cf:04:a2:39:5f:ce:53:e8:
                    45:79:4c:7e:b7:9b:25:fd:80:d3:c3:c1:5b:71:f9:1f:
                    61:97:83:01:5e:61:6f:ee:b1:a8:5e:b4:ed:2e:33:1e:
                    03:69:4d:a5:65:13:de:db:b1:a2:ea:35:c3:4f:ed:89:
                    61:f8:89:e0:56:8d:98:73:28:2a:cd:8b:79:3d:14:a2:
                    a5:09:4a:dd:3c:45:0e:b4:81:83:a8:35:1a:86:d9:e9:
                    54:fe:78:f1:0f:84:31:01:12:6b:72:74:37:41:43:cc:
                    7c:2a:a1:33:41:f6:60:78:2e:63:7c:c4:87:ab:0e:cb:
                    12:08:0e:d3:bd:82:86:0b:c8:35:4a:74:d3:e6:b4:01:
                    dd:be:d3:75:8d:3a:ff:3d:b4:5f:ee:3b:54:80:b0:b0:
                    15:f7:ad:20:69:95:70:57:70:3a:07:f2:78:94:b7:b8:
                    10:08:29:0a:33:68:df:54:ca:83:22:f0:88:0f:22:37:
                    45:30:b8:2b:c1:cb:5f:a3:fc:d0:28:c6:58:1c:f1:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:19:a4:60:45:ec:77:50:ea:ad:68:82:ad:47:32:38:
        55:af:a8:7d:9f:8a:c6:78:0d:4d:fb:40:db:f0:a8:6e:
        24:7a:f7:84:13:b6:06:db:10:81:85:cb:e5:c8:5f:09:
        6f:95:7b:41:ce:23:c4:b2:9d:0f:16:fb:ee:a8:7b:27:
        5c:32:17:8b:f8:bb:5c:ec:8f:16:76:65:17:42:fa:5c:
        ee:2a:67:2c:02:00:e8:2d:f7:d2:41:3a:b7:e4:3e:3f:
        4c:9a:f2:3b:87:43:6b:3a:fe:67:87:77:35:e2:8f:3a:
        d6:4a:f2:ee:c6:b4:a8:6d:59:16:00:3d:b1:c1:f1:9b:
        80:a6:18:dc:c7:27:c0:c3:77:4c:a8:b4:0e:51:5c:57:
        ca:24:7a:78:6e:03:e6:df:18:bb:4b:b7:c0:f5:9c:e9:
        41:2d:aa:3d:0d:6d:9d:3b:11:2f:11:06:2e:34:c5:4a:
        45:90:00:31:b3:e9:cb:1b:8b:fe:8c:73:e4:54:04:d3:
        81:19:88:04:8c:b7:9b:48:97:4c:d3:0a:d4:12:c7:49:
        fc:ae:df:1d:02:08:ce:5e:67:79:6e:2a:69:f6:d2:47:
        3a:15:56:da:1c:36:ad:c7:b1:3b:12:73:03:f9:33:6c:
        98:d1:50:c4:df:61:58:fd:ff:c6:77:0d:d0:d8:bf:8f
    Fingerprint (SHA-256):
        C6:ED:4E:F5:8C:D5:52:82:6A:F6:85:C1:62:CE:96:09:B9:EE:73:42:E0:49:08:62:3A:15:A9:BB:57:3D:6B:AD
    Fingerprint (SHA1):
        A5:2F:9A:D1:6A:67:8E:72:99:32:89:56:16:F5:9F:CC:02:50:77:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4207: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4208: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123278 (0x310fdd4e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:37 2017
            Not After : Tue Aug 23 12:31:37 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:51:01:86:ee:15:0c:46:15:04:df:56:bb:c2:46:9b:
                    66:fe:fd:bb:5e:24:3c:b8:b7:29:48:2e:71:f5:15:50:
                    91:52:fe:8e:74:7a:af:ee:48:90:7c:a3:d5:03:10:3a:
                    57:0a:91:5d:0f:25:21:49:cf:04:a2:39:5f:ce:53:e8:
                    45:79:4c:7e:b7:9b:25:fd:80:d3:c3:c1:5b:71:f9:1f:
                    61:97:83:01:5e:61:6f:ee:b1:a8:5e:b4:ed:2e:33:1e:
                    03:69:4d:a5:65:13:de:db:b1:a2:ea:35:c3:4f:ed:89:
                    61:f8:89:e0:56:8d:98:73:28:2a:cd:8b:79:3d:14:a2:
                    a5:09:4a:dd:3c:45:0e:b4:81:83:a8:35:1a:86:d9:e9:
                    54:fe:78:f1:0f:84:31:01:12:6b:72:74:37:41:43:cc:
                    7c:2a:a1:33:41:f6:60:78:2e:63:7c:c4:87:ab:0e:cb:
                    12:08:0e:d3:bd:82:86:0b:c8:35:4a:74:d3:e6:b4:01:
                    dd:be:d3:75:8d:3a:ff:3d:b4:5f:ee:3b:54:80:b0:b0:
                    15:f7:ad:20:69:95:70:57:70:3a:07:f2:78:94:b7:b8:
                    10:08:29:0a:33:68:df:54:ca:83:22:f0:88:0f:22:37:
                    45:30:b8:2b:c1:cb:5f:a3:fc:d0:28:c6:58:1c:f1:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:19:a4:60:45:ec:77:50:ea:ad:68:82:ad:47:32:38:
        55:af:a8:7d:9f:8a:c6:78:0d:4d:fb:40:db:f0:a8:6e:
        24:7a:f7:84:13:b6:06:db:10:81:85:cb:e5:c8:5f:09:
        6f:95:7b:41:ce:23:c4:b2:9d:0f:16:fb:ee:a8:7b:27:
        5c:32:17:8b:f8:bb:5c:ec:8f:16:76:65:17:42:fa:5c:
        ee:2a:67:2c:02:00:e8:2d:f7:d2:41:3a:b7:e4:3e:3f:
        4c:9a:f2:3b:87:43:6b:3a:fe:67:87:77:35:e2:8f:3a:
        d6:4a:f2:ee:c6:b4:a8:6d:59:16:00:3d:b1:c1:f1:9b:
        80:a6:18:dc:c7:27:c0:c3:77:4c:a8:b4:0e:51:5c:57:
        ca:24:7a:78:6e:03:e6:df:18:bb:4b:b7:c0:f5:9c:e9:
        41:2d:aa:3d:0d:6d:9d:3b:11:2f:11:06:2e:34:c5:4a:
        45:90:00:31:b3:e9:cb:1b:8b:fe:8c:73:e4:54:04:d3:
        81:19:88:04:8c:b7:9b:48:97:4c:d3:0a:d4:12:c7:49:
        fc:ae:df:1d:02:08:ce:5e:67:79:6e:2a:69:f6:d2:47:
        3a:15:56:da:1c:36:ad:c7:b1:3b:12:73:03:f9:33:6c:
        98:d1:50:c4:df:61:58:fd:ff:c6:77:0d:d0:d8:bf:8f
    Fingerprint (SHA-256):
        C6:ED:4E:F5:8C:D5:52:82:6A:F6:85:C1:62:CE:96:09:B9:EE:73:42:E0:49:08:62:3A:15:A9:BB:57:3D:6B:AD
    Fingerprint (SHA1):
        A5:2F:9A:D1:6A:67:8E:72:99:32:89:56:16:F5:9F:CC:02:50:77:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4209: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4210: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4211: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123282 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4212: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4213: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4214: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4215: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123283   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4216: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4217: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4218: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4219: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123284   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4220: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4221: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4222: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4223: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 823123285   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4224: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4225: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4226: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 823123286 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4227: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4228: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4229: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4230: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 823123287   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4231: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4232: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4233: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4234: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 823123288   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4235: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4236: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4237: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4238: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4239: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123282 (0x310fdd52)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:41 2017
            Not After : Tue Aug 23 12:31:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:74:f0:48:a2:b6:a6:db:3f:39:04:22:67:62:9c:d8:
                    2a:56:8e:ec:68:16:8e:14:ac:f2:61:05:99:e9:7c:4c:
                    2b:b1:ee:4e:9a:03:9e:16:5e:94:b3:c7:33:2e:1e:d5:
                    42:e6:12:2e:a0:bb:29:e6:cd:9b:1d:c8:ae:2f:ac:b7:
                    f0:ee:1f:0d:a8:90:70:ef:9f:3b:38:8b:3e:f9:03:f6:
                    31:45:f7:cc:b2:66:7d:c7:3e:bd:7e:22:a9:85:8b:60:
                    11:ac:01:c1:d4:94:46:b5:6e:10:d8:98:34:5f:48:7c:
                    66:3e:d4:8d:dc:4d:9f:33:1d:e5:d6:1d:72:ed:4d:12:
                    11:d2:f8:1b:cd:4b:54:10:62:9a:38:80:3f:66:be:78:
                    08:3f:72:9a:08:9a:4e:a1:1e:e6:64:cc:f1:30:58:bb:
                    94:f4:54:61:45:6d:df:c7:cf:05:56:37:a2:a3:1b:af:
                    a4:54:3e:de:e5:a9:bb:20:69:1c:df:52:d7:4a:fd:b1:
                    64:b4:cc:6c:0b:cc:53:da:4b:44:f4:b0:e0:db:3d:f4:
                    e1:04:23:b2:39:d9:48:fc:3d:3c:db:de:4e:99:26:20:
                    73:1c:54:14:0e:6f:ef:84:17:e1:15:50:e0:3b:dd:bb:
                    95:78:4b:cf:26:f1:bd:c6:cb:95:98:32:34:e6:c3:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:c2:e1:6a:6b:77:b2:33:ff:73:94:b2:98:ea:59:36:
        9d:05:ab:f6:44:66:2e:08:86:8f:37:0c:9a:75:74:83:
        a4:3d:62:7b:e2:4e:3f:d4:45:81:5e:2a:f6:7d:9c:e3:
        d4:fc:61:37:8d:59:fc:44:35:8b:87:26:2a:1f:82:69:
        bd:23:85:32:e2:15:d5:06:66:10:08:e3:4f:7e:41:29:
        b0:70:5d:b7:29:51:ed:2f:0d:8d:b5:f9:45:c3:cc:b4:
        8a:d5:06:e8:57:99:65:97:6d:49:8a:64:0e:ef:70:f3:
        e7:1d:98:1f:4f:6f:61:6e:42:50:1c:01:92:d0:ee:52:
        d8:be:02:09:59:9f:1a:97:83:ed:83:71:f5:eb:e2:22:
        da:20:f3:4b:e3:a8:33:f5:70:7e:8d:5c:06:ac:94:fc:
        bd:78:ec:73:8a:d8:c4:1a:5f:f1:2c:26:77:72:ed:b4:
        1d:1c:5a:d8:ef:f2:0c:3c:d1:53:d8:a4:4b:26:2e:10:
        65:41:a2:76:4d:4b:09:0d:08:f1:55:1d:f9:fb:08:47:
        da:db:3e:39:37:5a:18:d6:da:7c:78:e3:f7:d2:09:44:
        0e:26:37:28:b0:45:90:f7:37:ac:63:ac:4b:e7:c7:d2:
        c9:28:5a:0e:47:d6:0e:00:4c:a0:55:a1:57:9c:16:52
    Fingerprint (SHA-256):
        98:5D:23:03:16:81:21:98:E7:91:AA:F1:45:4A:FD:9B:68:84:61:C3:29:17:75:CB:4A:5F:3C:2E:48:00:64:DB
    Fingerprint (SHA1):
        CC:E6:57:EB:99:1A:95:6D:62:91:70:22:2B:5D:99:23:42:1C:C5:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4240: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123284 (0x310fdd54)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:42 2017
            Not After : Tue Aug 23 12:31:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:b7:3b:aa:3c:cf:4b:49:24:37:7d:27:c7:63:16:ce:
                    94:99:cd:a5:85:24:5e:c5:66:0b:33:d6:fd:3b:7c:a5:
                    11:42:13:88:7c:9b:81:4c:62:5e:cb:e6:89:aa:31:93:
                    66:6f:0e:63:c6:24:36:87:4a:e5:e5:d2:b0:e4:a7:c7:
                    24:31:08:f9:0c:7d:fc:24:c0:d3:d9:5f:a1:74:0c:c9:
                    19:0c:a2:19:fa:e1:c9:c2:46:87:7d:6e:b3:e8:eb:64:
                    9b:a7:83:d2:8d:8d:0b:c2:69:a2:c9:21:17:02:c9:f8:
                    fe:59:fe:4e:cf:d9:bc:fd:3b:35:18:88:1f:a6:49:9c:
                    5e:e5:4e:1b:c4:e0:d4:39:42:2b:de:3e:bd:b9:dc:c6:
                    de:e8:cf:5a:e5:21:72:c9:5b:e6:2a:11:ab:2f:ed:a0:
                    e0:96:b5:93:43:b5:15:cf:32:d0:ab:89:bc:4e:71:5c:
                    a1:de:dc:b7:fa:2b:34:2d:36:34:c2:bd:5a:8d:92:7d:
                    85:38:29:a8:14:14:f1:d0:d5:64:67:d4:01:db:d7:80:
                    55:53:25:f0:da:e8:0d:b2:07:a5:9c:61:dc:88:e4:72:
                    77:19:b7:01:36:e7:db:35:83:07:da:c2:3a:6d:29:32:
                    d1:58:0b:3b:bf:0c:2c:6c:d5:ea:65:91:79:8b:c2:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:e1:1e:ec:74:47:82:13:01:55:ac:80:37:75:ce:a3:
        e9:3f:a8:70:f5:86:db:87:23:71:be:cf:3d:f8:0a:7c:
        47:2b:c0:69:78:73:ce:8f:12:cf:15:32:05:c0:8c:1f:
        90:d8:83:22:00:0d:04:ce:1a:15:ca:cc:c4:62:36:f2:
        ca:96:b6:24:5b:0a:33:8d:9a:5c:33:ee:e7:1b:b8:a7:
        43:6b:8e:f8:b2:c8:e8:47:82:95:91:7d:1b:02:e9:91:
        07:62:bf:57:28:4b:c2:a6:ed:cc:1c:38:9e:f3:f5:d8:
        a7:4b:2e:cf:70:57:6c:0b:9d:da:57:60:15:fc:5a:a9:
        9b:c8:52:e4:be:f1:db:6c:50:de:56:6a:48:8d:94:22:
        4b:2b:81:d1:8f:a7:ae:81:a2:dd:e2:c4:2b:5d:72:9a:
        22:ef:88:89:d3:cd:b9:94:ba:79:8f:a3:cd:2d:64:75:
        3b:d2:ed:b7:2e:a2:a2:36:6f:51:ee:f4:9f:0e:7e:bb:
        3f:10:67:51:9b:81:d3:ad:4f:68:8f:e5:34:14:c8:7a:
        80:cc:72:ad:91:67:e7:99:af:85:f1:0d:1c:31:f2:77:
        d7:1c:d8:e9:2c:5a:46:11:66:fa:a8:42:19:fd:ba:c5:
        02:e6:66:4c:0e:ce:7f:5b:ee:b8:3d:72:94:a9:b7:8e
    Fingerprint (SHA-256):
        70:42:77:70:EE:97:FC:10:C0:5F:F2:5D:9F:61:59:D5:E5:C0:AB:1C:1B:03:5D:B1:77:DA:5A:26:C7:A7:A5:7B
    Fingerprint (SHA1):
        1E:73:D8:A0:81:B2:BB:4C:63:EC:23:2B:6D:46:7A:5D:4C:BD:BF:C6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4241: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123282 (0x310fdd52)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:41 2017
            Not After : Tue Aug 23 12:31:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:74:f0:48:a2:b6:a6:db:3f:39:04:22:67:62:9c:d8:
                    2a:56:8e:ec:68:16:8e:14:ac:f2:61:05:99:e9:7c:4c:
                    2b:b1:ee:4e:9a:03:9e:16:5e:94:b3:c7:33:2e:1e:d5:
                    42:e6:12:2e:a0:bb:29:e6:cd:9b:1d:c8:ae:2f:ac:b7:
                    f0:ee:1f:0d:a8:90:70:ef:9f:3b:38:8b:3e:f9:03:f6:
                    31:45:f7:cc:b2:66:7d:c7:3e:bd:7e:22:a9:85:8b:60:
                    11:ac:01:c1:d4:94:46:b5:6e:10:d8:98:34:5f:48:7c:
                    66:3e:d4:8d:dc:4d:9f:33:1d:e5:d6:1d:72:ed:4d:12:
                    11:d2:f8:1b:cd:4b:54:10:62:9a:38:80:3f:66:be:78:
                    08:3f:72:9a:08:9a:4e:a1:1e:e6:64:cc:f1:30:58:bb:
                    94:f4:54:61:45:6d:df:c7:cf:05:56:37:a2:a3:1b:af:
                    a4:54:3e:de:e5:a9:bb:20:69:1c:df:52:d7:4a:fd:b1:
                    64:b4:cc:6c:0b:cc:53:da:4b:44:f4:b0:e0:db:3d:f4:
                    e1:04:23:b2:39:d9:48:fc:3d:3c:db:de:4e:99:26:20:
                    73:1c:54:14:0e:6f:ef:84:17:e1:15:50:e0:3b:dd:bb:
                    95:78:4b:cf:26:f1:bd:c6:cb:95:98:32:34:e6:c3:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:c2:e1:6a:6b:77:b2:33:ff:73:94:b2:98:ea:59:36:
        9d:05:ab:f6:44:66:2e:08:86:8f:37:0c:9a:75:74:83:
        a4:3d:62:7b:e2:4e:3f:d4:45:81:5e:2a:f6:7d:9c:e3:
        d4:fc:61:37:8d:59:fc:44:35:8b:87:26:2a:1f:82:69:
        bd:23:85:32:e2:15:d5:06:66:10:08:e3:4f:7e:41:29:
        b0:70:5d:b7:29:51:ed:2f:0d:8d:b5:f9:45:c3:cc:b4:
        8a:d5:06:e8:57:99:65:97:6d:49:8a:64:0e:ef:70:f3:
        e7:1d:98:1f:4f:6f:61:6e:42:50:1c:01:92:d0:ee:52:
        d8:be:02:09:59:9f:1a:97:83:ed:83:71:f5:eb:e2:22:
        da:20:f3:4b:e3:a8:33:f5:70:7e:8d:5c:06:ac:94:fc:
        bd:78:ec:73:8a:d8:c4:1a:5f:f1:2c:26:77:72:ed:b4:
        1d:1c:5a:d8:ef:f2:0c:3c:d1:53:d8:a4:4b:26:2e:10:
        65:41:a2:76:4d:4b:09:0d:08:f1:55:1d:f9:fb:08:47:
        da:db:3e:39:37:5a:18:d6:da:7c:78:e3:f7:d2:09:44:
        0e:26:37:28:b0:45:90:f7:37:ac:63:ac:4b:e7:c7:d2:
        c9:28:5a:0e:47:d6:0e:00:4c:a0:55:a1:57:9c:16:52
    Fingerprint (SHA-256):
        98:5D:23:03:16:81:21:98:E7:91:AA:F1:45:4A:FD:9B:68:84:61:C3:29:17:75:CB:4A:5F:3C:2E:48:00:64:DB
    Fingerprint (SHA1):
        CC:E6:57:EB:99:1A:95:6D:62:91:70:22:2B:5D:99:23:42:1C:C5:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4242: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4243: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123282 (0x310fdd52)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:41 2017
            Not After : Tue Aug 23 12:31:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:74:f0:48:a2:b6:a6:db:3f:39:04:22:67:62:9c:d8:
                    2a:56:8e:ec:68:16:8e:14:ac:f2:61:05:99:e9:7c:4c:
                    2b:b1:ee:4e:9a:03:9e:16:5e:94:b3:c7:33:2e:1e:d5:
                    42:e6:12:2e:a0:bb:29:e6:cd:9b:1d:c8:ae:2f:ac:b7:
                    f0:ee:1f:0d:a8:90:70:ef:9f:3b:38:8b:3e:f9:03:f6:
                    31:45:f7:cc:b2:66:7d:c7:3e:bd:7e:22:a9:85:8b:60:
                    11:ac:01:c1:d4:94:46:b5:6e:10:d8:98:34:5f:48:7c:
                    66:3e:d4:8d:dc:4d:9f:33:1d:e5:d6:1d:72:ed:4d:12:
                    11:d2:f8:1b:cd:4b:54:10:62:9a:38:80:3f:66:be:78:
                    08:3f:72:9a:08:9a:4e:a1:1e:e6:64:cc:f1:30:58:bb:
                    94:f4:54:61:45:6d:df:c7:cf:05:56:37:a2:a3:1b:af:
                    a4:54:3e:de:e5:a9:bb:20:69:1c:df:52:d7:4a:fd:b1:
                    64:b4:cc:6c:0b:cc:53:da:4b:44:f4:b0:e0:db:3d:f4:
                    e1:04:23:b2:39:d9:48:fc:3d:3c:db:de:4e:99:26:20:
                    73:1c:54:14:0e:6f:ef:84:17:e1:15:50:e0:3b:dd:bb:
                    95:78:4b:cf:26:f1:bd:c6:cb:95:98:32:34:e6:c3:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:c2:e1:6a:6b:77:b2:33:ff:73:94:b2:98:ea:59:36:
        9d:05:ab:f6:44:66:2e:08:86:8f:37:0c:9a:75:74:83:
        a4:3d:62:7b:e2:4e:3f:d4:45:81:5e:2a:f6:7d:9c:e3:
        d4:fc:61:37:8d:59:fc:44:35:8b:87:26:2a:1f:82:69:
        bd:23:85:32:e2:15:d5:06:66:10:08:e3:4f:7e:41:29:
        b0:70:5d:b7:29:51:ed:2f:0d:8d:b5:f9:45:c3:cc:b4:
        8a:d5:06:e8:57:99:65:97:6d:49:8a:64:0e:ef:70:f3:
        e7:1d:98:1f:4f:6f:61:6e:42:50:1c:01:92:d0:ee:52:
        d8:be:02:09:59:9f:1a:97:83:ed:83:71:f5:eb:e2:22:
        da:20:f3:4b:e3:a8:33:f5:70:7e:8d:5c:06:ac:94:fc:
        bd:78:ec:73:8a:d8:c4:1a:5f:f1:2c:26:77:72:ed:b4:
        1d:1c:5a:d8:ef:f2:0c:3c:d1:53:d8:a4:4b:26:2e:10:
        65:41:a2:76:4d:4b:09:0d:08:f1:55:1d:f9:fb:08:47:
        da:db:3e:39:37:5a:18:d6:da:7c:78:e3:f7:d2:09:44:
        0e:26:37:28:b0:45:90:f7:37:ac:63:ac:4b:e7:c7:d2:
        c9:28:5a:0e:47:d6:0e:00:4c:a0:55:a1:57:9c:16:52
    Fingerprint (SHA-256):
        98:5D:23:03:16:81:21:98:E7:91:AA:F1:45:4A:FD:9B:68:84:61:C3:29:17:75:CB:4A:5F:3C:2E:48:00:64:DB
    Fingerprint (SHA1):
        CC:E6:57:EB:99:1A:95:6D:62:91:70:22:2B:5D:99:23:42:1C:C5:46
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4244: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123284 (0x310fdd54)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:42 2017
            Not After : Tue Aug 23 12:31:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:b7:3b:aa:3c:cf:4b:49:24:37:7d:27:c7:63:16:ce:
                    94:99:cd:a5:85:24:5e:c5:66:0b:33:d6:fd:3b:7c:a5:
                    11:42:13:88:7c:9b:81:4c:62:5e:cb:e6:89:aa:31:93:
                    66:6f:0e:63:c6:24:36:87:4a:e5:e5:d2:b0:e4:a7:c7:
                    24:31:08:f9:0c:7d:fc:24:c0:d3:d9:5f:a1:74:0c:c9:
                    19:0c:a2:19:fa:e1:c9:c2:46:87:7d:6e:b3:e8:eb:64:
                    9b:a7:83:d2:8d:8d:0b:c2:69:a2:c9:21:17:02:c9:f8:
                    fe:59:fe:4e:cf:d9:bc:fd:3b:35:18:88:1f:a6:49:9c:
                    5e:e5:4e:1b:c4:e0:d4:39:42:2b:de:3e:bd:b9:dc:c6:
                    de:e8:cf:5a:e5:21:72:c9:5b:e6:2a:11:ab:2f:ed:a0:
                    e0:96:b5:93:43:b5:15:cf:32:d0:ab:89:bc:4e:71:5c:
                    a1:de:dc:b7:fa:2b:34:2d:36:34:c2:bd:5a:8d:92:7d:
                    85:38:29:a8:14:14:f1:d0:d5:64:67:d4:01:db:d7:80:
                    55:53:25:f0:da:e8:0d:b2:07:a5:9c:61:dc:88:e4:72:
                    77:19:b7:01:36:e7:db:35:83:07:da:c2:3a:6d:29:32:
                    d1:58:0b:3b:bf:0c:2c:6c:d5:ea:65:91:79:8b:c2:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:e1:1e:ec:74:47:82:13:01:55:ac:80:37:75:ce:a3:
        e9:3f:a8:70:f5:86:db:87:23:71:be:cf:3d:f8:0a:7c:
        47:2b:c0:69:78:73:ce:8f:12:cf:15:32:05:c0:8c:1f:
        90:d8:83:22:00:0d:04:ce:1a:15:ca:cc:c4:62:36:f2:
        ca:96:b6:24:5b:0a:33:8d:9a:5c:33:ee:e7:1b:b8:a7:
        43:6b:8e:f8:b2:c8:e8:47:82:95:91:7d:1b:02:e9:91:
        07:62:bf:57:28:4b:c2:a6:ed:cc:1c:38:9e:f3:f5:d8:
        a7:4b:2e:cf:70:57:6c:0b:9d:da:57:60:15:fc:5a:a9:
        9b:c8:52:e4:be:f1:db:6c:50:de:56:6a:48:8d:94:22:
        4b:2b:81:d1:8f:a7:ae:81:a2:dd:e2:c4:2b:5d:72:9a:
        22:ef:88:89:d3:cd:b9:94:ba:79:8f:a3:cd:2d:64:75:
        3b:d2:ed:b7:2e:a2:a2:36:6f:51:ee:f4:9f:0e:7e:bb:
        3f:10:67:51:9b:81:d3:ad:4f:68:8f:e5:34:14:c8:7a:
        80:cc:72:ad:91:67:e7:99:af:85:f1:0d:1c:31:f2:77:
        d7:1c:d8:e9:2c:5a:46:11:66:fa:a8:42:19:fd:ba:c5:
        02:e6:66:4c:0e:ce:7f:5b:ee:b8:3d:72:94:a9:b7:8e
    Fingerprint (SHA-256):
        70:42:77:70:EE:97:FC:10:C0:5F:F2:5D:9F:61:59:D5:E5:C0:AB:1C:1B:03:5D:B1:77:DA:5A:26:C7:A7:A5:7B
    Fingerprint (SHA1):
        1E:73:D8:A0:81:B2:BB:4C:63:EC:23:2B:6D:46:7A:5D:4C:BD:BF:C6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4245: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4246: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4247: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4248: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123282 (0x310fdd52)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:41 2017
            Not After : Tue Aug 23 12:31:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:74:f0:48:a2:b6:a6:db:3f:39:04:22:67:62:9c:d8:
                    2a:56:8e:ec:68:16:8e:14:ac:f2:61:05:99:e9:7c:4c:
                    2b:b1:ee:4e:9a:03:9e:16:5e:94:b3:c7:33:2e:1e:d5:
                    42:e6:12:2e:a0:bb:29:e6:cd:9b:1d:c8:ae:2f:ac:b7:
                    f0:ee:1f:0d:a8:90:70:ef:9f:3b:38:8b:3e:f9:03:f6:
                    31:45:f7:cc:b2:66:7d:c7:3e:bd:7e:22:a9:85:8b:60:
                    11:ac:01:c1:d4:94:46:b5:6e:10:d8:98:34:5f:48:7c:
                    66:3e:d4:8d:dc:4d:9f:33:1d:e5:d6:1d:72:ed:4d:12:
                    11:d2:f8:1b:cd:4b:54:10:62:9a:38:80:3f:66:be:78:
                    08:3f:72:9a:08:9a:4e:a1:1e:e6:64:cc:f1:30:58:bb:
                    94:f4:54:61:45:6d:df:c7:cf:05:56:37:a2:a3:1b:af:
                    a4:54:3e:de:e5:a9:bb:20:69:1c:df:52:d7:4a:fd:b1:
                    64:b4:cc:6c:0b:cc:53:da:4b:44:f4:b0:e0:db:3d:f4:
                    e1:04:23:b2:39:d9:48:fc:3d:3c:db:de:4e:99:26:20:
                    73:1c:54:14:0e:6f:ef:84:17:e1:15:50:e0:3b:dd:bb:
                    95:78:4b:cf:26:f1:bd:c6:cb:95:98:32:34:e6:c3:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:c2:e1:6a:6b:77:b2:33:ff:73:94:b2:98:ea:59:36:
        9d:05:ab:f6:44:66:2e:08:86:8f:37:0c:9a:75:74:83:
        a4:3d:62:7b:e2:4e:3f:d4:45:81:5e:2a:f6:7d:9c:e3:
        d4:fc:61:37:8d:59:fc:44:35:8b:87:26:2a:1f:82:69:
        bd:23:85:32:e2:15:d5:06:66:10:08:e3:4f:7e:41:29:
        b0:70:5d:b7:29:51:ed:2f:0d:8d:b5:f9:45:c3:cc:b4:
        8a:d5:06:e8:57:99:65:97:6d:49:8a:64:0e:ef:70:f3:
        e7:1d:98:1f:4f:6f:61:6e:42:50:1c:01:92:d0:ee:52:
        d8:be:02:09:59:9f:1a:97:83:ed:83:71:f5:eb:e2:22:
        da:20:f3:4b:e3:a8:33:f5:70:7e:8d:5c:06:ac:94:fc:
        bd:78:ec:73:8a:d8:c4:1a:5f:f1:2c:26:77:72:ed:b4:
        1d:1c:5a:d8:ef:f2:0c:3c:d1:53:d8:a4:4b:26:2e:10:
        65:41:a2:76:4d:4b:09:0d:08:f1:55:1d:f9:fb:08:47:
        da:db:3e:39:37:5a:18:d6:da:7c:78:e3:f7:d2:09:44:
        0e:26:37:28:b0:45:90:f7:37:ac:63:ac:4b:e7:c7:d2:
        c9:28:5a:0e:47:d6:0e:00:4c:a0:55:a1:57:9c:16:52
    Fingerprint (SHA-256):
        98:5D:23:03:16:81:21:98:E7:91:AA:F1:45:4A:FD:9B:68:84:61:C3:29:17:75:CB:4A:5F:3C:2E:48:00:64:DB
    Fingerprint (SHA1):
        CC:E6:57:EB:99:1A:95:6D:62:91:70:22:2B:5D:99:23:42:1C:C5:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4249: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123286 (0x310fdd56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:42 2017
            Not After : Tue Aug 23 12:31:42 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:f5:1a:61:e4:b2:aa:b7:e5:d8:d0:b6:0a:49:67:0b:
                    8c:bd:2c:3a:7d:ef:b4:b5:47:02:3f:c0:b5:d7:81:b9:
                    9f:c0:e8:72:e4:0a:59:23:35:fb:1b:ea:2f:88:00:ae:
                    b8:48:08:7b:64:ff:f8:4d:de:c0:95:d7:57:4a:65:72:
                    7b:1f:97:7c:6b:8c:1a:ac:57:80:3b:03:3f:4e:96:e2:
                    1a:38:2d:24:bf:86:64:78:47:8f:e2:70:ba:a5:8b:2d:
                    ae:38:49:e4:99:34:e9:10:0a:08:27:ae:86:4b:68:52:
                    b7:30:92:38:75:2e:fa:92:51:fc:c4:07:45:43:4a:0f:
                    34:38:02:31:08:b8:e6:41:e0:4f:f4:8b:cb:da:7d:83:
                    da:1d:22:49:de:66:71:64:4e:ed:c0:59:b9:1e:87:fc:
                    f1:67:b5:66:04:f4:3f:5b:6a:04:81:77:81:cc:85:be:
                    24:b9:ca:f3:f3:87:d3:25:ad:65:cb:d3:1b:86:85:83:
                    20:fa:4b:40:11:de:06:8c:e5:72:b8:7b:0f:e4:1a:0c:
                    a4:94:0c:fb:dc:28:1e:81:a5:e4:6e:68:07:b7:57:4b:
                    14:5e:6a:8f:05:e9:fe:2c:13:cf:15:0f:e9:ad:61:af:
                    1e:e6:db:0b:ba:f2:ba:c7:cd:31:5d:1f:a8:9b:e9:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:7a:19:cd:d1:f2:38:d6:cf:4d:84:95:4b:03:3b:29:
        e6:7e:43:f5:c5:94:cf:38:ea:e8:24:2d:c8:9c:b4:be:
        38:8b:1c:f3:cd:b1:48:10:46:5c:20:0d:71:db:e2:91:
        9b:84:66:1d:45:f8:f0:68:ca:e6:88:91:74:d9:c5:e6:
        42:10:3a:dc:ad:9c:af:88:7a:14:ba:70:d5:da:bd:9c:
        b4:34:14:74:bc:ec:7f:77:48:93:a0:eb:2e:5d:1c:24:
        f2:4b:22:63:0b:f5:45:8a:7f:92:e9:fb:a9:4e:ae:1a:
        0b:c9:3f:26:4d:ae:90:af:a1:91:ba:62:ba:e2:d0:59:
        bd:cb:58:c6:60:d0:ed:d2:9e:c6:62:3a:de:f8:9c:d5:
        1b:a9:b6:43:78:25:1e:89:e7:e4:ea:92:be:0e:90:63:
        d1:11:af:51:3b:21:b9:f7:3e:62:b9:7a:95:1a:47:b6:
        1e:ea:3d:c8:c7:18:5c:24:4e:f7:a9:95:80:ec:76:a0:
        47:f4:f4:57:8b:a8:4c:6d:e7:76:77:60:44:30:98:9b:
        d6:19:5b:85:e1:0f:28:6f:88:2d:13:80:7e:5b:63:88:
        2f:74:97:54:ec:f1:29:22:0b:97:99:1f:3e:07:2f:f8:
        9f:34:62:e0:29:5d:a8:bb:c2:82:de:65:78:09:9e:b6
    Fingerprint (SHA-256):
        F3:F1:75:C7:E6:A1:F4:7F:67:6E:DC:55:4A:EA:D5:BA:CA:15:8F:F8:E0:C2:A3:C5:8B:6D:98:91:6A:2A:42:08
    Fingerprint (SHA1):
        62:4E:1F:37:B8:DD:3F:38:01:A6:B1:AB:22:8C:EE:2F:D4:F8:96:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4250: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123282 (0x310fdd52)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:41 2017
            Not After : Tue Aug 23 12:31:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:74:f0:48:a2:b6:a6:db:3f:39:04:22:67:62:9c:d8:
                    2a:56:8e:ec:68:16:8e:14:ac:f2:61:05:99:e9:7c:4c:
                    2b:b1:ee:4e:9a:03:9e:16:5e:94:b3:c7:33:2e:1e:d5:
                    42:e6:12:2e:a0:bb:29:e6:cd:9b:1d:c8:ae:2f:ac:b7:
                    f0:ee:1f:0d:a8:90:70:ef:9f:3b:38:8b:3e:f9:03:f6:
                    31:45:f7:cc:b2:66:7d:c7:3e:bd:7e:22:a9:85:8b:60:
                    11:ac:01:c1:d4:94:46:b5:6e:10:d8:98:34:5f:48:7c:
                    66:3e:d4:8d:dc:4d:9f:33:1d:e5:d6:1d:72:ed:4d:12:
                    11:d2:f8:1b:cd:4b:54:10:62:9a:38:80:3f:66:be:78:
                    08:3f:72:9a:08:9a:4e:a1:1e:e6:64:cc:f1:30:58:bb:
                    94:f4:54:61:45:6d:df:c7:cf:05:56:37:a2:a3:1b:af:
                    a4:54:3e:de:e5:a9:bb:20:69:1c:df:52:d7:4a:fd:b1:
                    64:b4:cc:6c:0b:cc:53:da:4b:44:f4:b0:e0:db:3d:f4:
                    e1:04:23:b2:39:d9:48:fc:3d:3c:db:de:4e:99:26:20:
                    73:1c:54:14:0e:6f:ef:84:17:e1:15:50:e0:3b:dd:bb:
                    95:78:4b:cf:26:f1:bd:c6:cb:95:98:32:34:e6:c3:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:c2:e1:6a:6b:77:b2:33:ff:73:94:b2:98:ea:59:36:
        9d:05:ab:f6:44:66:2e:08:86:8f:37:0c:9a:75:74:83:
        a4:3d:62:7b:e2:4e:3f:d4:45:81:5e:2a:f6:7d:9c:e3:
        d4:fc:61:37:8d:59:fc:44:35:8b:87:26:2a:1f:82:69:
        bd:23:85:32:e2:15:d5:06:66:10:08:e3:4f:7e:41:29:
        b0:70:5d:b7:29:51:ed:2f:0d:8d:b5:f9:45:c3:cc:b4:
        8a:d5:06:e8:57:99:65:97:6d:49:8a:64:0e:ef:70:f3:
        e7:1d:98:1f:4f:6f:61:6e:42:50:1c:01:92:d0:ee:52:
        d8:be:02:09:59:9f:1a:97:83:ed:83:71:f5:eb:e2:22:
        da:20:f3:4b:e3:a8:33:f5:70:7e:8d:5c:06:ac:94:fc:
        bd:78:ec:73:8a:d8:c4:1a:5f:f1:2c:26:77:72:ed:b4:
        1d:1c:5a:d8:ef:f2:0c:3c:d1:53:d8:a4:4b:26:2e:10:
        65:41:a2:76:4d:4b:09:0d:08:f1:55:1d:f9:fb:08:47:
        da:db:3e:39:37:5a:18:d6:da:7c:78:e3:f7:d2:09:44:
        0e:26:37:28:b0:45:90:f7:37:ac:63:ac:4b:e7:c7:d2:
        c9:28:5a:0e:47:d6:0e:00:4c:a0:55:a1:57:9c:16:52
    Fingerprint (SHA-256):
        98:5D:23:03:16:81:21:98:E7:91:AA:F1:45:4A:FD:9B:68:84:61:C3:29:17:75:CB:4A:5F:3C:2E:48:00:64:DB
    Fingerprint (SHA1):
        CC:E6:57:EB:99:1A:95:6D:62:91:70:22:2B:5D:99:23:42:1C:C5:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4251: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4252: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4253: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4254: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4255: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4256: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123287 (0x310fdd57)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:42 2017
            Not After : Tue Aug 23 12:31:42 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:d8:84:36:cc:cc:0b:55:77:5b:2c:31:6b:6e:95:f8:
                    03:cd:da:9c:21:78:4e:f9:0d:61:7c:f1:13:33:0a:d0:
                    2d:5a:99:96:ea:8c:ef:95:df:0b:d8:31:ad:35:c7:7d:
                    ce:d6:1e:14:c7:38:bd:55:03:26:6b:40:dd:6a:0f:56:
                    47:9d:76:5d:9a:1c:af:85:24:37:ba:15:d5:ab:7b:e8:
                    de:21:be:6c:48:38:ff:1b:0c:f2:e9:80:11:06:01:b9:
                    dd:d5:42:32:90:96:76:a8:87:cc:3d:13:d9:fb:9e:c1:
                    9e:09:5b:11:09:25:8e:05:13:1d:f3:af:d6:9a:c8:ec:
                    46:28:36:c8:ad:51:b4:1d:27:62:a6:9c:fc:b2:64:12:
                    14:0a:74:7f:c8:6e:2d:5c:7b:f6:be:f2:6d:dd:a5:ab:
                    77:05:7d:41:6c:26:1f:0a:f3:c0:7e:5d:d3:d7:72:a2:
                    12:be:85:4a:9e:85:7e:1c:a3:d1:61:3d:2e:22:b4:28:
                    0e:9f:a9:25:52:90:8a:c1:b5:2e:f2:00:e0:32:0a:e0:
                    71:4e:ff:79:66:44:df:10:53:81:5a:14:df:5f:b9:31:
                    b8:f6:99:3a:a4:0b:82:76:cc:d4:80:74:46:8a:80:07:
                    dd:4e:5a:53:58:22:56:e1:5a:10:9e:00:57:4a:28:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:5c:55:7b:8b:9f:01:01:0c:64:f1:30:1f:b9:c6:26:
        bd:7e:0f:53:15:bf:12:3f:42:a3:cc:f1:21:8b:11:4e:
        53:9c:e5:50:b7:67:be:1a:38:9f:75:18:eb:1b:e6:5b:
        65:92:eb:1b:9e:11:d2:37:00:e2:a3:93:4b:85:84:bc:
        e7:67:47:c3:55:58:a5:02:66:76:95:aa:40:27:32:12:
        50:da:9c:f1:2a:0d:eb:67:6a:6b:b3:c2:26:a8:c1:4c:
        27:60:8f:31:02:d7:bd:d1:9e:de:6b:a1:88:cb:9e:a0:
        c6:72:de:49:13:5c:ac:2a:03:d7:9b:a5:f3:e7:2e:c5:
        06:58:d7:a3:46:94:45:c3:fa:ac:56:30:a7:01:df:9d:
        e8:da:76:26:52:91:5f:8e:4a:e8:bb:5a:90:bd:89:fe:
        2c:16:2b:3e:65:05:f1:67:3d:a2:bb:2b:a0:9c:d2:23:
        22:73:cb:32:1e:f7:77:08:7d:3a:86:f6:98:7d:91:78:
        c9:b0:ac:ec:ea:b6:5e:6c:a9:4f:9e:56:6c:4d:6e:a3:
        7d:96:1c:3d:dd:21:01:dc:6d:b8:37:b0:12:7a:fd:0a:
        8c:dd:5e:a0:1b:2b:ca:78:3f:9d:c7:8f:db:dc:1a:6a:
        7a:80:4d:65:fe:8e:f9:a1:87:8a:a7:61:8d:6c:6d:54
    Fingerprint (SHA-256):
        FB:F1:0B:C3:A6:E3:D3:9F:36:05:C0:40:23:99:B1:F5:D1:EB:06:D1:7F:50:B2:1D:0B:D4:A4:0C:13:91:07:39
    Fingerprint (SHA1):
        61:1E:0E:44:2C:66:BB:09:81:EA:4A:65:5E:98:E4:B9:57:24:A1:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4257: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4258: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4259: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4260: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4261: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4262: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4263: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4264: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4265: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4266: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4267: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4268: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4269: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4270: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4271: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4272: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4273: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4274: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4275: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4276: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4277: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4278: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4279: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4280: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 22024 at Wed Aug 23 12:31:44 UTC 2017
kill -USR1 22024
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 22024 killed at Wed Aug 23 12:31:44 UTC 2017
TIMESTAMP chains END: Wed Aug 23 12:31:44 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed Aug 23 12:31:44 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed Aug 23 12:31:44 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4281: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed Aug 23 12:31:44 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed Aug 23 12:31:44 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4282: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4283: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4284: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4285: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4286: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4287: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed Aug 23 12:31:44 UTC 2017
TIMESTAMP ec END: Wed Aug 23 12:31:44 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed Aug 23 12:31:44 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4288: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4289: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4290: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4291: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4292: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4293: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4294: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4295: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4296: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4297: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4298: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4299: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4300: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4301: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4302: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4303: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4304: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (1 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (1 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (0 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (44 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (86 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (130 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (34 ms)
[----------] 1 test from Pkcs11RsaPssTest (34 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (0 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (0 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (165 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #4305: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4306: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #4307: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #4308: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #4309: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #4310: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #4311: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #4312: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #4313: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #4314: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #4315: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #4316: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #4317: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #4318: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #4319: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #4320: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #4321: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #4322: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #4323: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #4324: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #4325: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #4326: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Wed Aug 23 12:31:45 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed Aug 23 12:31:45 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4327: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4328: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4329: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4330: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4331: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4332: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4333: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4334: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4335: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4336: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4337: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4338: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4339: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4340: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4341: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (16 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (5 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (496 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (11 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (8 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (1 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (346 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (8 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (588 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (11 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (10 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (500 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (16 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (16 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (16 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (5 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (1651 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (16 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (4 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (818 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (4 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (34 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301c487ecaeebff715198bbb38f78361c1da99d29fb93f676890b09...
record new: [1184] 020000510301c487ecaeebff715198bbb38f78361c1da99d29fb93f676890b09...
server: Original packet: [1189] 16030104a0020000510301c487ecaeebff715198bbb38f78361c1da99d29fb93...
server: Filtered packet: [1189] 16030104a0020000510301c487ecaeebff715198bbb38f78361c1da99d29fb93...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a26445ec4aa2076b6c22cb64bb4cf07a20a314c7d9da2d6eb61d...
record new: [1184] 020000510301a26445ec4aa2076b6c22cb64bb4cf07a20a314c7d9da2d6eb61d...
server: Original packet: [1189] 16030104a0020000510301a26445ec4aa2076b6c22cb64bb4cf07a20a314c7d9...
server: Filtered packet: [1189] 16030104a0020000510301a26445ec4aa2076b6c22cb64bb4cf07a20a314c7d9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103014b8ab04aa07a665d6589bb9039b7a5953292855344ac54646e56...
record new: [1184] 0200005103014b8ab04aa07a665d6589bb9039b7a5953292855344ac54646e56...
server: Original packet: [1189] 16030104a00200005103014b8ab04aa07a665d6589bb9039b7a5953292855344...
server: Filtered packet: [1189] 16030104a00200005103014b8ab04aa07a665d6589bb9039b7a5953292855344...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030124f1f41b314e8033545adffeb88737a7c89f8093b3fcef747083...
record new: [1184] 02000051030124f1f41b314e8033545adffeb88737a7c89f8093b3fcef747083...
server: Original packet: [1189] 16030104a002000051030124f1f41b314e8033545adffeb88737a7c89f8093b3...
server: Filtered packet: [1189] 16030104a002000051030124f1f41b314e8033545adffeb88737a7c89f8093b3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b2a98d7f960165341d5820c2e130f6bb1fa02936dfb1c2a13a00...
record new: [1184] 020000510301b2a98d7f960165341d5820c2e130f6bb1fa02936dfb1c2a13a00...
server: Original packet: [1189] 16030104a0020000510301b2a98d7f960165341d5820c2e130f6bb1fa02936df...
server: Filtered packet: [1189] 16030104a0020000510301b2a98d7f960165341d5820c2e130f6bb1fa02936df...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a62e8ab1050bcff090a00e6675ccfc9afb242ac1a73f5792d2b0...
record new: [1184] 020000510301a62e8ab1050bcff090a00e6675ccfc9afb242ac1a73f5792d2b0...
server: Original packet: [1189] 16030104a0020000510301a62e8ab1050bcff090a00e6675ccfc9afb242ac1a7...
server: Filtered packet: [1189] 16030104a0020000510301a62e8ab1050bcff090a00e6675ccfc9afb242ac1a7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d56ea3ab1bfa08f1549ef40b52aa48f1eafa72e0e8387a67821b...
record new: [1184] 020000510301d56ea3ab1bfa08f1549ef40b52aa48f1eafa72e0e8387a67821b...
server: Original packet: [1189] 16030104a0020000510301d56ea3ab1bfa08f1549ef40b52aa48f1eafa72e0e8...
server: Filtered packet: [1189] 16030104a0020000510301d56ea3ab1bfa08f1549ef40b52aa48f1eafa72e0e8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a6df3027a53c29f86ea8db238a12b1236d25a81d3d444008599a...
record new: [1184] 020000510301a6df3027a53c29f86ea8db238a12b1236d25a81d3d444008599a...
server: Original packet: [1189] 16030104a0020000510301a6df3027a53c29f86ea8db238a12b1236d25a81d3d...
server: Filtered packet: [1189] 16030104a0020000510301a6df3027a53c29f86ea8db238a12b1236d25a81d3d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301007cf8770cca8d30bc7cf5016ceb61da4c2ec3969d97db440bd7...
record new: [1185] 020000510301007cf8770cca8d30bc7cf5016ceb61da4c2ec3969d97db440bd7...
server: Original packet: [1189] 16030104a0020000510301007cf8770cca8d30bc7cf5016ceb61da4c2ec3969d...
server: Filtered packet: [1190] 16030104a1020000510301007cf8770cca8d30bc7cf5016ceb61da4c2ec3969d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301283784c61e6b45ce868a2d059d5b626485130f00dada92e21f02...
record new: [1185] 020000510301283784c61e6b45ce868a2d059d5b626485130f00dada92e21f02...
server: Original packet: [1189] 16030104a0020000510301283784c61e6b45ce868a2d059d5b626485130f00da...
server: Filtered packet: [1190] 16030104a1020000510301283784c61e6b45ce868a2d059d5b626485130f00da...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301bfcf5db31b8497299b4b29307465cd96654fd7fcba734dca9930...
record new: [1185] 020000510301bfcf5db31b8497299b4b29307465cd96654fd7fcba734dca9930...
server: Original packet: [1189] 16030104a0020000510301bfcf5db31b8497299b4b29307465cd96654fd7fcba...
server: Filtered packet: [1190] 16030104a1020000510301bfcf5db31b8497299b4b29307465cd96654fd7fcba...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301223e85d649257add26ecb5677eba93598947d8a7627402aba825...
record new: [1185] 020000510301223e85d649257add26ecb5677eba93598947d8a7627402aba825...
server: Original packet: [1189] 16030104a0020000510301223e85d649257add26ecb5677eba93598947d8a762...
server: Filtered packet: [1190] 16030104a1020000510301223e85d649257add26ecb5677eba93598947d8a762...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103022bca4626d6f83c4bf45c49b7efe8351cea65a528c4a54ddf0636...
record new: [1184] 0200005103022bca4626d6f83c4bf45c49b7efe8351cea65a528c4a54ddf0636...
server: Original packet: [1189] 16030204a00200005103022bca4626d6f83c4bf45c49b7efe8351cea65a528c4...
server: Filtered packet: [1189] 16030204a00200005103022bca4626d6f83c4bf45c49b7efe8351cea65a528c4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103020f652b8e3712283ee52c12f5bc391ba1eab211ac5b1f990188c4...
record new: [1184] 0200005103020f652b8e3712283ee52c12f5bc391ba1eab211ac5b1f990188c4...
server: Original packet: [1189] 16030204a00200005103020f652b8e3712283ee52c12f5bc391ba1eab211ac5b...
server: Filtered packet: [1189] 16030204a00200005103020f652b8e3712283ee52c12f5bc391ba1eab211ac5b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302534c381831a222ed5f52404b15adbd9230c65a0880b8e3547b88...
record new: [1184] 020000510302534c381831a222ed5f52404b15adbd9230c65a0880b8e3547b88...
server: Original packet: [1189] 16030204a0020000510302534c381831a222ed5f52404b15adbd9230c65a0880...
server: Filtered packet: [1189] 16030204a0020000510302534c381831a222ed5f52404b15adbd9230c65a0880...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103029149bd37994a638c1f230b38948b6d100381cd67188b01db3fe2...
record new: [1184] 0200005103029149bd37994a638c1f230b38948b6d100381cd67188b01db3fe2...
server: Original packet: [1189] 16030204a00200005103029149bd37994a638c1f230b38948b6d100381cd6718...
server: Filtered packet: [1189] 16030204a00200005103029149bd37994a638c1f230b38948b6d100381cd6718...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302291aeb0cb7559ea3cda4634c5ab44af45379c8e732106b1a6aa7...
record new: [1184] 020000510302291aeb0cb7559ea3cda4634c5ab44af45379c8e732106b1a6aa7...
server: Original packet: [1189] 16030204a0020000510302291aeb0cb7559ea3cda4634c5ab44af45379c8e732...
server: Filtered packet: [1189] 16030204a0020000510302291aeb0cb7559ea3cda4634c5ab44af45379c8e732...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103027b066979f3ba87d3ee1d5a7b225527ccc77f130a3e7030324764...
record new: [1184] 0200005103027b066979f3ba87d3ee1d5a7b225527ccc77f130a3e7030324764...
server: Original packet: [1189] 16030204a00200005103027b066979f3ba87d3ee1d5a7b225527ccc77f130a3e...
server: Filtered packet: [1189] 16030204a00200005103027b066979f3ba87d3ee1d5a7b225527ccc77f130a3e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030244494279f1b629c50c7dae3b8bb5cab55f17be34ec7a8acc5884...
record new: [1184] 02000051030244494279f1b629c50c7dae3b8bb5cab55f17be34ec7a8acc5884...
server: Original packet: [1189] 16030204a002000051030244494279f1b629c50c7dae3b8bb5cab55f17be34ec...
server: Filtered packet: [1189] 16030204a002000051030244494279f1b629c50c7dae3b8bb5cab55f17be34ec...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103029f333ae938ce474ae9fab08e0ec53bf37e51478eb7aa96db791c...
record new: [1184] 0200005103029f333ae938ce474ae9fab08e0ec53bf37e51478eb7aa96db791c...
server: Original packet: [1189] 16030204a00200005103029f333ae938ce474ae9fab08e0ec53bf37e51478eb7...
server: Filtered packet: [1189] 16030204a00200005103029f333ae938ce474ae9fab08e0ec53bf37e51478eb7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302d94f63acb4519a249fcd8db688277d364695d2a8a97c4be20e91...
record new: [1185] 020000510302d94f63acb4519a249fcd8db688277d364695d2a8a97c4be20e91...
server: Original packet: [1189] 16030204a0020000510302d94f63acb4519a249fcd8db688277d364695d2a8a9...
server: Filtered packet: [1190] 16030204a1020000510302d94f63acb4519a249fcd8db688277d364695d2a8a9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103027a25841de28b45693cab9865c509afe6bf0dcd231cde5e902616...
record new: [1185] 0200005103027a25841de28b45693cab9865c509afe6bf0dcd231cde5e902616...
server: Original packet: [1189] 16030204a00200005103027a25841de28b45693cab9865c509afe6bf0dcd231c...
server: Filtered packet: [1190] 16030204a10200005103027a25841de28b45693cab9865c509afe6bf0dcd231c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302f31386e4264c68e5786b4f7868fcafe92d5db325c003e12b5ec4...
record new: [1185] 020000510302f31386e4264c68e5786b4f7868fcafe92d5db325c003e12b5ec4...
server: Original packet: [1189] 16030204a0020000510302f31386e4264c68e5786b4f7868fcafe92d5db325c0...
server: Filtered packet: [1190] 16030204a1020000510302f31386e4264c68e5786b4f7868fcafe92d5db325c0...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302bc9107e8c2a1be7e157b9ba36e41863e582f0fea2670355c983b...
record new: [1185] 020000510302bc9107e8c2a1be7e157b9ba36e41863e582f0fea2670355c983b...
server: Original packet: [1189] 16030204a0020000510302bc9107e8c2a1be7e157b9ba36e41863e582f0fea26...
server: Filtered packet: [1190] 16030204a1020000510302bc9107e8c2a1be7e157b9ba36e41863e582f0fea26...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103030a16fc49dd8279631c60e187e8d44dc8eb32ec1beb8f195f4125...
record new: [1186] 0200005103030a16fc49dd8279631c60e187e8d44dc8eb32ec1beb8f195f4125...
server: Original packet: [1191] 16030304a20200005103030a16fc49dd8279631c60e187e8d44dc8eb32ec1beb...
server: Filtered packet: [1191] 16030304a20200005103030a16fc49dd8279631c60e187e8d44dc8eb32ec1beb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303d306fb99ad5c5848dedee4f88141265eace34ac37168803b41d0...
record new: [1186] 020000510303d306fb99ad5c5848dedee4f88141265eace34ac37168803b41d0...
server: Original packet: [1191] 16030304a2020000510303d306fb99ad5c5848dedee4f88141265eace34ac371...
server: Filtered packet: [1191] 16030304a2020000510303d306fb99ad5c5848dedee4f88141265eace34ac371...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303506a4b9534175a00e9498df4ae9c66f1b2920858991ff2df4456...
record new: [1186] 020000510303506a4b9534175a00e9498df4ae9c66f1b2920858991ff2df4456...
server: Original packet: [1191] 16030304a2020000510303506a4b9534175a00e9498df4ae9c66f1b292085899...
server: Filtered packet: [1191] 16030304a2020000510303506a4b9534175a00e9498df4ae9c66f1b292085899...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303e64ae84ad4eae8ad972bbb51911061dec5f5238783d7149c03e2...
record new: [1186] 020000510303e64ae84ad4eae8ad972bbb51911061dec5f5238783d7149c03e2...
server: Original packet: [1191] 16030304a2020000510303e64ae84ad4eae8ad972bbb51911061dec5f5238783...
server: Filtered packet: [1191] 16030304a2020000510303e64ae84ad4eae8ad972bbb51911061dec5f5238783...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303a32a27522cdfdcca5267cf1f5a02e80b9af9554fd65718d4d4f2...
record new: [1186] 020000510303a32a27522cdfdcca5267cf1f5a02e80b9af9554fd65718d4d4f2...
server: Original packet: [1191] 16030304a2020000510303a32a27522cdfdcca5267cf1f5a02e80b9af9554fd6...
server: Filtered packet: [1191] 16030304a2020000510303a32a27522cdfdcca5267cf1f5a02e80b9af9554fd6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303bc8ef85a209085851bbafeb2986bcb10faf6e1d2d77e7570e883...
record new: [1186] 020000510303bc8ef85a209085851bbafeb2986bcb10faf6e1d2d77e7570e883...
server: Original packet: [1191] 16030304a2020000510303bc8ef85a209085851bbafeb2986bcb10faf6e1d2d7...
server: Filtered packet: [1191] 16030304a2020000510303bc8ef85a209085851bbafeb2986bcb10faf6e1d2d7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303b75f970bcdb19f75634d217cd565d202febc6b0d982bf4df10f3...
record new: [1186] 020000510303b75f970bcdb19f75634d217cd565d202febc6b0d982bf4df10f3...
server: Original packet: [1191] 16030304a2020000510303b75f970bcdb19f75634d217cd565d202febc6b0d98...
server: Filtered packet: [1191] 16030304a2020000510303b75f970bcdb19f75634d217cd565d202febc6b0d98...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303d0b43197c62677bc17f63de9e878c2f53c9c60ecab2cd5600e7a...
record new: [1186] 020000510303d0b43197c62677bc17f63de9e878c2f53c9c60ecab2cd5600e7a...
server: Original packet: [1191] 16030304a2020000510303d0b43197c62677bc17f63de9e878c2f53c9c60ecab...
server: Filtered packet: [1191] 16030304a2020000510303d0b43197c62677bc17f63de9e878c2f53c9c60ecab...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103037d460bfef1772abc4303b028f2967f8dab38543f65ec160aceaa...
record new: [1187] 0200005103037d460bfef1772abc4303b028f2967f8dab38543f65ec160aceaa...
server: Original packet: [1191] 16030304a20200005103037d460bfef1772abc4303b028f2967f8dab38543f65...
server: Filtered packet: [1192] 16030304a30200005103037d460bfef1772abc4303b028f2967f8dab38543f65...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f48e57c5c8e4506a2d6e8dd613023f3e371b86b168b06c1ef670...
record new: [1187] 020000510303f48e57c5c8e4506a2d6e8dd613023f3e371b86b168b06c1ef670...
server: Original packet: [1191] 16030304a2020000510303f48e57c5c8e4506a2d6e8dd613023f3e371b86b168...
server: Filtered packet: [1192] 16030304a3020000510303f48e57c5c8e4506a2d6e8dd613023f3e371b86b168...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303ab37f2eaede08adc1a3985b46034ae402d845327478e146c8d48...
record new: [1187] 020000510303ab37f2eaede08adc1a3985b46034ae402d845327478e146c8d48...
server: Original packet: [1191] 16030304a2020000510303ab37f2eaede08adc1a3985b46034ae402d84532747...
server: Filtered packet: [1192] 16030304a3020000510303ab37f2eaede08adc1a3985b46034ae402d84532747...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103037ba822dfb862531990c723571ff1bc009dc4a40644655cdd587c...
record new: [1187] 0200005103037ba822dfb862531990c723571ff1bc009dc4a40644655cdd587c...
server: Original packet: [1191] 16030304a20200005103037ba822dfb862531990c723571ff1bc009dc4a40644...
server: Filtered packet: [1192] 16030304a30200005103037ba822dfb862531990c723571ff1bc009dc4a40644...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000537216e2074d1d705d80498b538bbab35b4cf0984e50b31d8f1dcece526...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000537216e2074d1d705d80498b538bbab35b4cf0984e50b31d8f1...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201000537216e2074d1d705d80498b538bbab35b4cf0984...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e06a7c2ab7ab60966316c97abefc87c0f26071f9870d54386ac715bdd09e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e06a7c2ab7ab60966316c97abefc87c0f26071f9870d54386ac7...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100e06a7c2ab7ab60966316c97abefc87c0f26071f987...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007e9415413c9629c18952b7829105691134f027f5fa900027b08f3a16dee4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201007e9415413c9629c18952b7829105691134f027f5fa900027b08f...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201007e9415413c9629c18952b7829105691134f027f5fa...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100041adc5fa7729a80396012de22f5821b6882216e6bc69866180cc656b226...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100041adc5fa7729a80396012de22f5821b6882216e6bc69866180c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100041adc5fa7729a80396012de22f5821b6882216e6b...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004cf7ed9774c344bbfab37063703b01665c13e7345dab503212df0e2cfe13...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201004cf7ed9774c344bbfab37063703b01665c13e7345dab503212df...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 16030101061000010201004cf7ed9774c344bbfab37063703b01665c13e7345d...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100532ba37678192c6f388cb8883dd7cb6a36b15df28c4ca03464a39e6af4d9...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100532ba37678192c6f388cb8883dd7cb6a36b15df28c4ca03464a3...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100532ba37678192c6f388cb8883dd7cb6a36b15df28c...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100eba79f811816577c91d644aebaed87cda656701f8de91c12887cbe0dd934...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100eba79f811816577c91d644aebaed87cda656701f8de91c12887c...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100eba79f811816577c91d644aebaed87cda656701f8d...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009e82b87d9e11df740ce3b87caa5d613307668cf305b86c53310a1886148e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201009e82b87d9e11df740ce3b87caa5d613307668cf305b86c53310a...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 16030101061000010201009e82b87d9e11df740ce3b87caa5d613307668cf305...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f947c152a90a697cbe3ddc9d05604f1692ce665b474c9b6530154dc55e27...
handshake new: [259] 010101f947c152a90a697cbe3ddc9d05604f1692ce665b474c9b6530154dc55e...
record old: [262] 100001020100f947c152a90a697cbe3ddc9d05604f1692ce665b474c9b653015...
record new: [263] 10000103010101f947c152a90a697cbe3ddc9d05604f1692ce665b474c9b6530...
client: Original packet: [326] 1603010106100001020100f947c152a90a697cbe3ddc9d05604f1692ce665b47...
client: Filtered packet: [327] 160301010710000103010101f947c152a90a697cbe3ddc9d05604f1692ce665b...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001b0047c1460afbb25ef3e19e8b49b415d2da9a1c7a1f7982852c8e8bdea1...
handshake new: [259] 0101011b0047c1460afbb25ef3e19e8b49b415d2da9a1c7a1f7982852c8e8bde...
record old: [262] 1000010201001b0047c1460afbb25ef3e19e8b49b415d2da9a1c7a1f7982852c...
record new: [263] 100001030101011b0047c1460afbb25ef3e19e8b49b415d2da9a1c7a1f798285...
client: Original packet: [326] 16030101061000010201001b0047c1460afbb25ef3e19e8b49b415d2da9a1c7a...
client: Filtered packet: [327] 1603010107100001030101011b0047c1460afbb25ef3e19e8b49b415d2da9a1c...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b0e42f635e7634e7d34f298715e9ef8e218c49f09665909f960b47c1dc3b...
handshake new: [259] 010100b0e42f635e7634e7d34f298715e9ef8e218c49f09665909f960b47c1dc...
record old: [262] 100001020100b0e42f635e7634e7d34f298715e9ef8e218c49f09665909f960b...
record new: [263] 10000103010100b0e42f635e7634e7d34f298715e9ef8e218c49f09665909f96...
client: Original packet: [326] 1603010106100001020100b0e42f635e7634e7d34f298715e9ef8e218c49f096...
client: Filtered packet: [327] 160301010710000103010100b0e42f635e7634e7d34f298715e9ef8e218c49f0...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100da5b10b46e1632d2a14a9c84e13b5819cca93a67953105b538f49bdc8167...
handshake new: [259] 010100da5b10b46e1632d2a14a9c84e13b5819cca93a67953105b538f49bdc81...
record old: [262] 100001020100da5b10b46e1632d2a14a9c84e13b5819cca93a67953105b538f4...
record new: [263] 10000103010100da5b10b46e1632d2a14a9c84e13b5819cca93a67953105b538...
client: Original packet: [326] 1603010106100001020100da5b10b46e1632d2a14a9c84e13b5819cca93a6795...
client: Filtered packet: [327] 160301010710000103010100da5b10b46e1632d2a14a9c84e13b5819cca93a67...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003b6bf9275d1e000a1551ed90164cbe743d479c9a086af7afbe2eebb080a8...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201003b6bf9275d1e000a1551ed90164cbe743d479c9a086af7afbe2e...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201003b6bf9275d1e000a1551ed90164cbe743d479c9a08...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008b4aa6240d5ffe03dece8c78e4372faebc84f4622f5839f11aa4defdbe75...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201008b4aa6240d5ffe03dece8c78e4372faebc84f4622f5839f11aa4...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201008b4aa6240d5ffe03dece8c78e4372faebc84f4622f...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010061f2cdd85af5355d6e04c61446cd1a20f7c4a217f8ae8cdbfef22f2a9740...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010061f2cdd85af5355d6e04c61446cd1a20f7c4a217f8ae8cdbfef2...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010061f2cdd85af5355d6e04c61446cd1a20f7c4a217f8...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000ce9a23c64a07775efab9ae6df399c5e0342c15c5ad222344bc524db0769...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000ce9a23c64a07775efab9ae6df399c5e0342c15c5ad222344bc5...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201000ce9a23c64a07775efab9ae6df399c5e0342c15c5a...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c666a025f945894e5673f42aee0cde647a0cc0d4f4d58171dd96dbd4af76...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100c666a025f945894e5673f42aee0cde647a0cc0d4f4d58171dd96...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100c666a025f945894e5673f42aee0cde647a0cc0d4f4...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d8f3eee16366ab566341ef5b16b3e16db6778b49d7c38408bb2658adccbe...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100d8f3eee16366ab566341ef5b16b3e16db6778b49d7c38408bb26...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100d8f3eee16366ab566341ef5b16b3e16db6778b49d7...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004a40cb9b04a26da1efd2a49ec7461d5cb7aab05e8e8ae42ccd1ecb77c511...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201004a40cb9b04a26da1efd2a49ec7461d5cb7aab05e8e8ae42ccd1e...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 16030201061000010201004a40cb9b04a26da1efd2a49ec7461d5cb7aab05e8e...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002554da57941658ca7356b1427ca842849c7550053f89498c4fc8366f2490...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201002554da57941658ca7356b1427ca842849c7550053f89498c4fc8...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 16030201061000010201002554da57941658ca7356b1427ca842849c7550053f...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007a4372bb0a75591c00c520488d1d08642df4fc5ccc8f5f1b4cf1e14680b2...
handshake new: [259] 0101017a4372bb0a75591c00c520488d1d08642df4fc5ccc8f5f1b4cf1e14680...
record old: [262] 1000010201007a4372bb0a75591c00c520488d1d08642df4fc5ccc8f5f1b4cf1...
record new: [263] 100001030101017a4372bb0a75591c00c520488d1d08642df4fc5ccc8f5f1b4c...
client: Original packet: [342] 16030201061000010201007a4372bb0a75591c00c520488d1d08642df4fc5ccc...
client: Filtered packet: [343] 1603020107100001030101017a4372bb0a75591c00c520488d1d08642df4fc5c...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003200cedb34f3eba4c047762ef61c83faf99d4555b5ad433fe7a96404d814...
handshake new: [259] 0101013200cedb34f3eba4c047762ef61c83faf99d4555b5ad433fe7a96404d8...
record old: [262] 1000010201003200cedb34f3eba4c047762ef61c83faf99d4555b5ad433fe7a9...
record new: [263] 100001030101013200cedb34f3eba4c047762ef61c83faf99d4555b5ad433fe7...
client: Original packet: [342] 16030201061000010201003200cedb34f3eba4c047762ef61c83faf99d4555b5...
client: Filtered packet: [343] 1603020107100001030101013200cedb34f3eba4c047762ef61c83faf99d4555...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c236946cabf11695e8e8b2eccac8baf320dfb2b895fab97ef9b3baa81d9e...
handshake new: [259] 010100c236946cabf11695e8e8b2eccac8baf320dfb2b895fab97ef9b3baa81d...
record old: [262] 100001020100c236946cabf11695e8e8b2eccac8baf320dfb2b895fab97ef9b3...
record new: [263] 10000103010100c236946cabf11695e8e8b2eccac8baf320dfb2b895fab97ef9...
client: Original packet: [342] 1603020106100001020100c236946cabf11695e8e8b2eccac8baf320dfb2b895...
client: Filtered packet: [343] 160302010710000103010100c236946cabf11695e8e8b2eccac8baf320dfb2b8...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001373f58447704cd23f6ef7c7fea93ae216e0a1541f4ceed638f43244d78f...
handshake new: [259] 0101001373f58447704cd23f6ef7c7fea93ae216e0a1541f4ceed638f43244d7...
record old: [262] 1000010201001373f58447704cd23f6ef7c7fea93ae216e0a1541f4ceed638f4...
record new: [263] 100001030101001373f58447704cd23f6ef7c7fea93ae216e0a1541f4ceed638...
client: Original packet: [342] 16030201061000010201001373f58447704cd23f6ef7c7fea93ae216e0a1541f...
client: Filtered packet: [343] 1603020107100001030101001373f58447704cd23f6ef7c7fea93ae216e0a154...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009dc19d431adee0631c32c82d1f182144d7fc32ce47db6d468f3de68eed05...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201009dc19d431adee0631c32c82d1f182144d7fc32ce47db6d468f3d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201009dc19d431adee0631c32c82d1f182144d7fc32ce47...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002e90ba5d004dc6b4b10ac16ac5d35c85381984b08c239c7bd6d6667c952a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201002e90ba5d004dc6b4b10ac16ac5d35c85381984b08c239c7bd6d6...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201002e90ba5d004dc6b4b10ac16ac5d35c85381984b08c...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010024bb6653ff3c7aa72e97701e1f10d0a21910ce94aa57fbbeb5a3ee4029f4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010024bb6653ff3c7aa72e97701e1f10d0a21910ce94aa57fbbeb5a3...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010024bb6653ff3c7aa72e97701e1f10d0a21910ce94aa...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006c490a9e9c2832ce9df343157bebc5f97ba997538c692fe3048c452f44ad...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201006c490a9e9c2832ce9df343157bebc5f97ba997538c692fe3048c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201006c490a9e9c2832ce9df343157bebc5f97ba997538c...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004b5faada475823d5505be8cfb68ec318f8725d0f9dbfa7e2c964c3b6fb15...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201004b5faada475823d5505be8cfb68ec318f8725d0f9dbfa7e2c964...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201004b5faada475823d5505be8cfb68ec318f8725d0f9d...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001dd7d673aec6bb715ba251e0e56f837d5703e6c7f65885ee64225d560f04...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201001dd7d673aec6bb715ba251e0e56f837d5703e6c7f65885ee6422...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201001dd7d673aec6bb715ba251e0e56f837d5703e6c7f6...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a66eadf84ba8807d45214b964462bf927a5c1ecaef0cff8d332f51398cb7...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100a66eadf84ba8807d45214b964462bf927a5c1ecaef0cff8d332f...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100a66eadf84ba8807d45214b964462bf927a5c1ecaef...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003af76121e3f3464d8902eb6c35f186c865d889aa629fbd2071f138cd80b8...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201003af76121e3f3464d8902eb6c35f186c865d889aa629fbd2071f1...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 16030301061000010201003af76121e3f3464d8902eb6c35f186c865d889aa62...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100da58f84618e76dff629a0b5690a5da3035d071dd494806a048cedc7cae00...
handshake new: [259] 010101da58f84618e76dff629a0b5690a5da3035d071dd494806a048cedc7cae...
record old: [262] 100001020100da58f84618e76dff629a0b5690a5da3035d071dd494806a048ce...
record new: [263] 10000103010101da58f84618e76dff629a0b5690a5da3035d071dd494806a048...
client: Original packet: [318] 1603030106100001020100da58f84618e76dff629a0b5690a5da3035d071dd49...
client: Filtered packet: [319] 160303010710000103010101da58f84618e76dff629a0b5690a5da3035d071dd...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c39faff51e64984328c623bf96f748aa0c93e02e6c99ad5e4f83e0b0b9df...
handshake new: [259] 010101c39faff51e64984328c623bf96f748aa0c93e02e6c99ad5e4f83e0b0b9...
record old: [262] 100001020100c39faff51e64984328c623bf96f748aa0c93e02e6c99ad5e4f83...
record new: [263] 10000103010101c39faff51e64984328c623bf96f748aa0c93e02e6c99ad5e4f...
client: Original packet: [318] 1603030106100001020100c39faff51e64984328c623bf96f748aa0c93e02e6c...
client: Filtered packet: [319] 160303010710000103010101c39faff51e64984328c623bf96f748aa0c93e02e...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010044e83648ce0513e60f3f9aa3cb50d02c6f7149b2fd96678ea72e1bc7f00c...
handshake new: [259] 01010044e83648ce0513e60f3f9aa3cb50d02c6f7149b2fd96678ea72e1bc7f0...
record old: [262] 10000102010044e83648ce0513e60f3f9aa3cb50d02c6f7149b2fd96678ea72e...
record new: [263] 1000010301010044e83648ce0513e60f3f9aa3cb50d02c6f7149b2fd96678ea7...
client: Original packet: [318] 160303010610000102010044e83648ce0513e60f3f9aa3cb50d02c6f7149b2fd...
client: Filtered packet: [319] 16030301071000010301010044e83648ce0513e60f3f9aa3cb50d02c6f7149b2...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009ec730fd4a96f97f0814f324296ebce3f750549ad7f6f896a76ac9bec157...
handshake new: [259] 0101009ec730fd4a96f97f0814f324296ebce3f750549ad7f6f896a76ac9bec1...
record old: [262] 1000010201009ec730fd4a96f97f0814f324296ebce3f750549ad7f6f896a76a...
record new: [263] 100001030101009ec730fd4a96f97f0814f324296ebce3f750549ad7f6f896a7...
client: Original packet: [318] 16030301061000010201009ec730fd4a96f97f0814f324296ebce3f750549ad7...
client: Filtered packet: [319] 1603030107100001030101009ec730fd4a96f97f0814f324296ebce3f750549a...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (8 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (416 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7da1e0127a...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7da1e0127a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff83674f298e...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff83674f298e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5da9e00ef6...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5da9e00ef6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4fde508f5b...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4fde508f5b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff9a69ef84a8...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff9a69ef84a8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefffde57c95d0...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051fefffde57c95d0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7eed0387dc...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7eed0387dc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff2626d6bb15...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff2626d6bb15...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff56eeb398c6...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff56eeb398c6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0f08ad5440...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff0f08ad5440...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8cc6054879...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff8cc6054879...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffac9178431e...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffac9178431e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9eb9b69d34...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9eb9b69d34...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2204a1cc01...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2204a1cc01...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2dd8b584a7...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2dd8b584a7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd65065e04c7...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd65065e04c7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd03c791780a...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd03c791780a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd442c5a453f...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd442c5a453f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd41f1e24e7...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd41f1e24e7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0c08d020f7...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0c08d020f7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc2f1cf246c...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdc2f1cf246c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd755a8cd630...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd755a8cd630...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd034b648b35...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd034b648b35...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd427b9b26f5...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd427b9b26f5...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002b936a7dbfedc242917a87c20d724cc895a360e30c370f6655ca6e6869a5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201002b936a7dbfedc242917a87c20d724cc895a3...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201002b936a7dbf...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001bcefb6dd580e0fcf344db71e4be52bf3b4dd518cc8ceea359102be656ab...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201001bcefb6dd580e0fcf344db71e4be52bf3b4d...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201001bcefb6dd5...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010047e6fc619201bb3741c86f25d4085d0dfb906cab9f6f6735b33910061acc...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010047e6fc619201bb3741c86f25d4085d0dfb90...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010047e6fc6192...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000a3b660a9646563f50e7c60291e54671a35461a032f2490f1ec54d970910...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201000a3b660a9646563f50e7c60291e54671a354...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201000a3b660a96...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e08d927acd76829b775e4e8212c8220a94591ef416721bd8568ff5634137...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100e08d927acd76829b775e4e8212c8220a9459...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100e08d927acd...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bfab2a18691518cc4879f1318c7b9b6f97d9a1923aea3a286e10461bc3ee...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100bfab2a18691518cc4879f1318c7b9b6f97d9...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100bfab2a1869...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010038cd145f635a30ba2122a4430f0f2df2d2cd85bc8f5b0cfadf9c0bcaf132...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 100001020001000000000102010038cd145f635a30ba2122a4430f0f2df2d2cd...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010038cd145f63...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a7c500ed285bb9a7e80b34ef59daef73aee8ec14c8bf8d467e0561eca19c...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100a7c500ed285bb9a7e80b34ef59daef73aee8...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100a7c500ed28...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010016c391ca02acd3785228e7366a4b1488344ceba6a3d60b14c7b098f0dbbc...
handshake new: [259] 01010116c391ca02acd3785228e7366a4b1488344ceba6a3d60b14c7b098f0db...
record old: [270] 100001020001000000000102010016c391ca02acd3785228e7366a4b1488344c...
record new: [271] 10000103000100000000010301010116c391ca02acd3785228e7366a4b148834...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010016c391ca02...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010116c391ca...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010006666f50044cff4e421a53f5e394df3a0f9f0f6be5330ad3a0c3d690ec0a...
handshake new: [259] 01010106666f50044cff4e421a53f5e394df3a0f9f0f6be5330ad3a0c3d690ec...
record old: [270] 100001020001000000000102010006666f50044cff4e421a53f5e394df3a0f9f...
record new: [271] 10000103000100000000010301010106666f50044cff4e421a53f5e394df3a0f...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010006666f5004...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010106666f50...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005242071de964db2f8bfbda1c635f6ff3aaed6293af4e8e689f0fbd829f5b...
handshake new: [259] 0101005242071de964db2f8bfbda1c635f6ff3aaed6293af4e8e689f0fbd829f...
record old: [270] 10000102000100000000010201005242071de964db2f8bfbda1c635f6ff3aaed...
record new: [271] 1000010300010000000001030101005242071de964db2f8bfbda1c635f6ff3aa...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201005242071de9...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101005242071d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100326284c5d8a594b39b3eb7f31707f296b0ac169ebb0a63b1906007044956...
handshake new: [259] 010100326284c5d8a594b39b3eb7f31707f296b0ac169ebb0a63b19060070449...
record old: [270] 1000010200010000000001020100326284c5d8a594b39b3eb7f31707f296b0ac...
record new: [271] 100001030001000000000103010100326284c5d8a594b39b3eb7f31707f296b0...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100326284c5d8...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100326284c5...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009aea421d08334391051cc50354b7cde30ff91ccbedcf325fcef9b0ded14c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201009aea421d08334391051cc50354b7cde30ff9...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201009aea421d08...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010052d45bedd2dbc7888576ea2efc6d5f0878cd669c3f158db57a7575b72a8c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010052d45bedd2dbc7888576ea2efc6d5f0878cd...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010052d45bedd2...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100706b42a33cf9edb2203fd86d83b30c3deaf8ce5122dda6406b26078be8e9...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100706b42a33cf9edb2203fd86d83b30c3deaf8...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100706b42a33c...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e78ab4ae59d0f5235f05b2aa6fbc154c369fbfd955c513935d66bd7d167b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100e78ab4ae59d0f5235f05b2aa6fbc154c369f...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100e78ab4ae59...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008f9e765ee855cdf5f72acf6a59a97f12d6476d5c15313377ebf08266d176...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201008f9e765ee855cdf5f72acf6a59a97f12d647...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201008f9e765ee8...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a6320c2e5a3ffaed094cd1a960a761d48d7e4b88bd44a43f660fb195b2d7...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100a6320c2e5a3ffaed094cd1a960a761d48d7e...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100a6320c2e5a...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100288b81cccdb739bd332535826fcf4240565da303487d15c7dd691b8edef6...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100288b81cccdb739bd332535826fcf4240565d...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100288b81cccd...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003aaab86c4d7257e5fe246246c69cb05f7ec4987c21db36d9ef2ebad9727c...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201003aaab86c4d7257e5fe246246c69cb05f7ec4...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201003aaab86c4d...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ad16136dfa4e36c6b4fce64fe8f26fd77ae0fef20915f949384ad51e1c1a...
handshake new: [259] 010101ad16136dfa4e36c6b4fce64fe8f26fd77ae0fef20915f949384ad51e1c...
record old: [270] 1000010200010000000001020100ad16136dfa4e36c6b4fce64fe8f26fd77ae0...
record new: [271] 100001030001000000000103010101ad16136dfa4e36c6b4fce64fe8f26fd77a...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ad16136dfa...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101ad16136d...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010033ab9631cb4f0a037ad7e08d6430f49674287b2d2b18336bcd7d3dd439de...
handshake new: [259] 01010133ab9631cb4f0a037ad7e08d6430f49674287b2d2b18336bcd7d3dd439...
record old: [270] 100001020001000000000102010033ab9631cb4f0a037ad7e08d6430f4967428...
record new: [271] 10000103000100000000010301010133ab9631cb4f0a037ad7e08d6430f49674...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010033ab9631cb...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010133ab9631...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001c39fd7024141a42a77922a92f9a1247e107a62d197ce59367b14b9c49bf...
handshake new: [259] 0101001c39fd7024141a42a77922a92f9a1247e107a62d197ce59367b14b9c49...
record old: [270] 10000102000100000000010201001c39fd7024141a42a77922a92f9a1247e107...
record new: [271] 1000010300010000000001030101001c39fd7024141a42a77922a92f9a1247e1...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201001c39fd7024...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101001c39fd70...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010097c9016eb7a47b169c6c0c847ebf64c4c99c738dc6152fa6f7f8e4b83bd2...
handshake new: [259] 01010097c9016eb7a47b169c6c0c847ebf64c4c99c738dc6152fa6f7f8e4b83b...
record old: [270] 100001020001000000000102010097c9016eb7a47b169c6c0c847ebf64c4c99c...
record new: [271] 10000103000100000000010301010097c9016eb7a47b169c6c0c847ebf64c4c9...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010097c9016eb7...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010097c9016e...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (8 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (277 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (4 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (5 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (9 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (16 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (7 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (188 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (2 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103014699534c8d32397d4a210a561a05b629c3e42b218ad969dd9ef0...
record new: [89] 0200005103014699534c8d32397d4a210a561a05b629c3e42b218ad969dd9ef0...
server: Original packet: [536] 16030102130200005103014699534c8d32397d4a210a561a05b629c3e42b218a...
server: Filtered packet: [94] 16030100590200005103014699534c8d32397d4a210a561a05b629c3e42b218a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301e365eeb1e3c795d395463ef32fa23f4cb3c7b90c7faf27d8db85...
record new: [265] 020000570301e365eeb1e3c795d395463ef32fa23f4cb3c7b90c7faf27d8db85...
server: Original packet: [712] 16030102c3020000570301e365eeb1e3c795d395463ef32fa23f4cb3c7b90c7f...
server: Filtered packet: [270] 1603010109020000570301e365eeb1e3c795d395463ef32fa23f4cb3c7b90c7f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301543f34c161f9ebca9c1172d64c611362a4044329d5da78258821...
record new: [265] 020000570301543f34c161f9ebca9c1172d64c611362a4044329d5da78258821...
server: Original packet: [712] 16030102c3020000570301543f34c161f9ebca9c1172d64c611362a4044329d5...
server: Filtered packet: [270] 1603010109020000570301543f34c161f9ebca9c1172d64c611362a4044329d5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 0200005703014d80d76b59529a0acd0962659c1eb417ebb928f18684b723d0d6...
record new: [208] 0200005703014d80d76b59529a0acd0962659c1eb417ebb928f18684b723d0d6...
server: Original packet: [530] 160301020d0200005703014d80d76b59529a0acd0962659c1eb417ebb928f186...
server: Filtered packet: [213] 16030100d00200005703014d80d76b59529a0acd0962659c1eb417ebb928f186...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (2 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570301024572c572da6888691c3399f3daebd97b8733bd516201317f55...
record new: [537] 020000570301024572c572da6888691c3399f3daebd97b8733bd516201317f55...
server: Original packet: [712] 16030102c3020000570301024572c572da6888691c3399f3daebd97b8733bd51...
server: Filtered packet: [542] 1603010219020000570301024572c572da6888691c3399f3daebd97b8733bd51...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 020000570301b27947610ea8b051e31f0a605c852ccee69733e16f5d861252bb...
record new: [412] 020000570301b27947610ea8b051e31f0a605c852ccee69733e16f5d861252bb...
server: Original packet: [530] 160301020d020000570301b27947610ea8b051e31f0a605c852ccee69733e16f...
server: Filtered packet: [417] 160301019c020000570301b27947610ea8b051e31f0a605c852ccee69733e16f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (1 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703013f86d99ea7c6009f2272c43f769eaf342850c328b02802da8b9c...
record new: [265] 0200005703013f86d99ea7c6009f2272c43f769eaf342850c328b02802da8b9c...
Dropping handshake: 12
record old: [265] 0200005703013f86d99ea7c6009f2272c43f769eaf342850c328b02802da8b9c...
record new: [95] 0200005703013f86d99ea7c6009f2272c43f769eaf342850c328b02802da8b9c...
server: Original packet: [712] 16030102c30200005703013f86d99ea7c6009f2272c43f769eaf342850c328b0...
server: Filtered packet: [100] 160301005f0200005703013f86d99ea7c6009f2272c43f769eaf342850c328b0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570301583afa288bfbc393265d2ee946d8a3abea7047bfe975bc6c20e0...
record new: [208] 020000570301583afa288bfbc393265d2ee946d8a3abea7047bfe975bc6c20e0...
Dropping handshake: 12
record old: [208] 020000570301583afa288bfbc393265d2ee946d8a3abea7047bfe975bc6c20e0...
record new: [95] 020000570301583afa288bfbc393265d2ee946d8a3abea7047bfe975bc6c20e0...
server: Original packet: [530] 160301020d020000570301583afa288bfbc393265d2ee946d8a3abea7047bfe9...
server: Filtered packet: [100] 160301005f020000570301583afa288bfbc393265d2ee946d8a3abea7047bfe9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (2 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (24 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510302b2970afd44cea96e0ab5d00b89a79bf23e81e6c1224e3d5c37b2...
record new: [89] 020000510302b2970afd44cea96e0ab5d00b89a79bf23e81e6c1224e3d5c37b2...
server: Original packet: [536] 1603020213020000510302b2970afd44cea96e0ab5d00b89a79bf23e81e6c122...
server: Filtered packet: [94] 1603020059020000510302b2970afd44cea96e0ab5d00b89a79bf23e81e6c122...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510303836c0e4937e21a58dca9a6e0e4e0caafdde46e9fb9d191790fa1...
record new: [89] 020000510303836c0e4937e21a58dca9a6e0e4e0caafdde46e9fb9d191790fa1...
server: Original packet: [536] 1603030213020000510303836c0e4937e21a58dca9a6e0e4e0caafdde46e9fb9...
server: Filtered packet: [94] 1603030059020000510303836c0e4937e21a58dca9a6e0e4e0caafdde46e9fb9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feffd214dd30e2...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feffd214dd30e2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefdbc21257e99...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefdbc21257e99...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030247fe6f23bb3f3e389128202962c6fdd047b715379e3194798457...
record new: [265] 02000057030247fe6f23bb3f3e389128202962c6fdd047b715379e3194798457...
server: Original packet: [712] 16030202c302000057030247fe6f23bb3f3e389128202962c6fdd047b715379e...
server: Filtered packet: [270] 160302010902000057030247fe6f23bb3f3e389128202962c6fdd047b715379e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303f41a491b72a569f7ae981319d474c61ab200c59843d577c17317...
record new: [267] 020000570303f41a491b72a569f7ae981319d474c61ab200c59843d577c17317...
server: Original packet: [714] 16030302c5020000570303f41a491b72a569f7ae981319d474c61ab200c59843...
server: Filtered packet: [272] 160303010b020000570303f41a491b72a569f7ae981319d474c61ab200c59843...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [178] 0c0000a600010000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff801ce86d98...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff801ce86d98...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [180] 0c0000a800010000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd0ab3bf5663...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd0ab3bf5663...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302a94e8aed6051eb7fe2b2f8f90dffc6687d78e0e07619231fee60...
record new: [265] 020000570302a94e8aed6051eb7fe2b2f8f90dffc6687d78e0e07619231fee60...
server: Original packet: [712] 16030202c3020000570302a94e8aed6051eb7fe2b2f8f90dffc6687d78e0e076...
server: Filtered packet: [270] 1603020109020000570302a94e8aed6051eb7fe2b2f8f90dffc6687d78e0e076...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703033dce0829d6fcf2eb61bf252967e355283eb86e34e47267666799...
record new: [267] 0200005703033dce0829d6fcf2eb61bf252967e355283eb86e34e47267666799...
server: Original packet: [714] 16030302c50200005703033dce0829d6fcf2eb61bf252967e355283eb86e34e4...
server: Filtered packet: [272] 160303010b0200005703033dce0829d6fcf2eb61bf252967e355283eb86e34e4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [178] 0c0000a600010000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff7d9b58cf2e...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff7d9b58cf2e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [180] 0c0000a800010000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd7caffa5df9...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd7caffa5df9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570302b8ea89bebd96443de74cec0d57db3480f211af9bc47fd90b63bc...
record new: [208] 020000570302b8ea89bebd96443de74cec0d57db3480f211af9bc47fd90b63bc...
server: Original packet: [530] 160302020d020000570302b8ea89bebd96443de74cec0d57db3480f211af9bc4...
server: Filtered packet: [213] 16030200d0020000570302b8ea89bebd96443de74cec0d57db3480f211af9bc4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [527] 0200005703034fbc6fbcb3828c4be0eb9c28059427414f05de0ee5fe7bef0af4...
record new: [210] 0200005703034fbc6fbcb3828c4be0eb9c28059427414f05de0ee5fe7bef0af4...
server: Original packet: [532] 160303020f0200005703034fbc6fbcb3828c4be0eb9c28059427414f05de0ee5...
server: Filtered packet: [215] 16030300d20200005703034fbc6fbcb3828c4be0eb9c28059427414f05de0ee5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [120] 0c00006c000200000000006c03001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [120] 0c00006c000100000000006c03001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff1dc5cd2ed7...
server: Filtered packet: [283] 16feff00000000000000000063020000570000000000000057feff1dc5cd2ed7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [122] 0c00006e000100000000006e03001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefdbdd95c5605...
server: Filtered packet: [285] 16fefd00000000000000000063020000570000000000000057fefdbdd95c5605...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570302df7730251192477d78a8c940f138723f455eb3533d8a5dfad035...
record new: [537] 020000570302df7730251192477d78a8c940f138723f455eb3533d8a5dfad035...
server: Original packet: [712] 16030202c3020000570302df7730251192477d78a8c940f138723f455eb3533d...
server: Filtered packet: [542] 1603020219020000570302df7730251192477d78a8c940f138723f455eb3533d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 0200005703030a87bab53e87714ee18fce685f230606b3a52b36f9489ba8346a...
record new: [537] 0200005703030a87bab53e87714ee18fce685f230606b3a52b36f9489ba8346a...
server: Original packet: [714] 16030302c50200005703030a87bab53e87714ee18fce685f230606b3a52b36f9...
server: Filtered packet: [542] 16030302190200005703030a87bab53e87714ee18fce685f230606b3a52b36f9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff5202ad120d...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff5202ad120d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdafa490edda...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefdafa490edda...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 020000570302acbeba73172ee1877d5ff34119d5127a872a7e02bf2cdafd2a06...
record new: [412] 020000570302acbeba73172ee1877d5ff34119d5127a872a7e02bf2cdafd2a06...
server: Original packet: [529] 160302020c020000570302acbeba73172ee1877d5ff34119d5127a872a7e02bf...
server: Filtered packet: [417] 160302019c020000570302acbeba73172ee1877d5ff34119d5127a872a7e02bf...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [528] 0200005703039ee3777b6c0eaa9ae743610e291d75c374ddaf00c5b416816748...
record new: [412] 0200005703039ee3777b6c0eaa9ae743610e291d75c374ddaf00c5b416816748...
server: Original packet: [533] 16030302100200005703039ee3777b6c0eaa9ae743610e291d75c374ddaf00c5...
server: Filtered packet: [417] 160303019c0200005703039ee3777b6c0eaa9ae743610e291d75c374ddaf00c5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [121] 0c00006d000200000000006d03001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feff35f5441378...
server: Filtered packet: [488] 16feff00000000000000000063020000570000000000000057feff35f5441378...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [124] 0c000070000200000000007003001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [612] 16fefd00000000000000000063020000570000000000000057fefdb4bd28f55a...
server: Filtered packet: [488] 16fefd00000000000000000063020000570000000000000057fefdb4bd28f55a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302967a48db65a5bb6d314fc4e687456c07a283a7ff71b22b0b72ed...
record new: [265] 020000570302967a48db65a5bb6d314fc4e687456c07a283a7ff71b22b0b72ed...
Dropping handshake: 12
record old: [265] 020000570302967a48db65a5bb6d314fc4e687456c07a283a7ff71b22b0b72ed...
record new: [95] 020000570302967a48db65a5bb6d314fc4e687456c07a283a7ff71b22b0b72ed...
server: Original packet: [712] 16030202c3020000570302967a48db65a5bb6d314fc4e687456c07a283a7ff71...
server: Filtered packet: [100] 160302005f020000570302967a48db65a5bb6d314fc4e687456c07a283a7ff71...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303c17366ca3907de709adbed391d17030156df72a2fcbc368d4fb9...
record new: [267] 020000570303c17366ca3907de709adbed391d17030156df72a2fcbc368d4fb9...
Dropping handshake: 12
record old: [267] 020000570303c17366ca3907de709adbed391d17030156df72a2fcbc368d4fb9...
record new: [95] 020000570303c17366ca3907de709adbed391d17030156df72a2fcbc368d4fb9...
server: Original packet: [714] 16030302c5020000570303c17366ca3907de709adbed391d17030156df72a2fc...
server: Filtered packet: [100] 160303005f020000570303c17366ca3907de709adbed391d17030156df72a2fc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [178] 0c0000a600010000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffe75729746d...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feffe75729746d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [180] 0c0000a800010000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefded01f0216d...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefded01f0216d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 0200005703027f47a082f4d1b8536b03da4c5f45dec7934f24d6f540ac02491b...
record new: [208] 0200005703027f47a082f4d1b8536b03da4c5f45dec7934f24d6f540ac02491b...
Dropping handshake: 12
record old: [208] 0200005703027f47a082f4d1b8536b03da4c5f45dec7934f24d6f540ac02491b...
record new: [95] 0200005703027f47a082f4d1b8536b03da4c5f45dec7934f24d6f540ac02491b...
server: Original packet: [530] 160302020d0200005703027f47a082f4d1b8536b03da4c5f45dec7934f24d6f5...
server: Filtered packet: [100] 160302005f0200005703027f47a082f4d1b8536b03da4c5f45dec7934f24d6f5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [528] 0200005703032c22c4948650f443a961729c5c0340fa22f7eb7d2cdd6c17eac1...
record new: [211] 0200005703032c22c4948650f443a961729c5c0340fa22f7eb7d2cdd6c17eac1...
Dropping handshake: 12
record old: [211] 0200005703032c22c4948650f443a961729c5c0340fa22f7eb7d2cdd6c17eac1...
record new: [95] 0200005703032c22c4948650f443a961729c5c0340fa22f7eb7d2cdd6c17eac1...
server: Original packet: [533] 16030302100200005703032c22c4948650f443a961729c5c0340fa22f7eb7d2c...
server: Filtered packet: [100] 160303005f0200005703032c22c4948650f443a961729c5c0340fa22f7eb7d2c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [121] 0c00006d000100000000006d03001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057fefffd9e5d1677...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057fefffd9e5d1677...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [124] 0c000070000200000000007003001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [124] 0c000070000100000000007003001d20a40c83dc75f5a45cf2429fad695fe667...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [124] 0c000070000100000000007003001d20a40c83dc75f5a45cf2429fad695fe667...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [612] 16fefd00000000000000000063020000570000000000000057fefd887b9b19d7...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd887b9b19d7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (2 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (96 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (1 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (5446 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #4342: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #4343: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4344: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4345: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4346: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4347: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4348: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4349: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4350: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4351: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4352: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4353: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4354: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4355: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4356: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4357: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4358: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4359: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4360: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4361: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4362: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4363: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4364: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4365: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4366: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4367: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4368: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4369: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4370: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4371: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4372: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4373: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4374: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4375: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4376: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4377: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4378: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4379: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4380: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4381: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4382: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4383: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4384: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4385: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4386: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4387: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4388: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4389: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4390: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4391: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4392: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4393: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4394: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4395: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4396: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4397: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4398: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4399: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4400: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4401: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4402: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4403: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4404: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4405: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4406: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4407: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4408: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4409: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4410: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4411: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4412: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4413: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4414: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4415: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4416: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4417: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4418: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4419: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4420: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4421: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4422: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4423: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4424: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4425: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4426: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4427: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4428: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4429: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4430: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4431: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4432: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4433: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4434: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4435: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4436: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4437: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4438: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4439: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4440: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4441: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4442: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4443: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4444: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4445: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4446: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4447: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4448: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4449: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4450: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4451: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4452: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4453: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4454: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4455: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4456: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4457: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4458: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4459: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4460: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4461: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4462: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4463: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4464: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4465: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4466: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4467: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4468: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4469: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4470: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4471: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4472: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4473: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4474: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4475: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4476: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4477: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4478: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4479: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4480: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4481: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4482: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4483: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4484: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4485: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4486: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4487: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4488: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4489: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4490: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4491: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4492: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4493: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4494: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4495: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4496: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4497: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4498: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4499: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4500: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4501: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4502: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4503: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4504: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4505: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4506: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4507: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4508: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4509: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4510: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4511: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4512: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4513: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4514: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4515: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4516: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4517: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4518: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4519: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4520: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4521: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4522: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4523: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4524: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4525: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4526: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4527: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4528: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4529: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4530: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4531: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4532: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4533: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4534: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4535: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4536: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4537: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4538: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4539: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4540: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4541: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4542: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4543: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4544: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4545: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4546: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4547: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4548: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4549: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4550: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4551: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4552: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4553: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4554: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4555: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4556: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4557: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4558: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4559: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4560: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4561: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4562: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4563: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4564: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4565: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4566: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4567: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4568: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4569: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4570: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4571: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4572: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4573: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4574: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4575: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4576: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4577: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4578: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4579: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4580: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4581: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4582: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4583: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4584: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4585: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4586: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4587: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4588: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4589: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4590: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4591: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4592: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4593: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4594: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4595: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4596: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4597: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4598: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4599: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4600: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4601: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4602: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4603: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4604: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4605: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4606: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4607: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4608: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4609: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4610: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4611: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4612: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4613: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4614: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4615: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4616: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4617: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4618: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4619: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4620: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4621: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4622: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4623: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4624: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4625: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4626: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4627: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4628: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4629: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4630: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4631: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4632: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4633: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4634: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4635: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4636: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4637: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4638: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4639: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4640: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4641: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4642: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4643: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4644: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4645: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4646: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4647: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4648: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4649: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4650: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4651: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4652: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4653: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4654: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4655: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4656: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4657: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4658: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4659: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4660: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4661: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4662: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4663: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4664: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4665: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4666: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4667: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4668: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4669: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4670: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4671: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4672: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4673: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4674: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4675: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4676: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4677: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4678: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4679: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4680: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4681: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4682: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4683: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4684: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4685: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4686: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4687: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4688: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4689: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4690: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4691: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4692: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4693: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4694: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4695: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4696: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4697: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4698: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4699: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4700: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4701: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4702: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4703: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4704: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4705: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4706: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4707: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4708: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4709: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4710: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4711: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4712: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4713: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4714: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4715: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4716: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4717: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4718: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4719: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4720: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4721: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4722: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4723: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4724: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4725: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4726: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4727: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4728: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4729: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4730: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4731: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4732: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4733: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4734: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4735: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4736: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4737: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4738: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4739: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4740: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4741: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4742: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4743: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4744: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4745: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4746: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4747: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4748: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4749: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4750: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4751: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4752: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4753: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4754: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4755: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4756: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4757: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4758: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4759: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4760: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4761: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4762: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4763: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4764: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4765: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4766: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4767: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4768: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4769: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4770: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4771: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4772: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4773: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4774: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4775: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4776: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4777: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4778: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4779: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4780: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4781: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4782: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4783: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4784: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4785: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4786: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4787: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4788: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4789: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4790: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4791: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4792: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4793: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4794: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4795: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4796: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4797: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4798: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4799: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4800: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4801: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4802: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4803: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4804: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4805: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4806: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4807: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4808: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4809: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4810: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4811: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4812: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4813: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4814: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4815: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4816: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4817: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4818: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4819: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4820: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4821: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4822: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4823: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4824: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4825: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4826: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4827: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4828: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4829: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4830: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4831: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4832: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4833: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4834: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4835: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4836: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4837: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4838: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4839: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4840: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4841: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4842: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4843: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4844: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4845: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4846: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4847: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4848: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4849: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4850: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4851: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4852: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4853: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4854: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4855: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4856: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4857: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4858: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4859: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4860: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4861: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4862: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4863: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4864: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4865: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4866: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4867: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4868: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4869: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4870: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4871: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4872: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4873: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4874: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4875: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #4876: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4877: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #4878: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4879: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4880: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4881: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4882: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4883: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #4884: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #4885: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #4886: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #4887: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #4888: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #4889: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #4890: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #4891: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #4892: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #4893: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #4894: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #4895: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4896: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4897: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4898: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4899: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4900: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4901: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4902: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4903: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4904: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4905: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4906: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4907: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4908: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4909: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4910: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4911: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4912: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4913: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4914: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4915: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4916: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4917: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4918: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4919: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #4920: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #4921: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #4922: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #4923: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #4924: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #4925: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #4926: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #4927: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #4928: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #4929: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #4930: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #4931: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4932: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4933: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4934: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4935: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4936: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4937: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4938: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4939: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4940: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4941: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4942: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4943: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4944: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4945: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4946: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4947: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4948: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4949: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4950: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4951: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4952: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4953: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4954: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4955: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4956: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4957: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4958: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4959: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4960: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4961: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4962: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4963: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4964: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4965: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4966: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4967: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4968: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4969: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4970: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4971: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4972: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4973: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4974: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4975: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4976: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4977: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4978: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4979: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4980: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4981: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4982: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4983: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4984: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4985: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4986: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4987: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4988: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4989: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4990: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4991: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4992: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4993: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4994: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4995: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4996: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4997: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4998: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4999: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #5000: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #5001: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #5002: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #5003: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #5004: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #5005: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5006: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5007: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5008: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5009: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5010: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5011: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5012: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5013: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5014: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5015: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5016: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5017: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5018: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5019: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5020: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5021: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #5022: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #5023: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #5024: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #5025: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #5026: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #5027: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #5028: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #5029: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #5030: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #5031: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #5032: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #5033: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #5034: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #5035: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #5036: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #5037: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #5038: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #5039: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #5040: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #5041: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #5042: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #5043: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #5044: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #5045: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #5046: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #5047: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #5048: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #5049: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #5050: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #5051: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #5052: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #5053: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #5054: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #5055: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #5056: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #5057: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #5058: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #5059: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #5060: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #5061: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #5062: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #5063: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #5064: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #5065: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #5066: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #5067: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #5068: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #5069: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #5070: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #5071: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #5072: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #5073: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #5074: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #5075: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #5076: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #5077: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #5078: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #5079: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #5080: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #5081: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #5082: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #5083: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #5084: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #5085: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #5086: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #5087: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #5088: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #5089: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #5090: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #5091: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #5092: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #5093: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #5094: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #5095: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #5096: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #5097: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #5098: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #5099: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #5100: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #5101: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #5102: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #5103: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #5104: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #5105: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #5106: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #5107: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #5108: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #5109: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5110: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5111: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5112: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5113: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5114: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5115: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5116: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5117: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5118: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5119: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5120: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5121: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5122: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5123: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5124: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5125: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5126: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5127: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5128: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5129: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5130: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5131: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5132: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5133: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5134: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5135: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5136: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5137: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5138: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5139: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5140: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5141: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5142: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5143: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5144: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5145: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5146: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5147: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5148: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5149: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #5150: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #5151: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #5152: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #5153: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #5154: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #5155: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #5156: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #5157: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #5158: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Wed Aug 23 12:31:56 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Wed Aug 23 12:31:56 UTC 2017
TIMESTAMP libpkix END: Wed Aug 23 12:31:56 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Wed Aug 23 12:31:56 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #5159: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #5160: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5161: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5162: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #5163: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #5164: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5165: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5166: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5167: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5168: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5169: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5170: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5171: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #5172: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5173: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5174: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5175: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5176: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5177: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5178: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5179: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5180: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5181: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5182: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5183: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5184: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5185: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5186: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5187: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5188: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5189: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5190: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5191: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5192: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5193: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5194: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #5195: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5196: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5197: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5198: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5199: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5200: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5201: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5202: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5203: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5204: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5205: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5206: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5207: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #5208: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5209: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5210: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #5211: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5212: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #5213: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5214: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #5215: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5216: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #5217: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5218: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #5219: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5220: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5221: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #5222: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5223: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #5224: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5225: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #5226: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5227: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #5228: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5229: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5230: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #5231: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5232: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5233: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #5234: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5235: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5236: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #5237: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5238: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5239: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #5240: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5241: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #5242: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5243: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #5244: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5245: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #5246: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5247: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #5248: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5249: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5250: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #5251: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5252: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #5253: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5254: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #5255: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5256: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #5257: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5258: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5259: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #5260: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5261: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5262: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #5263: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5264: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5265: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #5266: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5267: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #5268: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5269: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #5270: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5271: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #5272: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5273: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5274: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #5275: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5276: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5277: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #5278: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5279: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5280: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #5281: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5282: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5283: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #5284: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5285: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5286: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5287: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #5288: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5289: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #5290: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5291: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #5292: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5293: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5294: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #5295: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5296: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5297: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #5298: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5299: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5300: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #5301: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5302: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5303: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #5304: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5305: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5306: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #5307: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5308: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5309: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #5310: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5311: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5312: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #5313: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5314: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5315: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #5316: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5317: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5318: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #5319: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5320: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5321: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5322: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5323: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #5324: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5325: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #5326: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5327: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #5328: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5329: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #5330: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5331: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5332: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #5333: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5334: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5335: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #5336: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5337: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5338: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #5339: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5340: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5341: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #5342: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5343: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #5344: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5345: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #5346: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5347: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #5348: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5349: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #5350: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5351: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5352: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #5353: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5354: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5355: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #5356: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5357: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5358: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #5359: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5360: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5361: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #5362: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5363: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #5364: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5365: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #5366: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5367: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #5368: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5369: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #5370: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5371: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5372: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #5373: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5374: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5375: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #5376: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5377: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5378: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #5379: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5380: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5381: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #5382: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5383: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #5384: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5385: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #5386: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5387: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #5388: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5389: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5390: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5391: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5392: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5393: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5394: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5395: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5396: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5397: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5398: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5399: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5400: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5401: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5402: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5403: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #5404: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #5405: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #5406: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #5407: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #5408: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #5409: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #5410: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #5411: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #5412: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5413: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #5414: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5415: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #5416: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5417: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #5418: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5419: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #5420: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5421: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5422: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #5423: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5424: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5425: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #5426: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5427: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #5428: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5429: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #5430: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5431: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #5432: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5433: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #5434: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5435: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5436: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #5437: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5438: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5439: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #5440: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5441: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5442: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #5443: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5444: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5445: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #5446: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5447: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:c8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:04 2017
            Not After : Thu Nov 23 12:32:04 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:89:08:57:a0:71:ea:5c:c5:3d:d0:10:02:57:09:2d:
                    af:03:79:4c:69:3e:06:6d:52:7a:8e:9e:a8:29:15:aa:
                    ba:3f:1a:eb:46:19:be:51:1b:a9:68:87:eb:95:ad:97:
                    82:3a:35:9a:0f:2d:12:c4:8a:bc:d0:3c:be:1b:c7:4f:
                    ee:51:a6:c9:22:a4:60:51:8d:7d:72:58:ab:15:62:36:
                    d2:27:42:c8:7a:28:9a:2d:68:16:36:49:60:28:41:31:
                    e7:5a:82:cf:48:10:fb:0e:b5:c8:bf:8e:44:2f:fa:27:
                    25:6d:0b:21:81:c2:9e:1b:21:e6:c5:d0:45:17:0b:e8:
                    c0:cd:32:07:d3:bd:a8:7c:c1:5a:a2:b0:34:1e:e7:0d:
                    a0:9d:f8:c1:cb:46:75:aa:be:3c:70:a5:53:4f:d0:80:
                    89:7c:95:c8:5a:25:59:61:0f:b6:b6:6e:e7:19:d9:db:
                    9f:57:9f:13:eb:dc:a6:8f:11:56:db:06:83:ba:14:78:
                    49:28:f7:33:74:96:cd:1e:71:ae:3c:6c:0a:c3:10:5e:
                    27:bc:7b:73:cd:6b:de:65:83:6b:91:00:9a:dc:67:e9:
                    a2:03:b3:8c:df:65:37:af:2b:2d:be:b2:e9:b2:26:a7:
                    f9:3d:76:8d:a1:2d:d3:27:64:6e:da:bf:20:a8:34:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:1d:f6:98:af:72:83:3a:32:b0:f9:f0:79:79:04:49:
        7d:b0:31:98:d4:d6:86:ec:4c:f1:bb:8e:3c:31:69:fc:
        55:eb:2e:7b:70:86:63:34:17:3e:8e:23:48:35:45:56:
        f8:e3:e7:fa:32:20:b6:c5:6c:a5:4c:57:e5:ce:b5:97:
        39:0a:ba:c4:3c:d9:bf:b4:5b:09:32:77:4d:68:b3:d3:
        e4:dc:ef:6d:d3:ce:c9:06:85:49:3d:89:6b:ed:df:75:
        f6:46:82:75:4c:00:4a:b5:ee:ed:1f:fb:6a:b4:65:a3:
        a5:e7:b0:22:0a:92:65:63:6e:07:27:2b:ae:ce:b7:ba:
        19:90:41:74:de:19:1e:81:9d:b5:ee:1a:71:5a:ce:28:
        b9:38:39:19:21:13:7a:45:50:3a:63:ef:36:e7:92:6e:
        82:59:fa:a5:4e:ac:58:ad:9e:57:50:82:80:a9:1f:22:
        a2:26:a6:ad:94:be:c7:06:17:ed:9f:1d:b4:aa:29:2c:
        9e:29:c1:f0:35:ec:5e:00:49:9f:64:ce:ba:c8:13:fa:
        9e:6a:09:0c:b1:0d:2d:5d:d3:a0:b7:c1:64:6c:dd:38:
        be:1e:45:dc:4b:c9:84:23:b8:0a:74:8b:78:63:e4:03:
        48:c9:ac:47:38:de:d5:8a:16:8f:65:0d:be:1f:19:a2
    Fingerprint (SHA-256):
        B4:8F:2C:0B:EC:9A:E9:7E:5B:5E:1E:B0:52:20:E9:CE:3E:96:2B:1C:14:45:D1:23:FC:7E:3A:CE:0A:09:00:9D
    Fingerprint (SHA1):
        F2:EF:39:C8:7D:E1:C4:F4:A1:9F:76:78:DF:64:82:CE:47:6B:6A:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5448: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:c8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:05 2017
            Not After : Thu Nov 23 12:32:05 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:3f:95:1c:99:0f:f8:05:94:07:10:d0:42:ff:75:74:
                    47:e3:87:37:2a:0c:bb:c3:1c:95:18:b6:f0:17:f3:ea:
                    4b:c2:b5:3e:98:f8:e6:d3:23:37:c8:76:c3:8b:35:34:
                    34:fa:c7:d8:1c:65:09:27:28:15:fa:06:8d:89:64:a5:
                    2e:96:d9:35:29:20:34:d7:9b:b8:8e:a6:28:d1:de:fc:
                    8a:58:67:9e:e9:f3:29:30:35:40:10:73:2c:69:f8:42:
                    28:68:3d:1e:e8:3b:54:f9:43:89:90:1f:c1:d6:92:46:
                    a9:3d:92:db:ec:68:97:80:2c:19:0b:f9:e5:da:54:40:
                    cf:62:72:e6:b0:8d:d4:a6:62:77:4f:16:17:e1:9a:0d:
                    04:84:5f:86:3a:fa:2c:e7:21:19:ef:3a:d5:32:31:0e:
                    b4:92:d1:15:12:3f:2e:74:b0:eb:da:a9:e0:1e:03:3e:
                    f4:2e:33:c2:18:7e:06:0f:f3:2a:16:05:a7:cf:19:03:
                    ef:57:71:86:2a:b5:bf:5f:dd:5a:90:f1:6a:a4:a7:68:
                    89:a2:84:45:1d:ec:92:f0:af:b9:0a:b7:71:7f:77:a9:
                    3e:19:3f:61:93:ce:04:d0:61:f2:2e:bd:86:38:08:1c:
                    76:c4:d6:41:27:72:16:96:fc:bf:ab:56:00:a0:ca:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:ac:91:43:14:d5:b9:39:5f:e0:15:32:cd:c0:f4:c6:
        9f:26:a1:26:52:16:03:25:25:b9:59:7c:ea:1a:0f:f0:
        3b:69:62:8a:27:5c:92:04:4e:97:6a:9c:e0:4a:58:4c:
        14:a1:0a:35:ef:dd:fa:12:71:35:c9:3a:ff:ad:63:71:
        2a:d4:08:e4:bb:de:b5:67:82:25:05:48:4c:57:6e:ac:
        1a:e6:27:e9:ea:91:90:1c:c3:fe:d4:9e:c7:d2:54:75:
        73:04:87:23:88:a1:1b:99:e1:03:0d:42:ea:ea:93:34:
        b4:77:a7:29:2e:ca:65:57:ce:d0:49:d2:38:6c:46:cc:
        a2:87:45:5f:9a:ed:62:ec:d3:10:b2:70:61:1f:3c:c7:
        b3:55:12:91:1a:94:b1:ce:39:60:3a:3c:97:05:a3:3d:
        fb:25:5f:a5:2a:14:b3:2b:17:c2:4a:37:8a:36:99:56:
        db:22:83:91:dd:5a:e5:f1:84:df:b7:29:50:ae:6c:1f:
        88:8f:74:fe:19:33:04:7d:c2:2d:5f:aa:c5:2b:a1:86:
        8d:7d:16:36:49:df:79:30:6f:80:af:69:2b:9f:24:89:
        93:98:a1:47:b2:7e:88:65:28:c7:a0:e4:41:88:04:b4:
        4f:60:05:3f:a5:7c:a0:74:e8:81:bd:b0:8e:4b:a1:59
    Fingerprint (SHA-256):
        87:57:42:09:49:FB:1A:37:CF:45:1B:5B:8E:E5:D8:40:AE:83:6B:A8:73:70:13:2B:9E:47:54:6B:5F:24:55:FA
    Fingerprint (SHA1):
        67:DA:91:E2:29:3B:4A:D7:55:80:79:1B:AC:6C:27:E4:2E:10:7A:CB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5449: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:c8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:05 2017
            Not After : Thu Nov 23 12:32:05 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:63:3e:bd:c5:d6:4b:e7:65:6d:75:f1:cf:e7:8c:be:
                    84:d2:82:ac:18:43:c7:42:0d:ed:98:58:c4:b1:b2:f6:
                    ac:a4:d6:86:cf:b6:b4:2f:62:8a:b9:53:d8:a4:27:ac:
                    ba:5e:bc:cf:c2:52:ce:4b:3e:eb:bb:9a:dd:4b:ab:71:
                    83:17:c6:24:a9:38:05:0c:a7:3c:16:a6:32:c8:cb:4f:
                    f0:e4:51:1e:1c:13:43:8c:84:ef:f3:12:b9:dc:d0:55:
                    28:d5:bb:45:eb:e1:1a:7c:62:cf:43:8a:99:4a:c2:80:
                    60:ce:77:26:b1:e5:92:75:6d:f7:01:ba:0a:87:11:0c:
                    df:75:bf:bc:32:fd:06:61:4c:4a:c8:a5:d4:2d:1d:a2:
                    b2:fb:e2:2c:e8:f8:0f:29:fc:f1:2f:26:5d:cf:cc:53:
                    db:89:13:1b:84:95:bd:d7:5b:81:1b:f3:81:8e:a9:a2:
                    ac:9c:64:7e:2b:af:c2:28:e3:65:91:55:6e:b4:00:ff:
                    b4:20:ce:c8:e6:89:89:e9:25:75:2b:1b:d1:f0:ac:16:
                    dc:7a:a1:39:8f:c3:42:6a:1e:80:d7:ba:c7:3d:56:1e:
                    d9:1c:23:64:72:9a:9f:cc:d7:2a:93:a5:64:cb:ae:30:
                    46:56:1f:dc:75:55:9a:e7:27:7a:06:07:3a:a4:47:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:5a:c6:2b:98:f3:0a:5c:25:28:4d:75:e8:d3:74:ed:
        13:ad:e8:47:97:1d:b2:ea:45:c3:50:ff:3f:7d:7b:9b:
        0e:af:b2:5d:49:5e:44:0c:cb:6f:20:53:34:16:d9:be:
        d6:a9:71:2f:82:0f:4a:d7:10:0a:34:6c:38:18:af:3a:
        03:92:c0:7c:3b:4d:0a:e8:e4:c0:22:6f:cd:c5:2d:b6:
        24:b5:0d:4d:a4:44:05:a4:c1:6b:2d:ea:d1:28:6a:12:
        79:e9:55:30:bb:43:ba:f8:c4:58:4c:25:36:cf:4b:94:
        2f:1c:cd:91:da:4b:d4:96:43:8e:1c:cb:cb:7e:c6:12:
        6a:a7:de:3e:bb:ae:3a:2a:51:62:32:c6:52:79:7d:f0:
        8d:b4:4a:44:de:9f:a4:00:71:3a:05:27:4e:e6:d0:24:
        6b:86:4f:5c:12:8f:8f:ef:9e:fd:72:29:76:50:dc:98:
        98:36:4f:04:55:7f:c3:5a:8e:20:f0:40:c5:c6:11:8d:
        3d:29:5f:a1:81:1b:0c:ae:09:77:5b:b4:e9:d6:58:f7:
        1c:7a:bd:71:90:fe:bb:54:72:58:f9:43:77:3c:fa:99:
        9d:91:fc:e1:59:49:dc:6f:b7:33:13:47:50:d7:b4:a7:
        62:ca:63:c5:33:ba:6e:bd:99:aa:db:91:5f:36:da:af
    Fingerprint (SHA-256):
        C6:27:85:13:DE:84:F4:21:7E:4B:B1:29:F4:84:08:1D:C9:7E:07:04:2A:99:01:BC:76:55:EC:38:3F:4B:31:1B
    Fingerprint (SHA1):
        A4:CA:25:D0:C8:1D:93:0E:F1:58:8A:A0:9D:97:E2:3F:F2:9F:69:56
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5450: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:c9
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:05 2017
            Not After : Thu Nov 23 12:32:05 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:87:e4:ca:78:7c:b1:3c:0b:17:9d:c3:32:36:ae:50:
                    e6:ff:47:8c:ae:f8:e8:1e:a3:b5:86:95:5e:de:80:e6:
                    56:b3:e8:f5:ba:34:26:fe:3b:03:b0:d3:bb:c5:08:a1:
                    3a:e5:97:8f:78:05:8c:69:4b:f5:e3:0d:8e:be:38:a5:
                    73:75:02:de:37:7e:31:2f:cd:98:c8:55:0e:ba:c1:09:
                    4d:96:34:4f:72:83:b1:61:59:fc:be:13:f2:d8:5c:44:
                    09:ff:e7:58:49:83:c6:e4:ca:27:fe:1f:bb:33:72:56:
                    a0:ab:89:3f:79:55:0d:96:bd:c7:4c:20:41:b8:e6:57:
                    06:63:07:52:34:71:2f:ad:92:aa:0f:1e:5a:8f:30:f1:
                    e0:73:96:bc:19:91:4c:0a:82:04:6e:2e:32:f2:f8:54:
                    22:0e:2e:0d:f5:10:9a:be:d3:f5:95:c2:37:fb:01:00:
                    23:bf:74:87:c8:c4:55:e4:9c:b0:c3:85:c8:cb:da:16:
                    b1:c1:0e:a9:b7:54:89:f1:e5:45:ee:29:c8:e9:12:1d:
                    b1:05:94:f7:83:6a:ba:6d:aa:f6:5c:48:83:3d:11:c1:
                    96:a7:ae:4a:e6:3b:22:5b:0e:45:2f:0b:67:d2:66:cc:
                    d8:df:f7:64:e0:24:09:90:21:fe:96:5b:bc:43:59:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:69:24:ca:d9:86:3b:b6:09:6c:37:98:89:97:72:13:
        4e:fb:30:79:15:b6:e3:61:b3:2f:5a:34:dc:c0:92:b8:
        8d:5b:9d:72:fc:3b:d5:9b:6d:8d:db:57:2f:0c:3f:49:
        9b:8c:3c:99:2a:65:55:06:02:d5:55:d7:5f:26:97:99:
        4a:24:66:74:57:3c:16:7b:13:69:6c:87:28:0f:88:36:
        4e:cd:55:00:ce:a9:61:e5:49:fc:14:c2:5e:09:a2:ae:
        7d:07:4c:93:c3:5f:d4:d2:2b:ec:9c:3f:9d:c8:19:42:
        36:4f:ad:31:cb:ac:7a:14:f9:25:29:ff:ec:ec:0d:ca:
        4e:40:0f:3c:d7:8d:e8:50:16:41:c4:4e:0a:bb:89:a7:
        1b:19:70:a9:7d:d2:ba:87:7e:0b:fd:1f:e9:be:de:68:
        b1:be:a3:48:63:af:16:e2:e2:51:16:a8:4c:d9:64:de:
        1b:76:98:7b:03:f1:90:df:71:a9:24:f8:18:ca:44:bd:
        a9:35:2a:bf:d5:9a:61:d4:05:5b:c5:fd:fd:92:35:f2:
        b6:a9:28:56:04:5f:57:9a:a1:15:3f:ab:a1:2f:94:0d:
        2c:8a:55:72:4b:b2:d8:06:51:73:05:14:e6:63:3c:c8:
        30:ac:43:ee:53:f0:ba:76:a7:02:b6:02:d8:e0:6e:f2
    Fingerprint (SHA-256):
        01:34:E6:3F:64:A8:5F:F8:95:9A:A1:BD:A5:7D:ED:BD:08:DF:5F:6F:F9:4A:CE:D2:8B:01:AD:C7:14:C2:53:90
    Fingerprint (SHA1):
        C1:61:7B:BC:AF:24:6D:9F:05:D4:A1:64:44:AB:59:4D:AA:B8:13:D6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5451: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:c9
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:05 2017
            Not After : Thu Nov 23 12:32:05 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:00:13:06:fd:92:5b:70:06:d2:b0:37:0a:45:22:94:
                    0e:14:d5:6d:86:ad:b0:9b:ce:f9:ac:d4:b7:19:1f:67:
                    a0:fb:a8:a5:2f:e4:b6:25:0b:29:5c:73:ea:af:dc:13:
                    0c:bd:8d:2a:11:00:02:34:5a:fb:15:fe:db:61:95:00:
                    c7:57:38:12:1f:19:4d:d8:fe:de:01:03:52:b8:de:78:
                    c2:92:c0:62:83:37:10:de:1e:3c:90:26:c4:d2:3b:33:
                    f4:56:2f:5e:45:a1:f3:00:88:14:7f:30:f5:ad:76:98:
                    a1:7a:ba:8d:3b:e6:73:c9:a4:80:ea:ec:38:75:e1:69:
                    ee:32:f3:5d:5b:2b:61:51:d8:1f:e1:e2:48:7b:64:76:
                    ec:5c:88:47:4a:68:bf:b6:da:ab:17:3c:31:05:a6:28:
                    39:21:73:99:12:80:2e:cc:ea:1f:e5:f1:e7:34:a4:39:
                    c6:f1:39:61:08:3b:2f:93:1d:c5:06:f9:55:86:9d:3a:
                    c3:99:25:05:82:9f:bb:da:31:44:45:07:83:40:27:41:
                    bf:6c:1c:fd:ff:54:65:15:47:cc:ca:60:fd:cd:77:96:
                    b0:5e:e3:7c:b2:e7:8e:38:6c:1d:0a:bf:7a:be:2b:a1:
                    66:f6:b5:16:dc:c9:03:a8:7d:d1:cd:e7:97:37:77:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:73:19:91:fe:cb:e5:73:c0:4c:ae:03:77:d1:57:78:
        0a:90:75:a6:ec:f5:5d:be:18:e9:45:82:7f:78:ea:d2:
        b0:b1:0a:20:3f:80:f8:2e:e0:31:0c:aa:08:85:d9:49:
        1c:88:8e:6c:3d:d7:15:cb:ac:35:e1:65:28:9e:96:42:
        c2:d3:ce:e8:ce:fb:67:ab:be:37:33:1e:3b:70:b5:70:
        e4:3d:b5:28:4b:c9:6d:d5:7f:ef:f0:d2:39:57:dd:00:
        85:5a:7f:7b:dd:00:fc:6a:19:e4:0e:25:15:2f:80:4f:
        2d:82:b0:0f:4a:f4:b2:fb:f6:41:ce:32:ba:c1:ad:d9:
        69:9f:de:5e:61:0d:46:29:52:0a:1b:71:4e:e0:f0:91:
        60:5f:bc:3e:f7:fa:f2:29:b4:20:cd:eb:e4:c3:b4:90:
        8d:c3:2a:cf:90:50:61:c2:4c:b0:07:70:ca:35:16:30:
        e6:0b:93:8a:0c:ba:28:a2:fe:2c:d7:60:a6:2f:f9:3f:
        df:ba:5f:1b:24:5b:55:82:aa:89:e3:d3:87:27:dc:19:
        92:94:d5:8e:eb:a2:c8:87:03:cc:9f:de:ff:0b:17:f7:
        c7:95:ce:9d:90:a6:06:7c:59:8d:33:89:3b:c2:2c:ef:
        62:52:d6:38:9c:49:1e:75:c8:2d:70:a5:de:62:72:e5
    Fingerprint (SHA-256):
        CA:AA:63:72:6E:8B:0F:D3:7D:37:44:CB:C8:06:76:63:FA:2E:B5:3D:FB:EF:02:B1:40:63:93:16:F4:77:C6:19
    Fingerprint (SHA1):
        B4:B1:11:4B:DC:23:D8:55:AB:0E:05:2D:1E:FE:17:1F:F1:BB:61:AE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5452: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:ca
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:05 2017
            Not After : Thu Nov 23 12:32:05 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:9b:27:88:74:36:23:71:fe:65:6c:d6:d1:93:68:c3:
                    5a:70:8e:f1:a0:61:c1:01:c7:0b:51:ad:eb:92:d6:e7:
                    87:48:d3:3b:a5:8c:92:bf:1e:93:15:ac:ab:dd:22:cc:
                    46:13:a5:5a:37:b7:e5:15:60:d5:0c:ed:ae:6b:b9:9b:
                    11:12:49:f2:7a:0f:64:03:fb:67:1a:4c:7d:4e:2f:6c:
                    b2:93:ec:c1:66:20:bc:c2:9f:50:79:3c:90:d7:a1:8e:
                    17:82:19:f5:89:5e:b1:00:2d:a1:74:c3:b5:36:8e:1c:
                    1a:48:64:1f:6c:8c:6a:99:12:ec:6a:84:0d:a0:03:a8:
                    b0:b2:10:79:d7:f5:58:ba:29:18:f6:4c:46:60:cf:b7:
                    1c:f2:39:e5:86:e0:c1:e8:16:df:e2:2f:41:8e:de:9a:
                    5e:05:7a:d7:98:1a:07:0c:31:c5:12:b8:73:92:e1:eb:
                    ca:60:f3:56:ee:f4:2b:6d:df:71:7c:61:15:a9:81:e4:
                    0c:fb:9e:d9:5d:43:60:7e:97:25:4c:9b:b2:91:37:92:
                    94:7f:97:71:49:a2:c9:9d:d3:d8:bb:d9:40:b1:d1:a5:
                    c2:5c:74:77:82:35:7c:c4:02:d3:e9:49:9a:52:fc:78:
                    ec:c7:b5:dc:c3:50:81:af:bd:ef:f3:e7:6d:95:5f:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:dc:4d:b8:16:63:e6:42:26:6b:49:a9:49:05:91:5b:
        fb:c2:ff:62:92:c8:0a:c8:98:fa:df:4e:40:7f:e2:c5:
        cd:41:00:1a:46:78:b4:9a:6e:65:cd:c6:58:32:6c:1e:
        8f:6f:72:3d:13:30:ff:4f:f2:64:5d:8d:4f:90:77:d9:
        77:d0:86:27:ad:bc:6b:90:68:4a:f0:74:df:79:8b:64:
        1a:22:a8:ec:c6:db:1d:d8:c8:78:26:a3:16:94:7d:4d:
        43:53:bb:81:09:3b:2d:40:07:32:39:c1:66:d9:2d:fc:
        95:c3:14:96:dd:d4:b0:cf:7f:a4:51:e0:07:ce:ce:99:
        9e:87:ee:0b:f5:cf:5c:40:b5:8d:d1:65:e2:e0:e9:69:
        5b:1f:0d:63:11:6c:87:14:1e:f3:1c:9f:0b:c8:fd:5b:
        5b:d2:79:21:bb:6c:0a:d9:6f:02:1b:35:78:8a:35:ce:
        a9:1d:0b:e5:06:d4:56:e2:5b:ad:d0:7a:e7:6b:51:7a:
        2e:13:b6:c6:5c:6d:a6:de:bb:a1:b0:cc:f5:9b:75:ea:
        72:cb:92:b8:bb:88:88:5c:d9:ba:bb:08:7a:96:15:07:
        88:2c:0d:6f:5c:63:56:9f:7f:3d:65:4c:26:cd:00:a1:
        55:ec:21:dd:a3:22:fc:a9:0f:08:fb:58:c2:10:ec:a2
    Fingerprint (SHA-256):
        32:A9:AF:69:BE:57:A4:96:E6:A0:8D:CE:74:2E:B8:6D:FF:33:BB:5D:55:D8:84:65:03:49:4C:28:2F:DC:1E:FE
    Fingerprint (SHA1):
        89:86:1B:C6:7C:FD:AA:73:1D:7C:B9:30:B7:86:5F:CE:3B:44:08:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5453: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:ca
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:06 2017
            Not After : Thu Nov 23 12:32:06 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:52:26:7c:db:84:4d:b2:cf:93:c5:bd:d7:9b:c6:b5:
                    56:fc:d3:fb:63:23:8f:2e:50:09:05:33:03:ea:33:7d:
                    4f:4b:30:e2:70:2c:36:73:35:ef:a6:a0:46:94:81:fd:
                    24:9d:51:d9:56:29:27:7e:4c:c3:5c:e2:f2:bd:85:f3:
                    ab:cc:6f:a0:85:de:71:eb:fb:64:63:92:72:27:ff:35:
                    68:87:1e:cf:7a:e5:9d:9b:26:a3:3a:02:00:66:3e:1c:
                    2b:ab:c5:f4:93:c5:ab:39:0e:36:c8:fb:23:fd:f5:35:
                    ca:b9:7f:48:ac:82:b1:87:3d:d4:aa:2e:47:f4:4d:f2:
                    f6:de:15:d4:3e:90:30:96:7b:9a:7f:5a:e2:7d:ea:d2:
                    b9:1f:90:56:0e:cc:b8:c0:88:57:85:dd:59:3d:33:60:
                    da:b6:d9:04:fa:41:c4:34:82:a4:cb:01:1c:34:fb:c8:
                    b3:fd:84:69:55:6f:31:42:79:65:ec:5e:32:59:a9:cf:
                    5b:78:3e:4f:26:30:fb:11:df:a7:39:d9:ac:d5:a6:14:
                    8a:c9:b6:60:04:a9:20:f6:7e:49:70:98:f7:81:f1:fe:
                    87:ef:39:a0:7f:a3:91:78:ab:04:8c:bd:92:8c:e4:4a:
                    86:fd:89:63:f9:7d:d2:6a:64:9f:22:c5:5c:60:b3:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:68:e0:be:4f:72:06:7f:6e:35:08:3c:30:d7:0b:13:
        63:f0:4a:1d:bf:88:72:87:47:71:68:8c:0c:31:13:3a:
        c8:f3:2b:a5:ac:53:a8:b9:9f:b0:1f:f9:33:a9:7f:63:
        ed:f9:bb:65:d6:2a:e3:d8:ef:f5:4c:dd:af:8c:05:c8:
        e6:57:d6:d2:42:38:36:fa:45:b4:18:cd:f2:15:bc:53:
        cd:1f:7e:e4:16:40:ab:34:b9:95:bd:d3:7a:7b:e4:97:
        1d:b2:a4:4e:be:54:bd:2a:91:8b:3b:f6:5d:e5:a7:29:
        c2:26:27:7b:c3:d3:a9:df:b6:29:97:a8:7e:31:b9:79:
        64:00:23:b7:8e:21:26:68:a0:8a:31:d3:6f:ab:d1:e8:
        38:5a:66:bc:c7:2a:22:75:8c:94:a3:bf:e4:56:ab:3b:
        f2:02:a5:89:fe:c5:c5:43:45:f4:7b:42:00:38:57:14:
        34:5d:e3:b9:2a:67:d0:ea:14:9e:b0:28:39:ca:74:75:
        69:88:a7:44:91:c7:6a:39:af:16:9d:83:dc:f4:64:df:
        bd:7e:5b:7b:23:01:30:82:91:41:6e:c9:3a:93:9f:fc:
        27:4d:d7:7f:39:d4:92:3d:fb:e7:6c:68:79:1d:5c:42:
        d9:9b:43:cd:39:a0:85:d7:dd:0b:4a:15:55:0e:7b:5b
    Fingerprint (SHA-256):
        9B:A9:C3:53:9A:16:65:3F:51:1C:DE:DC:3A:ED:7F:64:91:C6:CA:33:2C:6A:3E:FD:99:96:AB:6B:59:46:12:06
    Fingerprint (SHA1):
        0F:42:1D:FE:E9:E7:23:7F:AD:A6:73:9A:5B:94:FB:64:2F:08:CC:11
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5454: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:ca
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:06 2017
            Not After : Thu Nov 23 12:32:06 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:6a:5f:09:25:b1:5e:d0:d3:8d:07:3e:16:39:1a:75:
                    80:5e:1e:d4:64:a8:97:27:f7:cb:5d:dc:c3:01:48:f6:
                    70:ef:ea:92:47:65:52:6b:02:f2:45:d9:1b:e4:e7:9c:
                    50:63:3a:3e:42:b5:1b:8c:41:47:c9:d5:94:66:72:eb:
                    19:37:3e:64:6d:8e:6f:60:19:25:39:32:99:2f:3a:eb:
                    c6:74:cf:bd:59:bb:db:6d:90:55:82:05:d6:3e:26:63:
                    09:d3:30:cf:ac:15:91:28:6a:2a:b1:c3:a2:08:e4:66:
                    23:07:88:e2:01:2e:ba:4f:e2:04:c3:86:9e:7b:21:fa:
                    68:79:e2:cd:de:40:e9:4a:30:0d:2d:b9:85:b5:7d:a9:
                    9c:39:71:22:26:7f:b4:07:6c:97:c9:d5:27:e7:b6:20:
                    0b:41:43:3e:7c:a8:b7:34:3c:6c:bf:1d:fd:b1:37:2d:
                    00:5f:13:56:d6:84:87:a0:86:e0:77:3e:4b:b6:d4:66:
                    bc:9c:b0:f9:d3:3d:06:f2:90:e5:9f:ea:c3:1f:3e:09:
                    cb:27:0f:8b:75:dd:83:05:9d:fc:56:09:0c:c8:ba:5b:
                    4e:6b:7e:07:94:ca:67:b8:47:b7:45:67:e1:40:ec:4d:
                    8c:78:1e:55:cd:34:f8:4e:68:a7:20:6a:32:4d:da:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:bf:8e:b0:b0:06:61:57:45:e2:0f:51:dc:79:81:c6:
        d2:e7:89:07:ad:5c:f0:27:0b:1f:a4:7f:6b:1e:b1:4d:
        06:de:21:54:f4:1b:cb:18:24:cb:af:a9:2b:44:b8:12:
        97:d4:f2:6a:6d:c9:e5:e5:18:13:30:97:8a:57:1b:18:
        a9:5f:5d:3d:63:54:73:3c:5b:4d:d5:81:f8:3e:8b:e2:
        02:54:54:c6:ad:11:83:dc:52:a5:d7:17:fd:4e:10:4f:
        7c:cb:58:92:e5:f0:bf:bb:b5:0d:bc:5b:9d:c8:0c:ab:
        56:dc:de:2b:30:8c:a4:22:ca:6f:1f:49:b8:f1:8c:dd:
        26:0c:c3:0a:34:70:70:10:ac:fd:46:20:18:8a:4a:7e:
        7a:29:96:0c:3a:d7:8a:71:69:35:e1:20:64:ea:7e:c3:
        c7:95:92:e4:36:fb:63:c5:a2:da:b1:5c:3c:bb:20:79:
        7e:61:68:3c:a3:47:a8:77:e3:9a:83:86:c2:b8:68:3c:
        c9:2a:d4:61:cf:b0:e5:55:9b:b6:42:f6:07:c4:d1:9a:
        42:61:df:86:1a:8f:71:e2:e0:48:8a:94:10:fa:33:e1:
        b6:3c:74:3f:23:01:b1:73:d3:45:14:31:5e:49:6b:f2:
        01:91:ab:53:6a:76:4a:e7:53:58:76:37:c1:65:f3:2d
    Fingerprint (SHA-256):
        CD:64:C4:4F:D2:6C:C3:FE:E6:15:B8:10:18:3F:81:EB:B3:4A:D9:7B:2D:0D:9E:F9:CD:12:EB:32:BC:51:30:62
    Fingerprint (SHA1):
        37:A4:E9:FF:F0:3E:E6:88:2A:FB:07:6F:CA:59:76:24:00:4B:26:24
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5455: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:cb
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:06 2017
            Not After : Thu Nov 23 12:32:06 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8f:5b:18:65:04:c4:ea:83:64:68:93:a8:b4:0e:4f:
                    a2:6f:c1:64:ec:c6:79:7f:3e:1a:74:ce:76:44:69:d6:
                    1f:73:ab:93:65:87:2c:6a:71:e4:8b:08:6b:9e:66:9a:
                    e1:71:17:92:43:fc:d5:d3:a3:dc:fd:df:a7:b0:59:9a:
                    ea:c8:dd:74:fb:07:a9:f6:f1:fa:9c:e3:f2:17:64:d6:
                    09:2a:83:98:a0:e4:a7:9c:91:64:15:a0:7c:82:bb:c6:
                    cf:b0:c0:ac:18:6b:bd:db:4b:ea:58:81:73:66:ea:c6:
                    e7:00:0a:77:fa:e3:78:e2:b1:a9:69:68:77:e4:c5:7b:
                    d2:41:7c:50:a5:13:d2:bd:44:89:85:e0:fa:72:ec:49:
                    8d:06:b0:d4:46:f8:a2:3f:87:57:4d:a9:cd:8a:38:3b:
                    cd:4a:45:af:5e:dc:5a:a8:a4:0a:54:74:d1:68:31:a4:
                    04:2f:47:b4:df:c8:a7:d0:0b:6e:0f:08:9b:60:8e:5d:
                    4a:78:07:ff:57:58:ad:e4:c8:7a:e4:0b:01:2d:74:ba:
                    9d:8e:24:db:d8:f6:5e:88:5d:d7:47:6d:06:6a:4c:ef:
                    6c:78:24:0f:03:b1:35:41:b5:f6:bb:63:a8:e1:da:ef:
                    e2:b8:a8:74:d5:18:ed:94:64:8e:65:b7:18:c8:88:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:6e:5b:f6:5f:bb:97:62:fc:ad:f9:0e:22:1d:84:df:
        9a:a2:95:e6:67:18:d5:71:62:5d:94:3e:c1:19:d3:2c:
        46:a1:dc:87:a5:c0:c8:fc:7a:8e:bc:c6:61:e1:87:e5:
        3b:6d:75:54:ab:94:1b:73:2a:e3:6f:ca:de:20:b6:1a:
        66:79:be:6c:16:1b:de:2c:f4:d4:93:6c:e5:60:d5:1f:
        4d:96:50:cd:02:3f:8c:c3:af:be:15:f2:ef:58:98:c8:
        d1:61:bc:2e:d7:43:da:4a:1c:7f:68:52:db:f4:be:eb:
        56:83:48:3f:d2:19:8e:ef:4d:64:85:be:7a:b3:b0:19:
        30:92:d0:c5:f8:c2:b0:1d:2e:6f:89:99:88:8e:bc:a6:
        f5:62:4a:6b:61:81:4a:21:4b:dd:a1:cc:48:d9:07:f9:
        d1:5d:f9:76:f5:d5:9a:7e:1f:30:c5:cb:93:87:2e:02:
        4f:38:68:1f:db:8f:43:a4:43:4f:08:16:ff:ec:b7:6f:
        26:67:c3:33:3d:37:da:09:de:49:e8:13:6a:8f:79:05:
        2b:48:c0:58:eb:92:90:8b:5d:80:0c:49:e4:74:b9:cf:
        1d:77:c2:47:13:b1:f7:eb:61:c1:68:a8:90:f4:ec:a9:
        0b:5e:7e:6c:3f:53:89:ec:91:f9:9d:3e:6b:7e:2f:b8
    Fingerprint (SHA-256):
        6B:1C:1C:B1:72:6A:7F:6E:11:9D:CD:A9:7D:C6:5F:44:D7:D5:5D:D8:BD:C1:55:59:37:10:07:97:82:05:1D:BB
    Fingerprint (SHA1):
        15:F6:5A:BD:81:30:0C:0D:4F:40:A4:B0:E6:57:3C:65:12:ED:6F:90
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5456: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:cc
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:06 2017
            Not After : Thu Nov 23 12:32:06 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:ac:10:45:ae:cd:58:61:bb:e3:a8:a2:7c:03:53:31:
                    16:20:b1:da:19:c3:8e:cb:ff:86:af:83:fe:36:6a:9c:
                    1b:7d:0a:97:88:7d:6e:0c:7d:94:52:6c:c2:85:3f:40:
                    ab:21:4a:1b:6c:8b:6f:39:0f:57:1c:d3:1a:2a:e2:d9:
                    07:3b:d4:0e:a3:3a:70:e2:b6:f3:dd:a1:8e:cc:2c:61:
                    2a:5d:ac:8c:43:ff:05:c3:ae:7a:e7:2c:f0:d8:97:b7:
                    bf:84:be:ce:48:a8:31:e9:9b:87:85:60:86:f5:67:df:
                    53:83:31:f1:c0:ca:9d:4a:55:8d:f6:d6:30:f8:62:c9:
                    9d:43:02:64:15:ac:e0:70:39:d3:ab:92:56:81:3c:1d:
                    6a:08:24:3e:d1:14:14:25:ca:48:f2:af:52:b6:f0:70:
                    c2:6a:38:87:fb:61:6e:7a:12:5c:35:d8:15:d0:88:22:
                    75:17:9d:3d:60:41:37:d1:06:13:63:6f:ea:ee:15:b1:
                    07:34:8b:aa:da:68:80:ee:fc:ae:c9:eb:93:e8:59:ba:
                    2c:45:aa:5a:3b:85:32:46:2f:84:71:5d:34:be:ec:33:
                    51:b7:a1:b7:d8:66:c4:53:da:74:ed:1e:b8:ba:16:5b:
                    6d:67:a1:6d:31:4b:82:89:d0:bf:b6:fc:80:39:8d:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:43:dd:2d:25:24:54:3b:11:ad:c8:11:28:ae:51:fb:
        6f:9b:c4:69:99:20:0c:4b:a2:b6:9b:2f:4a:f8:29:9d:
        f0:4b:b4:0a:32:39:02:cf:25:da:93:f3:a1:6d:9b:68:
        f8:43:40:38:47:23:a0:9c:78:25:23:e8:ea:0b:29:5e:
        ee:19:f9:da:4b:c1:57:f5:0b:70:7b:f2:4d:db:08:77:
        b8:72:63:65:44:af:d9:f8:fe:15:39:71:ee:43:d1:00:
        75:a5:dc:9e:33:1e:02:6a:0b:26:78:b8:a6:7f:d3:2e:
        aa:9b:c9:c2:c9:11:cc:61:96:ee:19:c0:76:25:04:0f:
        d4:72:6f:b6:17:c5:5c:1f:6f:6f:d6:55:2e:a0:57:fe:
        dd:30:25:55:4f:0e:b9:01:1c:76:b7:42:6f:de:02:24:
        e5:6a:a4:bd:4d:5c:74:47:4d:63:6c:1f:4e:c6:c5:9e:
        94:f2:ab:46:42:e9:1a:2d:f1:e9:a4:e7:23:cd:ff:21:
        b7:01:33:7b:13:db:ee:95:5b:1f:9a:6c:7c:8d:36:0d:
        ce:ee:f3:11:16:ee:a2:3e:47:3f:db:db:3f:8d:46:1c:
        5c:37:3c:48:86:f7:9e:63:2c:79:cb:26:53:98:02:61:
        0b:74:86:90:2f:fb:f5:40:28:cf:76:90:19:1b:17:cc
    Fingerprint (SHA-256):
        59:C4:CF:DC:7D:A4:5C:0F:55:75:AE:16:8A:7B:88:3A:26:E2:0D:5C:06:C9:2F:4A:2B:BE:43:8E:DA:05:96:F3
    Fingerprint (SHA1):
        F1:2F:33:92:4A:ED:52:45:B8:35:77:C6:8C:18:2B:72:5D:A1:9C:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5457: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:cc
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:07 2017
            Not After : Thu Nov 23 12:32:07 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:a7:88:14:69:ac:38:9c:79:a7:cd:1f:b8:5c:19:7e:
                    ee:08:93:ae:9b:95:02:e3:78:37:b8:fa:81:c9:2e:fa:
                    13:e5:3f:34:14:0d:bb:25:50:64:f1:36:d2:f8:42:b3:
                    a5:2b:f9:b4:16:c6:d9:7e:cd:18:d0:e6:79:c9:6e:7a:
                    eb:9b:8c:a4:dd:38:40:3d:65:25:93:ad:63:62:77:3b:
                    d8:fe:59:b2:ba:e7:8a:ae:47:3b:d3:a6:f9:32:05:2c:
                    18:9d:a7:a3:da:35:68:7e:b9:66:db:cb:99:aa:9b:7e:
                    88:be:46:60:08:a2:bd:b4:5e:92:bc:7e:85:2c:9c:fd:
                    fe:0d:23:12:2a:8e:ae:67:63:83:08:b7:9e:9e:87:7f:
                    1d:d7:9e:a7:06:79:0c:82:b7:b6:6c:df:6c:c6:65:6e:
                    31:7d:f5:4c:e1:d7:a2:25:ff:a3:ae:6b:e1:8b:11:7e:
                    e4:ff:a6:69:f2:2d:47:11:17:40:b3:1f:cc:16:2f:86:
                    1b:e1:e4:1e:2f:86:ff:3b:58:92:a8:1f:d1:a4:88:fb:
                    78:8e:39:31:89:c1:28:d9:0b:69:da:e7:23:6f:1f:c3:
                    a0:12:87:10:70:04:dd:a1:db:21:08:9b:06:e5:96:cd:
                    fb:59:94:46:8b:ec:46:a4:d1:aa:32:06:d5:03:d9:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:ab:ba:0f:e8:bc:32:40:27:8a:05:1b:e3:12:2c:b6:
        75:50:55:b0:b3:e8:22:ab:a5:42:70:9d:e4:92:77:f8:
        c5:c4:b7:19:bf:55:2a:b1:42:f0:9d:ed:78:8b:9e:2c:
        d4:3e:05:67:88:3c:81:02:6f:f5:f7:49:50:12:ed:14:
        f8:8f:b2:2b:9c:1c:44:fe:30:43:a3:fa:49:cf:15:01:
        f4:47:56:5c:0c:83:26:5a:fe:bf:72:f8:b1:71:b8:4b:
        2c:fb:d1:ab:9b:8b:e2:a3:6b:fc:b2:95:fe:51:bb:3a:
        c4:5f:ab:8f:ad:7a:42:97:7e:71:03:6a:cb:97:ab:c8:
        f9:85:e2:ce:2e:3d:8e:ce:1d:4f:3f:e7:9f:9d:9c:d9:
        fd:a1:c2:9d:39:18:4e:fd:78:a3:8f:4a:45:05:29:50:
        23:f2:87:8e:e1:52:0e:51:01:ac:71:85:09:5f:ce:04:
        13:7c:e3:23:52:4e:ac:12:2b:f1:4c:2b:55:a9:4e:29:
        14:f6:7b:00:74:f2:1b:fa:6f:72:2b:69:2c:38:25:d9:
        48:6a:81:e7:66:37:de:2a:70:81:8c:c7:38:22:1e:73:
        4b:77:bd:b8:ee:0a:d0:c6:65:6e:30:f8:37:e8:d9:53:
        bf:d5:e6:11:d7:af:b5:8d:a7:ac:52:bb:ec:11:35:5b
    Fingerprint (SHA-256):
        A7:93:DE:04:27:B8:9A:A1:16:B5:2E:00:3C:A8:57:9A:E1:8A:DE:2A:1A:CF:67:7B:F9:1F:3D:8A:3E:52:35:E9
    Fingerprint (SHA1):
        1A:7E:52:2B:D4:54:18:F5:62:88:C1:EB:26:C2:54:3C:37:B6:9E:05
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5458: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #5459: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #5460: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #5461: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:cd
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed Aug 23 12:32:07 2017
            Not After : Thu Nov 23 12:32:07 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:61:b9:be:ec:12:3f:f9:ce:c2:1d:f5:d9:e0:ee:7b:
                    f4:21:b3:58:dc:c4:30:5e:6b:92:cd:09:e7:23:86:c1:
                    69:b3:92:1c:04:67:9e:14:1a:03:99:25:bc:a0:52:98:
                    7b:64:6e:6c:d3:ea:8b:07:fb:09:84:aa:9c:76:aa:73:
                    f7:43:47:e4:64:5c:ba:7a:c8:05:af:75:e4:92:da:4e:
                    7d:bc:5d:07:ec:c4:28:fd:60:49:9c:04:f6:01:98:d6:
                    45:6b:a3:de:7a:92:71:18:5c:fc:f8:48:6c:8b:00:ce:
                    ce:f7:fa:14:02:5d:8b:e9:42:50:1e:d4:54:1b:0a:8a:
                    09:e0:25:9b:f3:90:fc:b4:b3:4a:09:f0:fd:92:a1:2f:
                    de:b5:34:4c:03:8c:c9:e8:b3:28:3d:9d:cd:25:66:cb:
                    bd:f9:a8:f1:da:1c:6e:c8:6c:81:1b:41:90:e8:12:19:
                    13:fe:02:b0:69:de:bb:7a:31:b1:50:f5:b7:0e:0f:be:
                    06:68:e0:9a:01:21:7c:0b:96:31:3b:5e:dd:c4:29:0c:
                    38:73:9a:a3:8a:22:e2:bf:b4:5c:08:34:a4:47:35:4d:
                    51:48:f4:75:b2:0d:e1:e0:cc:60:af:c0:f9:0e:bd:30:
                    08:0a:1d:61:db:48:4f:94:57:5e:ba:dd:6f:dd:22:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:b7:7d:ac:73:e7:44:1d:9d:dc:40:ec:a6:30:22:20:
        6d:55:f5:cc:75:ea:96:bb:53:f0:41:12:f9:af:ba:6d:
        e6:fe:1c:6d:51:e5:b0:3d:2a:05:4c:fc:41:89:8f:03:
        41:d5:f1:7d:e2:45:2e:33:3b:a5:c0:e1:0f:0a:6a:8b:
        59:7e:2a:c3:dc:ae:5e:83:16:c8:b3:2b:56:44:53:83:
        07:e8:f2:f3:da:02:23:77:15:2e:0e:4c:e4:ed:d7:7b:
        56:54:2f:0c:e3:93:d4:6b:fd:4f:22:a0:4c:a2:d9:13:
        98:52:dd:da:76:48:49:5e:89:dd:da:00:42:8b:07:29:
        bc:e7:c0:6a:7c:09:a0:d0:fa:9d:d1:a3:c9:dd:98:ac:
        70:36:22:e2:ce:35:26:de:5f:4c:ca:e9:cf:8d:2a:fe:
        2f:99:8e:56:ce:2c:b8:dd:e8:c6:41:aa:7f:81:cd:84:
        d6:e8:91:68:6d:39:45:ba:c4:07:bf:8f:0a:c5:51:15:
        69:0a:49:d5:7a:c5:13:f1:1d:58:a6:6b:5e:1e:bd:41:
        d1:38:16:65:1a:22:32:ad:a7:0c:d6:fa:0b:ea:c9:b7:
        9e:f9:f9:81:9d:43:8a:fd:60:36:ab:e3:f7:cf:e0:28:
        c8:84:fc:dc:b4:aa:df:97:fc:8d:0f:52:ee:3c:11:7b
    Fingerprint (SHA-256):
        30:D1:D4:8D:4A:E1:F4:5F:12:61:4B:D7:1B:AB:00:AA:A8:9D:2D:BE:73:8C:BF:1B:D1:DB:BD:F0:35:28:8D:8D
    Fingerprint (SHA1):
        73:35:B6:83:65:7E:A0:22:C9:46:7F:FA:61:AA:FD:1D:E7:42:90:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5462: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #5463: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #5464: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #5465: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5466: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5467: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5468: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #5469: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:5c:ce
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed Aug 23 12:32:08 2017
            Not After : Thu Nov 23 12:32:08 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:10:b8:2e:c9:26:33:43:0b:ae:e7:4e:0f:58:3a:d1:
                    27:76:19:b1:30:16:3b:23:d4:fe:89:7d:1e:f4:50:d5:
                    ae:83:61:e8:50:83:b2:eb:48:dc:4a:2c:98:4f:cb:20:
                    09:bd:a5:15:f5:ea:dc:1c:57:48:1c:67:63:48:2c:bb:
                    66:12:ba:a2:e5:30:66:b0:9e:96:ca:f9:fd:b3:1c:af:
                    48:48:5c:cc:3a:9c:70:11:02:ca:ed:7c:7c:45:f3:b4:
                    0a:65:5a:95:dc:a9:46:85:2b:33:b9:7b:46:57:ae:e9:
                    cc:76:71:34:ee:c5:47:56:70:d9:28:51:51:bf:9e:df:
                    31:38:0d:27:70:88:85:de:b4:e7:64:77:9e:88:d8:9a:
                    cb:26:64:b1:8f:46:0e:95:37:7f:c6:9c:24:a1:ba:15:
                    c3:a8:b3:da:9e:48:e4:fe:30:d8:36:38:0d:fa:77:a2:
                    11:47:c3:a6:4a:71:6b:84:eb:c9:65:3e:5c:a7:2f:0d:
                    e7:cf:c7:f7:f1:17:f7:6f:fd:d4:4f:05:6e:df:6a:5c:
                    49:04:b7:67:e7:1e:86:d5:2e:d6:66:09:50:d2:e9:34:
                    31:b3:7b:da:7e:73:a2:99:37:bd:a7:0f:91:25:21:ea:
                    13:34:95:84:07:db:ca:45:fc:a5:a7:c8:12:10:a0:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        39:b2:3a:78:02:d1:86:da:cb:b5:06:1d:f9:e3:62:e3:
        88:78:1f:42:74:83:b2:c0:3b:06:ea:84:3d:17:11:49:
        bf:a7:90:b2:d9:69:6c:84:cb:a9:65:c5:da:6c:5a:71:
        47:1d:5e:11:b7:09:7f:3d:76:d8:57:1c:3e:dc:97:d7:
        98:c3:3c:31:55:8b:12:fa:de:0c:b1:cf:3b:5e:b5:1f:
        20:58:c0:13:55:e0:6b:13:0d:07:1c:64:7d:20:5a:51:
        d0:89:74:95:8b:10:2c:18:c9:1c:e7:6e:bd:3a:0a:8a:
        f7:3d:a9:dd:15:44:8c:2c:83:13:31:bd:21:cb:42:5a:
        31:66:ef:a7:9d:a8:03:fd:07:8b:97:f3:64:ce:88:8b:
        e6:76:49:1b:95:cd:bc:52:75:c3:12:e5:ae:c3:61:04:
        13:e8:f8:c8:ba:9e:43:d7:1a:0d:2f:f9:08:e2:8c:1c:
        c9:c6:c3:6d:e4:39:93:28:79:e6:e2:5d:3e:37:63:ad:
        88:47:5f:80:0a:d1:e6:11:ee:37:7b:b4:70:b0:0e:9f:
        d2:28:e8:b4:97:10:7d:c1:a2:fa:41:ae:e3:3e:97:f7:
        1e:32:8f:96:aa:9a:2d:28:72:49:12:41:fe:8a:0a:d5:
        c7:d4:21:02:5d:4b:33:3c:b7:51:93:b9:3b:e4:90:59
    Fingerprint (SHA-256):
        63:0B:61:83:EC:6B:92:B1:AA:28:FB:F7:BD:C7:4C:CF:62:AD:EC:4B:05:28:99:28:D8:4D:65:17:B8:A2:59:35
    Fingerprint (SHA1):
        73:5D:25:3B:7F:9F:B2:CC:E7:6F:0E:8E:22:EE:55:81:D2:7E:4E:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5470: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #5471: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #5472: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #5473: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5474: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5475: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #5476: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #5477: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5478: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #5479: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #5480: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5481: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #5482: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5483: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #5484: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5485: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #5486: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5487: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5488: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #5489: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5490: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5491: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #5492: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5493: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5494: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #5495: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5496: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5497: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #5498: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5499: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #5500: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #5501: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #5502: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #5503: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5504: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #5505: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5506: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5507: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5508: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5509: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5510: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5511: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5512: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5513: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5514: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5515: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5516: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5517: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5518: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #5519: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5520: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #5521: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5522: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5523: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #5524: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5525: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5526: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #5527: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5528: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5529: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #5530: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5531: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5532: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #5533: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5534: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5535: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #5536: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5537: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5538: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #5539: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5540: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5541: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #5542: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5543: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5544: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #5545: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5546: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5547: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #5548: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5549: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5550: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #5551: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5552: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5553: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #5554: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5555: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5556: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #5557: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5558: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5559: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #5560: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5561: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5562: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #5563: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5564: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5565: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #5566: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5567: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5568: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #5569: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5570: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5571: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #5572: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5573: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5574: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #5575: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5576: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5577: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #5578: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5579: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5580: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #5581: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5582: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5583: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #5584: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5585: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5586: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #5587: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5588: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5589: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #5590: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5591: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5592: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #5593: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5594: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5595: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #5596: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5597: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5598: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #5599: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5600: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5601: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #5602: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5603: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5604: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #5605: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5606: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5607: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #5608: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5609: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5610: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #5611: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5612: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5613: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #5614: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5615: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5616: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #5617: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5618: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5619: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #5620: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5621: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5622: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #5623: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5624: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5625: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #5626: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5627: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5628: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #5629: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5630: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5631: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #5632: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5633: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5634: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #5635: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5636: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5637: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #5638: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5639: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5640: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #5641: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5642: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5643: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #5644: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5645: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5646: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #5647: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5648: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5649: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #5650: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5651: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5652: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #5653: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5654: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5655: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #5656: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5657: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5658: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #5659: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5660: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5661: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #5662: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5663: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5664: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #5665: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5666: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5667: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #5668: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5669: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5670: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #5671: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5672: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5673: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #5674: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5675: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5676: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #5677: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5678: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5679: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #5680: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5681: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5682: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #5683: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5684: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5685: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #5686: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5687: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5688: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #5689: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5690: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5691: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #5692: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5693: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5694: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #5695: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5696: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5697: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #5698: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5699: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5700: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #5701: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5702: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5703: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #5704: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5705: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5706: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #5707: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5708: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5709: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #5710: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5711: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5712: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #5713: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5714: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #5715: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #5716: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #5717: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #5718: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #5719: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #5720: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #5721: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #5722: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #5723: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #5724: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #5725: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #5726: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #5727: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #5728: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #5729: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #5730: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #5731: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed Aug 23 12:32:25 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed Aug 23 12:32:25 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5732: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d6:b5:d0:78:1f:42:b5:7f:cb:5f:a7:1e:e1:67:d9:45
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5733: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5734: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5735: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5736: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0c:ca:a9:72:73:51:08:ce:e4:02:91:be:04:f2:c9:93
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:31:57 2017
            Not After : Tue Aug 23 12:31:57 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:c9:f6:cb:88:cb:9d:35:fc:c8:68:68:97:c3:00:
                    a8:0c:0d:b9:8b:e0:21:82:97:31:38:36:67:c7:38:79:
                    5d:95:7a:44:2d:d0:8d:83:6f:b3:8a:ff:47:bf:13:00:
                    b6:d0:f7:87:5a:e0:5f:25:b2:b0:9a:07:27:1c:be:6a:
                    f9:bd:40:00:ae:78:ca:da:43:31:a7:eb:ec:4b:24:5e:
                    55:27:b5:ff:df:3e:ae:26:d6:6f:36:ac:46:96:25:09:
                    58:5f:17:02:94:35:11:33:b3:b6:fd:49:4f:8e:51:c3:
                    d4:9d:3d:57:9b:f7:36:29:02:8a:2b:53:20:60:a5:f1:
                    79:b1:8b:69:54
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:00:9b:71:c4:21:ff:88:d1:a4:fe:07:
        dc:45:af:87:03:1d:17:c2:eb:9a:36:10:f1:a4:8e:93:
        1b:fd:09:f5:ee:c7:c1:bf:b7:e3:94:03:1c:7f:3d:e4:
        75:51:6a:4b:f4:e6:b1:e1:aa:fa:61:dc:ae:94:11:ae:
        43:0f:36:6b:b8:f3:25:02:42:01:c0:1f:36:c5:18:64:
        87:9d:a2:49:00:78:ff:96:da:19:37:7d:63:35:82:4d:
        d8:b6:bd:1b:65:66:0f:e0:d7:43:29:87:7f:2e:09:24:
        e0:63:83:91:5c:6e:93:37:71:a0:0b:ad:17:04:f5:8f:
        be:bf:56:09:13:3b:b5:60:0d:64:f2
    Fingerprint (SHA-256):
        99:C5:62:2A:72:FE:95:73:D2:F8:07:D5:4E:F1:64:3E:E2:94:F9:F6:1A:1A:DF:1E:9A:C4:17:2C:45:72:DD:AA
    Fingerprint (SHA1):
        DA:8C:0E:A5:E8:1B:4B:4C:1A:12:DE:5D:BA:24:8B:CB:B7:9E:3B:2B
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:80:62:51:dc:d0:40:4b:c8:86:16:cd:8d:a1:4d:fd:
                    22:05:89:2f:48:29:a7:c2:49:13:08:7e:91:e8:24:e0:
                    44:c9:8a:b9:4f:c2:02:85:1e:2d:77:84:16:45:66:e1:
                    ab:47:b6:96:ae:2b:df:35:e8:20:81:11:08:76:e5:bb:
                    52:8c:a3:74:1e:f9:f2:c3:d7:89:10:db:86:ac:bd:65:
                    8e:de:29:96:c6:f4:e9:d8:93:51:6f:2e:a6:b7:1e:58:
                    18
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:41:6d:73:08:89:0a:cc:99:ef:b1:a8:29:
        d3:7e:49:35:ea:b3:f5:a9:e1:78:04:b7:aa:13:6a:ca:
        18:ed:09:85:65:e4:84:25:2d:67:8f:28:34:96:1b:58:
        c2:67:a0:97:66:f1:1b:ca:05:83:f8:7e:a7:a0:ce:80:
        34:87:60:c6:96:4c:02:42:01:64:a1:74:f3:82:f7:4a:
        cb:ae:cb:c0:f9:ab:14:8c:83:0d:6b:e1:65:b5:bc:ce:
        78:fc:ea:8f:b2:c7:fd:03:c1:52:60:17:d0:0f:6c:cc:
        74:c3:80:b7:51:2e:e1:63:c2:26:fa:a2:55:ae:e4:4d:
        dc:e4:76:d1:96:48:e6:49:17:21
    Fingerprint (SHA-256):
        67:5B:AC:28:C4:3D:79:98:1B:27:8C:35:FA:1B:35:85:1F:A4:7F:42:20:FD:2E:C3:8B:E1:82:59:93:04:97:3F
    Fingerprint (SHA1):
        8C:83:7A:42:01:A5:39:29:B7:E3:05:EB:2E:3A:FD:DB:81:26:28:16
    Friendly Name: Alice-ec
tools.sh: #5737: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5738: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                4c:b0:f5:1f:44:51:72:31:ad:30:e5:a8:db:82:4a:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5739: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5740: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5741: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                11:60:3d:14:6b:09:57:99:ba:c7:99:2e:68:e2:91:2d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5742: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5743: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5744: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                80:c7:42:ea:4e:c1:90:9c:11:f7:55:c5:92:ae:1e:2a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5745: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5746: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5747: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                11:f4:1e:f4:a3:21:c1:aa:07:8d:78:b8:77:9d:1f:76
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5748: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5749: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5750: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0b:af:4e:d2:66:d2:7a:48:c7:a9:16:45:b1:78:e1:74
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5751: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5752: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5753: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                a7:3f:a7:64:9e:2c:80:e5:75:f2:2c:37:80:5f:00:49
            Iteration Count: 2000 (0x7d0)
tools.sh: #5754: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5755: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5756: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                17:3f:f6:e4:5b:f9:80:9b:0f:06:1f:14:0d:ab:7d:b1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5757: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5758: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5759: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d4:27:b3:80:f0:2d:1f:ab:72:2e:ed:c0:69:fc:d5:ec
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5760: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5761: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5762: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bd:71:fb:14:b8:71:75:79:19:da:35:b5:6a:80:18:65
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5763: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5764: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5765: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2e:70:dd:19:9a:c8:d0:14:23:1a:29:ee:b9:54:d3:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5766: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5767: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5768: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a5:a4:49:53:05:07:41:fd:9d:b1:2d:5b:7f:a2:48:0c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5769: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5770: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5771: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ed:25:12:ee:e9:b0:59:e8:ef:e6:d8:c5:bf:93:0f:1a
            Iteration Count: 2000 (0x7d0)
tools.sh: #5772: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5773: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5774: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5c:0d:8e:98:35:07:dc:f4:55:b3:ec:e9:1a:d6:2d:35
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:4f:88:03:83:69:8f:0e:95:fb:96:d2:f0:9f:b5:
                    9b:1e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5775: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5776: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5777: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6f:9e:27:05:78:7d:ab:1b:1d:b0:bf:60:03:aa:cf:8b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:6e:e2:98:9d:d5:1e:da:bb:cb:8e:ca:77:fb:2b:
                    c8:65
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5778: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5779: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5780: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        69:d6:fb:96:73:6c:7c:87:ea:ac:d2:85:ae:8c:b5:09
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:fc:ae:85:ea:fc:3d:87:dc:16:fd:b5:41:fb:e0:
                    87:81
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5781: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5782: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5783: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        09:f3:c1:ac:7c:c0:65:51:75:08:c4:d6:1e:02:d8:79
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:85:7d:9e:33:c6:93:6c:f8:d5:52:32:db:20:ac:
                    8b:b3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5784: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5785: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5786: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fc:28:54:8a:62:5e:a9:23:bb:57:44:92:4f:da:5d:ab
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:f0:e7:34:cf:f5:be:8a:91:09:60:e7:da:01:15:
                    3b:bb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5787: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5788: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5789: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7f:d9:ff:3b:93:df:8b:13:1f:6b:61:7a:35:02:a3:9b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:f9:5f:5a:17:60:60:98:80:4e:b0:26:65:e9:b4:
                    39:97
tools.sh: #5790: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5791: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5792: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        47:2d:71:78:d8:dc:86:74:e8:09:1f:22:b9:0d:3d:77
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:49:2d:df:4b:ea:7b:1b:65:91:91:c4:a7:53:39:
                    2f:d8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5793: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5794: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5795: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        91:18:22:88:36:ce:14:88:9b:21:00:d4:1d:4c:8b:26
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:3a:ec:17:e8:01:50:ed:ff:ca:53:5b:c4:73:cd:
                    b6:f1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5796: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5797: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5798: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        72:70:58:17:c5:22:35:45:b3:3b:82:79:ad:ff:58:14
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:3c:72:4c:4d:3e:ae:4d:19:06:71:24:d9:08:18:
                    ed:c7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5799: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5800: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5801: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d2:fb:f5:92:2c:d0:c6:a5:97:74:13:7e:45:c9:3e:4b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:4a:79:c3:61:bb:25:ff:f0:7a:62:d5:5b:5f:af:
                    c1:37
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5802: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5803: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5804: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        97:e0:02:25:50:3d:a4:59:38:13:fd:03:33:7a:0e:fb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:6e:5b:aa:3b:7d:10:10:71:21:ab:fa:e6:66:0f:
                    07:1e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5805: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5806: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5807: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        64:6e:f0:b9:0b:15:78:09:04:a1:5a:8f:1c:e8:32:8f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d5:91:89:b5:62:db:77:0c:98:c4:38:8e:bf:fd:
                    ba:05
tools.sh: #5808: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5809: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5810: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f9:98:6d:e0:68:ee:42:9b:d1:2b:12:05:d0:44:d7:74
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:f7:72:c6:ce:50:5c:1b:63:2a:90:0b:85:7e:e6:
                    b1:43
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5811: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5812: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5813: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4b:27:0a:85:f2:73:93:c7:21:08:81:c7:14:d7:aa:6c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:53:ef:de:7a:da:11:b4:94:b0:22:e5:b8:f2:84:
                    51:ed
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5814: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5815: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5816: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6d:dc:c0:58:6f:47:f2:2c:77:5e:d9:4d:27:38:12:38
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:8c:2c:30:80:55:48:8c:00:78:3d:e3:c4:8b:ff:
                    63:48
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5817: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5818: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5819: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f5:ee:12:05:58:05:93:4f:c2:f5:c3:24:66:8d:10:0f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:36:01:82:ea:ab:10:c6:d1:57:f5:75:95:12:0f:
                    ec:3a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5820: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5821: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5822: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bd:2d:28:7c:c4:8c:12:5c:51:c9:95:42:34:9b:dd:14
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:33:6a:c1:31:05:52:2d:3b:67:16:76:6f:fe:cf:
                    8d:7c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5823: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5824: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5825: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d5:2c:9c:88:d1:3d:22:b6:81:23:d4:46:47:fe:1a:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ad:cd:eb:7c:e8:50:37:21:0b:4a:0f:0c:49:bb:
                    36:13
tools.sh: #5826: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5827: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5828: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ec:23:0a:6a:e2:66:3a:ef:89:56:6a:33:58:36:c7:68
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:5d:43:b3:88:36:d2:b8:22:c5:14:1a:53:b5:0e:
                    80:a5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5829: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5830: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5831: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b0:49:76:68:82:78:39:e7:01:e2:60:07:d0:73:6f:c5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:13:92:04:45:30:66:56:d4:92:94:36:90:3f:84:
                    93:ca
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5832: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5833: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5834: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        eb:e2:ac:27:65:c6:f9:82:f9:87:bc:89:51:44:cc:e1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:63:24:df:d3:e7:98:bb:97:7d:d3:d6:20:90:03:
                    1e:49
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5835: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5836: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5837: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        87:1d:00:49:76:fd:1a:6b:64:46:f1:44:81:27:bb:29
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:09:d9:24:c9:8e:49:23:7b:dc:53:08:71:ba:d0:
                    b0:a2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5838: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5839: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5840: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        58:16:ce:05:2e:d7:fb:e0:e6:34:9e:e6:9f:63:a0:25
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:be:bd:3e:db:34:a1:83:cb:94:88:8d:8c:35:57:
                    62:0b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5841: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5842: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5843: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        02:62:55:54:61:5e:ac:ed:20:5a:35:92:58:f4:3b:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:e1:24:ad:d4:fd:85:2e:35:81:48:fb:d4:ad:fc:
                    1b:d6
tools.sh: #5844: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5845: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5846: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        19:d3:b0:08:a1:5f:78:e6:98:bf:75:69:7a:3b:56:ab
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:ee:90:86:f0:3e:bb:9f:7a:ee:c5:5c:09:82:de:
                    e7:0a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5847: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5848: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5849: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        de:31:76:64:63:86:51:9e:31:c5:12:ef:84:69:59:b8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:d9:09:d6:00:8c:1c:6d:73:1b:79:c2:29:0f:5c:
                    b3:83
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5850: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5851: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5852: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a9:e5:f2:1a:80:58:47:68:12:60:e6:96:4b:8f:d0:4b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:b3:fd:d4:21:b8:fe:ad:b5:52:13:ec:82:4c:4e:
                    60:df
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5853: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5854: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5855: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        11:79:8e:4d:5b:74:53:f5:79:d4:c0:43:d8:1b:6f:49
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:9d:67:2a:94:de:69:ce:29:dd:9a:a3:21:53:4f:
                    ce:cf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5856: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5857: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5858: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c0:2e:dc:b2:f2:40:05:33:0b:70:f5:27:1e:04:1c:5c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:21:89:f0:82:0a:52:3e:60:67:02:c1:7d:d0:e6:
                    97:75
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5859: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5860: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5861: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        43:93:3c:42:83:71:0e:0d:ac:75:32:50:17:99:e7:ac
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:71:92:02:b2:bf:91:d3:bd:c3:38:9d:21:de:a8:
                    76:d9
tools.sh: #5862: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5863: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5864: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        05:cc:e5:9a:bc:31:ca:df:ae:49:a4:ae:94:13:f9:22
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:9e:e8:7e:1d:53:7a:9c:c4:f4:04:dd:56:aa:10:
                    f9:8f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5865: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5866: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5867: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        99:4f:78:24:44:ab:32:6d:e7:61:e7:a6:be:b3:f8:ee
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:99:c5:48:11:03:d8:c6:fb:5b:27:ce:d4:7b:2d:
                    77:8e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5868: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5869: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5870: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f7:e8:87:90:7b:0b:da:18:02:f6:68:04:53:d2:14:fb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:7c:ba:ff:55:19:93:d1:ea:ce:97:91:58:f2:ab:
                    11:47
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5871: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5872: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5873: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        38:87:87:f5:73:9a:9d:16:f7:d2:eb:26:77:93:e2:79
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:5d:27:13:a9:2a:0f:9f:5a:f4:e1:a8:4f:23:78:
                    e8:dc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5874: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5875: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5876: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a9:b3:e4:d8:88:e1:13:30:97:4e:39:72:ba:56:4a:d3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:90:a2:65:79:03:8f:f2:41:32:b5:c4:bb:f2:40:
                    10:46
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5877: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5878: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5879: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        77:96:0e:5a:f0:f7:52:b7:64:41:bb:f0:0c:77:94:41
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:2e:72:b4:75:4b:e5:3a:a3:4f:b4:e5:76:0b:da:
                    8d:dc
tools.sh: #5880: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5881: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5882: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                b5:13:f0:22:87:33:3f:9e:91:a0:78:1e:bf:f0:18:dd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5883: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5884: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5885: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                c8:34:e1:4a:00:e9:90:6c:8b:b5:9b:a8:5e:ce:3e:bb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5886: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5887: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5888: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                5c:f8:5e:69:e5:0d:f0:7e:88:07:f7:45:7f:35:67:04
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5889: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5890: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5891: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                8d:cd:f6:d0:1b:5b:96:44:20:a3:5f:31:29:c7:32:b0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5892: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5893: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5894: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                fe:53:9f:c2:ce:b0:67:e2:73:5d:14:e2:68:02:9a:cc
            Iteration Count: 2000 (0x7d0)
tools.sh: #5895: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5896: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5897: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                19:e1:bf:50:65:17:5b:a0:19:c0:3e:2a:c4:ea:67:42
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5898: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5899: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5900: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                d7:d6:a3:27:cb:3a:b4:c9:43:e4:01:3d:d9:b6:f7:7c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5901: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5902: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5903: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                34:74:23:f2:ba:f6:92:8c:46:10:91:aa:9f:94:54:3c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5904: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5905: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5906: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                f2:d8:9e:ab:c2:eb:88:25:3b:78:b3:f8:5c:f4:0d:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5907: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5908: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5909: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                79:8c:be:9a:99:0e:96:b0:2d:48:13:a0:31:30:1d:2f
            Iteration Count: 2000 (0x7d0)
tools.sh: #5910: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5911: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5912: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                61:e8:9b:6f:d8:d4:a6:d0:49:e3:59:64:5a:29:9c:69
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5913: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5914: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5915: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                98:2e:4b:23:1e:a7:12:56:37:8a:d7:61:ea:60:ae:01
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5916: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5917: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5918: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b6:10:cf:67:37:2e:7e:51:a9:c2:b4:7f:2d:0b:d4:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5919: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5920: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5921: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                21:2e:e1:0c:84:16:96:56:96:e9:9c:f5:4d:b0:c8:b1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5922: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5923: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5924: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                12:2a:c4:cb:a6:a9:07:79:85:21:10:96:60:a0:d8:46
            Iteration Count: 2000 (0x7d0)
tools.sh: #5925: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5926: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5927: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:f8:56:7f:70:17:30:fd:37:24:0d:3a:3b:6e:7e:9e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5928: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5929: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5930: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a0:bb:8d:3a:79:28:27:5f:41:81:81:68:ba:e5:f2:3f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5931: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5932: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5933: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                04:86:27:1c:32:f0:18:f5:a1:18:c0:18:f2:a9:bf:ae
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5934: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5935: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5936: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1e:0b:49:f3:71:96:86:b9:0b:29:f7:e2:03:a3:ff:bc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5937: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5938: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5939: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                87:d4:29:a7:55:42:be:6d:62:d0:05:01:95:2e:0f:02
            Iteration Count: 2000 (0x7d0)
tools.sh: #5940: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5941: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5942: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f2:cb:e2:11:45:22:d5:70:14:73:4f:de:ee:25:30:41
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5943: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5944: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5945: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e6:97:c1:7f:7d:ec:0c:14:2a:39:8f:27:95:86:32:a8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5946: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5947: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5948: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                43:f8:b3:32:14:ea:e3:c2:21:dc:b4:15:70:b1:c2:4a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5949: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5950: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5951: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bb:aa:49:77:d7:af:cc:1a:61:67:7b:e6:c6:93:19:be
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5952: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5953: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5954: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4a:55:ee:54:01:e6:f7:7b:7d:24:76:c1:12:b7:d7:03
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5955: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5956: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5957: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                79:ff:0d:63:bd:a9:5a:0b:54:db:2c:bf:ea:0c:68:ff
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5958: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5959: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5960: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b2:3d:58:db:ed:7f:a4:43:61:6e:cd:ed:85:8e:f9:e1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5961: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5962: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5963: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cc:f7:3a:8f:e0:54:6c:5d:9c:df:48:61:f3:eb:37:0e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5964: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5965: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5966: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                03:be:28:91:18:6c:a7:d1:3d:33:ad:49:6e:cb:4d:44
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5967: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5968: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5969: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                73:cf:ca:9c:1d:b7:4a:43:4b:61:98:aa:3a:3c:89:a4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:31:56 2017
            Not After : Tue Aug 23 12:31:56 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:ab:01:7d:96:20:01:db:9e:55:fb:a0:7b:be:50:19:
                    7f:f6:a1:91:7e:51:db:1a:81:e7:36:7b:2a:dd:d2:c7:
                    2c:4c:02:35:ca:fb:4e:36:42:39:02:1c:1a:00:00:d3:
                    08:69:ac:6c:b4:e5:33:6e:c5:fa:61:42:34:fb:d0:79:
                    96:55:7a:5c:c2:37:95:ac:b4:c5:8b:5e:d2:3f:b5:a0:
                    bd:e0:79:6d:42:e1:04:3e:f8:85:81:18:2c:1f:3d:c8:
                    c2:68:28:2a:5f:e6:16:36:67:c5:f6:4e:86:e8:c3:9c:
                    b5:13:e8:d7:f4:36:e6:a1:c6:1e:e8:cc:52:13:ad:79:
                    4b:04:88:15:e9:95:5c:7d:a6:29:7e:30:32:24:a4:4a:
                    68:2e:ab:8a:06:9a:17:77:4f:67:bc:ed:cc:76:d1:11:
                    83:78:c3:a6:02:f0:3d:32:56:1d:8b:49:07:85:e1:c4:
                    de:57:c4:3a:26:4f:ba:08:58:e2:a8:2b:76:2c:d9:fc:
                    de:45:a7:5f:67:5e:24:86:7f:fb:e0:02:a1:58:62:a2:
                    ab:f6:f1:f1:01:53:72:bc:38:82:49:8a:97:31:f7:a3:
                    61:ac:8f:8f:6c:b2:28:6e:39:8a:dc:55:3b:f6:71:96:
                    d7:b3:e6:bf:e1:c1:41:58:30:7d:aa:f6:ce:78:35:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:ef:b4:84:2f:44:61:18:35:82:28:91:fc:fe:13:3f:
        2c:63:39:85:ac:7d:eb:e9:e4:4a:2d:3e:b2:3b:ef:dc:
        52:08:3d:65:cd:27:ca:b3:d3:b9:1c:18:b2:58:b5:6e:
        16:22:b1:5a:ed:7a:26:08:2f:de:ac:6d:8f:f0:02:5a:
        e1:2d:20:48:fa:14:41:33:11:00:b0:84:85:da:f3:c0:
        32:da:c7:3f:b4:8f:76:ef:12:7f:2d:7f:af:c0:0d:e6:
        72:03:aa:dc:ad:5a:a9:20:57:bb:e8:17:74:21:f1:3b:
        c5:49:5a:8d:08:25:1a:92:00:56:b6:3b:25:a3:eb:57:
        29:b3:e3:b8:2b:77:9d:59:89:84:1a:49:9c:d8:a5:e6:
        1b:2a:6a:e4:c6:3d:fe:2f:95:be:9c:e1:6e:f9:f8:61:
        f6:55:54:ba:96:fa:65:18:b7:fe:05:77:f3:37:ac:b6:
        69:0f:23:7b:f2:b9:57:e2:c4:af:8b:8b:d9:da:df:a6:
        88:32:57:0a:14:3f:17:e8:35:76:7d:d6:27:8d:49:36:
        28:d2:c4:a7:cd:93:88:fc:70:4e:58:47:41:4a:99:54:
        70:72:e3:d2:93:66:53:fc:4b:96:ad:a6:56:eb:c2:74:
        32:d3:e6:fc:0f:18:e1:11:dc:22:ec:0c:5f:09:15:60
    Fingerprint (SHA-256):
        07:40:5D:42:F6:5B:C6:D3:B2:71:08:0B:55:B7:19:25:33:0F:E6:F0:8C:E0:4D:71:68:1C:46:87:41:49:92:E3
    Fingerprint (SHA1):
        F8:37:B6:34:F1:46:CF:E4:C0:AC:D0:B0:02:EF:8D:AC:9F:D5:B9:59
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:32:01 2017
            Not After : Tue Aug 23 12:32:01 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:65:84:d4:b4:f0:0e:63:0b:6b:6a:60:4f:e0:62:cb:
                    6b:e6:b7:c0:12:dc:64:95:c4:02:0a:02:13:de:54:05:
                    43:08:5b:e5:7e:fa:76:3f:e0:e0:64:7e:42:6b:98:fd:
                    0a:58:aa:a0:75:58:c9:d8:25:b2:b9:f8:8b:f9:48:09:
                    88:8f:60:b3:95:6c:80:e5:fa:eb:aa:94:8f:eb:2d:bd:
                    2e:94:bb:14:ef:ad:ca:01:6b:d4:ed:97:2b:f9:79:03:
                    7c:59:6f:3d:0a:72:8e:d8:82:cb:e5:25:99:b0:b8:7f:
                    55:ce:9a:e0:49:08:ff:f0:49:3d:23:60:d2:9f:ad:39:
                    c5:cb:28:a8:f2:23:05:79:ac:d5:3c:3d:2a:df:69:2e:
                    72:d5:e8:63:97:17:a7:bf:5b:58:2d:bf:44:b6:81:b0:
                    0d:f0:ab:c2:f6:0e:bb:23:9c:fc:56:f8:6d:42:3a:8e:
                    e6:16:c8:4d:f3:f9:e3:57:d7:ff:28:97:a1:78:ac:65:
                    e4:10:9f:75:8a:a0:96:78:bf:21:dc:e4:ce:9a:4a:68:
                    53:cd:e2:a4:88:9e:51:48:2d:c1:3c:ee:c1:78:95:f6:
                    6c:3a:82:e1:71:0f:06:ea:a3:a0:fb:84:d7:a0:61:20:
                    b3:d4:41:b3:37:88:ef:90:f7:a4:b1:10:f2:c1:05:4f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:9c:b6:11:25:cc:a8:22:c1:46:2a:7d:8f:df:a4:7b:
        c5:e1:d6:67:2c:9b:e5:e8:a2:e0:52:8f:c0:e8:8f:0f:
        04:59:f7:05:88:5c:8e:a0:c6:51:3a:9a:14:cf:49:8f:
        b9:67:b5:75:97:be:47:12:89:02:e8:76:c6:50:82:60:
        43:70:64:81:08:5b:1f:4a:88:db:eb:02:6b:b9:93:f4:
        82:0c:67:2b:92:5e:eb:b1:66:0f:fc:98:15:1a:88:8a:
        1a:c7:c4:c1:a0:da:e0:39:c0:46:5e:95:85:7f:4f:ff:
        ac:32:e8:68:04:2d:66:68:f3:c9:c4:32:04:48:3a:a5:
        f7:a5:5e:bd:5b:39:b6:d1:78:ec:55:f3:54:fc:67:e6:
        a1:d2:17:d2:e2:8a:91:17:23:40:73:89:b8:1e:9e:c1:
        77:b2:82:96:fb:c3:0f:4b:8a:f4:f4:aa:24:34:58:c4:
        7a:62:3c:7b:97:1a:62:ba:3a:39:2f:a4:0b:61:b8:17:
        53:91:65:c6:05:cc:b8:de:58:fb:39:f6:45:85:39:15:
        7a:99:41:0a:1b:29:88:0b:51:ac:0d:f3:22:85:9f:01:
        98:57:35:5c:3e:f0:6b:d7:9b:fc:f4:05:01:38:b4:85:
        a8:89:ed:4e:4a:17:ce:d3:f7:2f:42:00:96:98:3d:c6
    Fingerprint (SHA-256):
        F8:0B:C2:B2:D5:78:AC:9C:8A:7D:91:D3:94:D4:D3:9C:5A:01:58:91:8B:2C:81:A6:17:02:1D:D8:40:39:9C:78
    Fingerprint (SHA1):
        96:9D:7E:76:A6:80:A9:92:D1:B9:C3:EB:F2:A0:2E:5A:F5:CC:C3:03
    Friendly Name: Alice
tools.sh: #5970: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5971: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #5972: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5973: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #5974: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #5975: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #5976: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5977: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #5978: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #5979: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5980: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed Aug 23 12:32:30 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed Aug 23 12:32:30 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5981: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5982: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      45672e9a3e44d0e6a2f97ee37d7302c9a69c4379   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5983: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5984: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5985: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5986: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5987: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5988: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5989: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5990: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5991: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5992: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5993: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      45672e9a3e44d0e6a2f97ee37d7302c9a69c4379   FIPS_PUB_140_Test_Certificate
fips.sh: #5994: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5995: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5996: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5997: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5998: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      45672e9a3e44d0e6a2f97ee37d7302c9a69c4379   FIPS_PUB_140_Test_Certificate
fips.sh: #5999: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #6000: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #6001: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x0003fd70 (261488): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #6002: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed Aug 23 12:32:40 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed Aug 23 12:32:40 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18446 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18446 found at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 with PID 18446 started at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6003: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 18446 at Wed Aug 23 12:32:40 UTC 2017
kill -USR1 18446
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18446 killed at Wed Aug 23 12:32:40 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18502 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18502 found at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 with PID 18502 started at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6004: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 18502 at Wed Aug 23 12:32:40 UTC 2017
kill -USR1 18502
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18502 killed at Wed Aug 23 12:32:40 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18562 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18562 found at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 with PID 18562 started at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6005: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 18562 at Wed Aug 23 12:32:40 UTC 2017
kill -USR1 18562
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18562 killed at Wed Aug 23 12:32:40 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18631 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18631 found at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 with PID 18631 started at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6006: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 18631 at Wed Aug 23 12:32:40 UTC 2017
kill -USR1 18631
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18631 killed at Wed Aug 23 12:32:40 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18687 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18687 found at Wed Aug 23 12:32:40 UTC 2017
selfserv_9223 with PID 18687 started at Wed Aug 23 12:32:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6007: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 18687 at Wed Aug 23 12:32:40 UTC 2017
kill -USR1 18687
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18687 killed at Wed Aug 23 12:32:40 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18743 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18743 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 18743 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6008: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 18743 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 18743
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18743 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18812 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18812 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 18812 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6009: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 18812 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 18812
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18812 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18868 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18868 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 18868 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6010: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 18868 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 18868
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18868 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18925 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18925 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 18925 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6011: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 18925 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 18925
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18925 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18993 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18993 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 18993 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6012: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 18993 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 18993
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18993 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19049 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19049 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 19049 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6013: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19049 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 19049
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19049 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19108 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19108 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 19108 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6014: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19108 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 19108
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19108 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19176 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19176 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 19176 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6015: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19176 at Wed Aug 23 12:32:41 UTC 2017
kill -USR1 19176
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19176 killed at Wed Aug 23 12:32:41 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19233 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19233 found at Wed Aug 23 12:32:41 UTC 2017
selfserv_9223 with PID 19233 started at Wed Aug 23 12:32:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6016: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19233 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19233
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19233 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19289 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19289 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19289 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6017: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19289 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19289
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19289 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19357 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19357 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19357 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6018: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19357 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19357
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19357 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19413 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19413 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19413 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6019: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19413 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19413
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19413 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19469 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19469 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19469 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6020: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19469 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19469
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19469 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19537 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19537 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19537 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6021: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19537 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19537
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19537 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19593 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19593 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19593 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6022: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19593 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19593
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19593 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19649 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19649 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19649 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6023: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19649 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19649
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19649 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19717 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19717 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19717 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6024: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19717 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19717
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19717 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19774 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19774 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19774 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6025: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19774 at Wed Aug 23 12:32:42 UTC 2017
kill -USR1 19774
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19774 killed at Wed Aug 23 12:32:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19831 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19831 found at Wed Aug 23 12:32:42 UTC 2017
selfserv_9223 with PID 19831 started at Wed Aug 23 12:32:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6026: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19831 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 19831
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19831 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19901 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19901 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 19901 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6027: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19901 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 19901
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19901 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19957 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19957 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 19957 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6028: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 19957 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 19957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19957 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20013 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20013 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20013 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6029: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20013 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20013
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20013 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20081 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20081 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20081 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6030: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20081 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20081
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20081 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20137 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20137 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20137 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6031: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20137 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20137
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20137 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20193 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20193 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20193 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6032: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20193 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20193
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20193 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20261 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20261 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20261 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6033: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20261 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20261
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20261 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20318 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20318 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20318 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6034: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20318 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20318
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20318 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20374 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20374 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20374 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6035: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20374 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20374
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20374 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20442 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20442 found at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 with PID 20442 started at Wed Aug 23 12:32:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6036: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20442 at Wed Aug 23 12:32:43 UTC 2017
kill -USR1 20442
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20442 killed at Wed Aug 23 12:32:43 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20498 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20498 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20498 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6037: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20498 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20498
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20498 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20554 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20554 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6038: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20554 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20554
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20554 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20622 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20622 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20622 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6039: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20622 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20622
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20622 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20678 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20678 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20678 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6040: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20678 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20678 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20735 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20735 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20735 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6041: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20735 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20735
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20735 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20804 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20804 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20804 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6042: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20804 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20804
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20804 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20860 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20860 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20860 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6043: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20860 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20860
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20860 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20916 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20916 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20916 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6044: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 20916 at Wed Aug 23 12:32:44 UTC 2017
kill -USR1 20916
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20916 killed at Wed Aug 23 12:32:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20984 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20984 found at Wed Aug 23 12:32:44 UTC 2017
selfserv_9223 with PID 20984 started at Wed Aug 23 12:32:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6045: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 20984 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 20984
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20984 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21040 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21040 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21040 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6046: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21040 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 21040
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21040 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21097 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21097 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21097 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6047: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21097 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 21097
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21097 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21165 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21165 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21165 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6048: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21165 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 21165
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21165 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21221 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21221 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21221 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6049: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21221 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 21221
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21221 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21277 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21277 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21277 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6050: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21277 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 21277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21277 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21345 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21345 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21345 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6051: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21345 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 21345
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21345 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21402 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21402 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21402 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6052: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21402 at Wed Aug 23 12:32:45 UTC 2017
kill -USR1 21402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21402 killed at Wed Aug 23 12:32:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21459 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21459 found at Wed Aug 23 12:32:45 UTC 2017
selfserv_9223 with PID 21459 started at Wed Aug 23 12:32:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6053: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21459 at Wed Aug 23 12:32:46 UTC 2017
kill -USR1 21459
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21459 killed at Wed Aug 23 12:32:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21527 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21527 found at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 with PID 21527 started at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6054: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21527 at Wed Aug 23 12:32:46 UTC 2017
kill -USR1 21527
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21527 killed at Wed Aug 23 12:32:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21583 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21583 found at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 with PID 21583 started at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6055: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21583 at Wed Aug 23 12:32:46 UTC 2017
kill -USR1 21583
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21583 killed at Wed Aug 23 12:32:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21639 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21639 found at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 with PID 21639 started at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6056: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21639 at Wed Aug 23 12:32:46 UTC 2017
kill -USR1 21639
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21639 killed at Wed Aug 23 12:32:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21707 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21707 found at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 with PID 21707 started at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6057: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21707 at Wed Aug 23 12:32:46 UTC 2017
kill -USR1 21707
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21707 killed at Wed Aug 23 12:32:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21764 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21764 found at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 with PID 21764 started at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6058: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21764 at Wed Aug 23 12:32:46 UTC 2017
kill -USR1 21764
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21764 killed at Wed Aug 23 12:32:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21820 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21820 found at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 with PID 21820 started at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6059: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21820 at Wed Aug 23 12:32:46 UTC 2017
kill -USR1 21820
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21820 killed at Wed Aug 23 12:32:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21890 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21890 found at Wed Aug 23 12:32:46 UTC 2017
selfserv_9223 with PID 21890 started at Wed Aug 23 12:32:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6060: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21890 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 21890
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21890 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21946 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21946 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 21946 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6061: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 21946 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 21946
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21946 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22002 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22002 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 22002 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6062: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22002 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 22002
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22002 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22073 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22073 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 22073 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6063: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22073 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 22073
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22073 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22132 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22132 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 22132 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6064: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22132 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 22132
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22132 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22188 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22188 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 22188 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6065: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22188 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 22188
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22188 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22256 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22256 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 22256 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6066: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22256 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 22256
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22256 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22312 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22312 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 22312 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6067: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22312 at Wed Aug 23 12:32:47 UTC 2017
kill -USR1 22312
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22312 killed at Wed Aug 23 12:32:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22369 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22369 found at Wed Aug 23 12:32:47 UTC 2017
selfserv_9223 with PID 22369 started at Wed Aug 23 12:32:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6068: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22369 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22369
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22369 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22437 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22437 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22437 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6069: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22437 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22437 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22494 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22494 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22494 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6070: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22494 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22494
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22494 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22550 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22550 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22550 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6071: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22550 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22550
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22550 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22618 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22618 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22618 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6072: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22618 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22618
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22618 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22674 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22674 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22674 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6073: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22674 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22674
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22674 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22730 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22730 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22730 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6074: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22730 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22730
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22730 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22798 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22798 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22798 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6075: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22798 at Wed Aug 23 12:32:48 UTC 2017
kill -USR1 22798
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22798 killed at Wed Aug 23 12:32:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22854 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22854 found at Wed Aug 23 12:32:48 UTC 2017
selfserv_9223 with PID 22854 started at Wed Aug 23 12:32:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6076: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22854 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 22854
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22854 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22910 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22910 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 22910 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6077: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22910 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 22910
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22910 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22979 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22979 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 22979 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6078: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 22979 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 22979
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22979 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23036 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23036 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23036 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6079: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 23036 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 23036
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23036 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23093 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23093 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23093 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6080: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 23093 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 23093
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23093 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23161 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23161 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23161 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6081: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23161 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 23161
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23161 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23217 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23217 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23217 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6082: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 23217 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 23217
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23217 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23273 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23273 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23273 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6083: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23273 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 23273
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23273 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23341 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23341 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23341 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6084: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23341 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 23341
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23341 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23397 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23397 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23397 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6085: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23397 at Wed Aug 23 12:32:49 UTC 2017
kill -USR1 23397
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23397 killed at Wed Aug 23 12:32:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23455 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23455 found at Wed Aug 23 12:32:49 UTC 2017
selfserv_9223 with PID 23455 started at Wed Aug 23 12:32:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6086: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23455 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23455
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23455 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23523 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23523 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23523 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6087: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23523 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23523
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23523 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23579 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23579 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23579 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6088: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23579 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23579
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23579 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23635 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23635 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23635 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6089: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23635 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23635
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23635 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23703 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23703 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23703 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6090: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23703 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23703
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23703 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23759 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23759 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23759 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6091: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 23759 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23759
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23759 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23815 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23815 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23815 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6092: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23815 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23815
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23815 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23892 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23892 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23892 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6093: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 23892 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23892
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23892 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23948 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23948 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 23948 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6094: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 23948 at Wed Aug 23 12:32:50 UTC 2017
kill -USR1 23948
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23948 killed at Wed Aug 23 12:32:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24004 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24004 found at Wed Aug 23 12:32:50 UTC 2017
selfserv_9223 with PID 24004 started at Wed Aug 23 12:32:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6095: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 24004 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24004
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24004 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24073 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24073 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24073 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6096: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24073 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24073
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24073 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24129 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24129 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24129 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6097: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 24129 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24129
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24129 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24185 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24185 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24185 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6098: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24185 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24185
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24185 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24253 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24253 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24253 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6099: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24253 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24253
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24253 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24309 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24309 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24309 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6100: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24309 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24309
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24309 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24365 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24365 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24365 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6101: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24365 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24365
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24365 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24433 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24433 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24433 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6102: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24433 at Wed Aug 23 12:32:51 UTC 2017
kill -USR1 24433
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24433 killed at Wed Aug 23 12:32:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24489 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24489 found at Wed Aug 23 12:32:51 UTC 2017
selfserv_9223 with PID 24489 started at Wed Aug 23 12:32:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6103: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 24489 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24489
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24489 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24545 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24545 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6104: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24545 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24545
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24545 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24614 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24614 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24614 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6105: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 24614 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24614
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24614 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24670 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24670 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24670 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6106: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 24670 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24670
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24670 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24726 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24726 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24726 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6107: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 24726 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24726
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24726 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24794 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24794 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24794 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6108: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24794 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24794
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24794 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24851 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24851 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24851 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6109: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 24851 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24851
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24851 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24907 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24907 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24907 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6110: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24907 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24907
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24907 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24975 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24975 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 24975 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6111: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 24975 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 24975
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24975 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25031 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25031 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 25031 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6112: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 25031 at Wed Aug 23 12:32:52 UTC 2017
kill -USR1 25031
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25031 killed at Wed Aug 23 12:32:52 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25087 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25087 found at Wed Aug 23 12:32:52 UTC 2017
selfserv_9223 with PID 25087 started at Wed Aug 23 12:32:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6113: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 25087 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25087
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25087 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25157 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25157 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25157 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6114: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 25157 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25157
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25157 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25213 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25213 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25213 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6115: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25213 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25213
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25213 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25269 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25269 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25269 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6116: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 25269 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25269
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25269 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25337 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25337 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6117: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25337 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25337
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25337 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25393 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25393 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25393 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6118: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25393 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25393
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25393 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25450 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25450 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25450 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6119: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25450 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25450
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25450 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25518 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25518 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25518 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6120: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25518 at Wed Aug 23 12:32:53 UTC 2017
kill -USR1 25518
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25518 killed at Wed Aug 23 12:32:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25574 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25574 found at Wed Aug 23 12:32:53 UTC 2017
selfserv_9223 with PID 25574 started at Wed Aug 23 12:32:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6121: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25574 at Wed Aug 23 12:32:54 UTC 2017
kill -USR1 25574
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25574 killed at Wed Aug 23 12:32:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25631 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25631 found at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 with PID 25631 started at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6122: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25631 at Wed Aug 23 12:32:54 UTC 2017
kill -USR1 25631
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25631 killed at Wed Aug 23 12:32:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25699 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25699 found at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 with PID 25699 started at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6123: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25699 at Wed Aug 23 12:32:54 UTC 2017
kill -USR1 25699
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25699 killed at Wed Aug 23 12:32:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25755 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25755 found at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 with PID 25755 started at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6124: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25755 at Wed Aug 23 12:32:54 UTC 2017
kill -USR1 25755
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25755 killed at Wed Aug 23 12:32:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25812 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25812 found at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 with PID 25812 started at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6125: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25812 at Wed Aug 23 12:32:54 UTC 2017
kill -USR1 25812
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25812 killed at Wed Aug 23 12:32:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25880 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25880 found at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 with PID 25880 started at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6126: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25880 at Wed Aug 23 12:32:54 UTC 2017
kill -USR1 25880
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25880 killed at Wed Aug 23 12:32:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25936 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25936 found at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 with PID 25936 started at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6127: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25936 at Wed Aug 23 12:32:54 UTC 2017
kill -USR1 25936
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25936 killed at Wed Aug 23 12:32:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25992 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25992 found at Wed Aug 23 12:32:54 UTC 2017
selfserv_9223 with PID 25992 started at Wed Aug 23 12:32:54 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6128: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25992 at Wed Aug 23 12:32:55 UTC 2017
kill -USR1 25992
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25992 killed at Wed Aug 23 12:32:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26060 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26060 found at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 with PID 26060 started at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6129: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26060 at Wed Aug 23 12:32:55 UTC 2017
kill -USR1 26060
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26060 killed at Wed Aug 23 12:32:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26116 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26116 found at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 with PID 26116 started at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6130: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26116 at Wed Aug 23 12:32:55 UTC 2017
kill -USR1 26116
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26116 killed at Wed Aug 23 12:32:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26172 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26172 found at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 with PID 26172 started at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6131: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26172 at Wed Aug 23 12:32:55 UTC 2017
kill -USR1 26172
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26172 killed at Wed Aug 23 12:32:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26240 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26240 found at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 with PID 26240 started at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26240 at Wed Aug 23 12:32:55 UTC 2017
kill -USR1 26240
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26240 killed at Wed Aug 23 12:32:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26296 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26296 found at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 with PID 26296 started at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6133: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26296 at Wed Aug 23 12:32:55 UTC 2017
kill -USR1 26296
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26296 killed at Wed Aug 23 12:32:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26352 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26352 found at Wed Aug 23 12:32:55 UTC 2017
selfserv_9223 with PID 26352 started at Wed Aug 23 12:32:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6134: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26352 at Wed Aug 23 12:32:56 UTC 2017
kill -USR1 26352
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26352 killed at Wed Aug 23 12:32:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26420 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26420 found at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 with PID 26420 started at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6135: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26420 at Wed Aug 23 12:32:56 UTC 2017
kill -USR1 26420
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26420 killed at Wed Aug 23 12:32:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26476 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26476 found at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 with PID 26476 started at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6136: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26476 at Wed Aug 23 12:32:56 UTC 2017
kill -USR1 26476
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26476 killed at Wed Aug 23 12:32:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26532 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26532 found at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 with PID 26532 started at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6137: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26532 at Wed Aug 23 12:32:56 UTC 2017
kill -USR1 26532
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26532 killed at Wed Aug 23 12:32:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26600 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26600 found at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 with PID 26600 started at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6138: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26600 at Wed Aug 23 12:32:56 UTC 2017
kill -USR1 26600
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26600 killed at Wed Aug 23 12:32:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26656 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26656 found at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 with PID 26656 started at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6139: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26656 at Wed Aug 23 12:32:56 UTC 2017
kill -USR1 26656
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26656 killed at Wed Aug 23 12:32:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26712 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26712 found at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 with PID 26712 started at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6140: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26712 at Wed Aug 23 12:32:56 UTC 2017
kill -USR1 26712
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26712 killed at Wed Aug 23 12:32:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26780 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26780 found at Wed Aug 23 12:32:56 UTC 2017
selfserv_9223 with PID 26780 started at Wed Aug 23 12:32:56 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6141: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26780 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 26780
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26780 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26837 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26837 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 26837 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6142: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26837 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 26837
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26837 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26894 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26894 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 26894 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6143: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26894 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 26894
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26894 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26963 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26963 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 26963 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6144: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26963 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 26963
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26963 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27019 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 27019 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6145: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27019 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 27019
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27019 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27075 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27075 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 27075 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6146: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27075 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 27075
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27075 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27143 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27143 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 27143 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6147: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27143 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 27143
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27143 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27199 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27199 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 27199 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6148: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27199 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 27199
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27199 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27255 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27255 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 27255 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6149: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27255 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 27255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27255 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27324 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27324 found at Wed Aug 23 12:32:57 UTC 2017
selfserv_9223 with PID 27324 started at Wed Aug 23 12:32:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6150: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27324 at Wed Aug 23 12:32:57 UTC 2017
kill -USR1 27324
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27324 killed at Wed Aug 23 12:32:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27381 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27381 found at Wed Aug 23 12:32:58 UTC 2017
selfserv_9223 with PID 27381 started at Wed Aug 23 12:32:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6151: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27381 at Wed Aug 23 12:32:58 UTC 2017
kill -USR1 27381
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27381 killed at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:32:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27437 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27437 found at Wed Aug 23 12:32:58 UTC 2017
selfserv_9223 with PID 27437 started at Wed Aug 23 12:32:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6152: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27437 at Wed Aug 23 12:32:58 UTC 2017
kill -USR1 27437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27437 killed at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9223 starting at Wed Aug 23 12:32:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:32:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
selfserv_9223 with PID 27500 started at Wed Aug 23 12:32:58 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6153: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6154: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6155: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6156: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6157: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6158: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6159: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6160: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6161: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6162: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:58 UTC 2017
ssl.sh: #6163: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6164: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6165: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6166: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6167: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6168: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6169: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6170: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6171: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6172: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6173: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6174: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6175: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6176: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6177: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6178: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
ssl.sh: #6179: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:32:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6180: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6181: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6182: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6183: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6184: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6185: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6186: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6187: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6188: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6189: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6190: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6191: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6192: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27500 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27500 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6193: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27500 at Wed Aug 23 12:33:00 UTC 2017
kill -USR1 27500
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27500 killed at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:00 UTC 2017
selfserv_9223 with PID 28928 started at Wed Aug 23 12:33:00 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6194: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6195: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6196: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:00 UTC 2017
ssl.sh: #6197: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6198: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6199: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6200: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6201: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6202: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6203: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6204: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6205: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6206: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6207: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6208: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6209: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6210: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6211: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6212: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6213: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6214: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6215: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6216: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6217: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6218: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:01 UTC 2017
ssl.sh: #6219: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6220: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6221: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6222: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6223: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6224: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6225: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6226: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6227: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6228: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6229: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6230: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6231: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6232: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6233: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28928 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28928 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6234: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 28928 at Wed Aug 23 12:33:02 UTC 2017
kill -USR1 28928
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28928 killed at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:02 UTC 2017
selfserv_9223 with PID 30358 started at Wed Aug 23 12:33:02 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6235: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6236: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:02 UTC 2017
ssl.sh: #6237: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6238: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6239: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6240: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6241: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6242: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6243: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6244: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6245: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6246: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6247: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6248: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6249: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6250: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:03 UTC 2017
ssl.sh: #6251: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6252: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6253: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6254: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6255: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6256: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6257: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6258: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6259: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6260: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6261: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6262: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6263: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6264: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6265: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:04 UTC 2017
ssl.sh: #6266: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6267: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6268: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6269: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6270: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6271: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6272: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6273: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6274: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30358 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30358 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6275: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 30358 at Wed Aug 23 12:33:05 UTC 2017
kill -USR1 30358
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30358 killed at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:05 UTC 2017
selfserv_9223 with PID 31797 started at Wed Aug 23 12:33:05 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6276: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6277: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6278: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6279: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6280: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:05 UTC 2017
ssl.sh: #6281: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6282: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6283: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6284: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6285: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6286: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6287: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6288: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6289: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6290: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6291: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6292: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6293: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6294: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6295: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6296: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6297: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6298: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:06 UTC 2017
ssl.sh: #6299: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6300: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6301: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6302: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6303: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6304: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6305: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6306: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6307: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6308: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6309: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6310: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6311: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6312: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6313: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6314: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6315: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31797 found at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: #6316: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31797 at Wed Aug 23 12:33:07 UTC 2017
kill -USR1 31797
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31797 killed at Wed Aug 23 12:33:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 777 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 777 found at Wed Aug 23 12:33:07 UTC 2017
selfserv_9223 with PID 777 started at Wed Aug 23 12:33:07 UTC 2017
trying to kill selfserv_9223 with PID 777 at Wed Aug 23 12:33:07 UTC 2017
kill -USR1 777
./ssl.sh: line 197:   777 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 777 killed at Wed Aug 23 12:33:07 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:33:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:07 UTC 2017
selfserv_9223 with PID 819 started at Wed Aug 23 12:33:07 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6317: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6318: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6319: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6320: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6321: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6322: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6323: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6324: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6325: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6326: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6327: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6328: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
ssl.sh: #6329: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6330: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6331: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6332: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6333: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6334: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6335: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6336: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6337: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6338: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6339: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6340: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6341: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6342: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
ssl.sh: #6343: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6344: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6345: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6346: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6347: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6348: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6349: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6350: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6351: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6352: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6353: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6354: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6355: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6356: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 819 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 819 found at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: #6357: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 819 at Wed Aug 23 12:33:10 UTC 2017
kill -USR1 819
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 819 killed at Wed Aug 23 12:33:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:10 UTC 2017
selfserv_9223 with PID 2351 started at Wed Aug 23 12:33:10 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6358: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6359: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6360: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6361: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6362: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6363: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6364: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6365: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6366: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6367: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6368: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6369: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:11 UTC 2017
ssl.sh: #6370: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6371: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6372: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6373: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6374: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6375: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6376: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6377: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6378: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6379: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6380: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6381: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6382: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:12 UTC 2017
ssl.sh: #6383: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6384: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6385: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6386: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6387: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6388: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6389: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6390: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6391: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6392: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6393: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6394: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6395: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6396: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:13 UTC 2017
ssl.sh: #6397: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2351 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2351 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6398: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2351 at Wed Aug 23 12:33:14 UTC 2017
kill -USR1 2351
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2351 killed at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
selfserv_9223 with PID 3778 started at Wed Aug 23 12:33:14 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6399: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6400: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6401: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6402: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6403: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6404: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6405: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6406: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6407: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6408: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6409: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6410: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6411: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6412: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6413: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:14 UTC 2017
ssl.sh: #6414: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6415: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6416: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6417: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6418: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6419: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6420: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6421: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6422: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6423: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6424: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6425: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6426: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6427: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6428: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6429: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6430: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6431: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6432: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:15 UTC 2017
ssl.sh: #6433: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6434: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6435: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6436: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6437: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6438: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3778 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3778 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6439: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 3778 at Wed Aug 23 12:33:16 UTC 2017
kill -USR1 3778
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3778 killed at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
selfserv_9223 with PID 5204 started at Wed Aug 23 12:33:16 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6440: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6441: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6442: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6443: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6444: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6445: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:16 UTC 2017
ssl.sh: #6446: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6447: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6448: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6449: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6450: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6451: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6452: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6453: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6454: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6455: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6456: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6457: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:17 UTC 2017
ssl.sh: #6458: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6459: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6460: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6461: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6462: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6463: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6464: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6465: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6466: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6467: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6468: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6469: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6470: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:18 UTC 2017
ssl.sh: #6471: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6472: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6473: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6474: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6475: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6476: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6477: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6478: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6479: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5204 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6480: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 5204 at Wed Aug 23 12:33:19 UTC 2017
kill -USR1 5204
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 5204 killed at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:19 UTC 2017
selfserv_9223 with PID 6627 started at Wed Aug 23 12:33:19 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6481: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:19 UTC 2017
ssl.sh: #6482: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6483: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6484: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6485: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6486: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6487: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6488: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6489: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6490: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6491: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6492: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
ssl.sh: #6493: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6494: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6495: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6496: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6497: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6498: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6499: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6500: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6501: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6502: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6503: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6504: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6505: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:21 UTC 2017
ssl.sh: #6506: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6507: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6508: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6509: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6510: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6511: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6512: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6513: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6514: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:22 UTC 2017
ssl.sh: #6518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6520: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6627 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6627 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6521: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 6627 at Wed Aug 23 12:33:23 UTC 2017
kill -USR1 6627
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 6627 killed at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
selfserv_9223 with PID 8055 started at Wed Aug 23 12:33:23 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6522: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6523: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6524: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6525: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6526: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6527: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6528: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6529: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6530: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6531: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:23 UTC 2017
ssl.sh: #6532: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6533: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6534: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6535: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6536: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6537: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6538: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6539: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6540: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6541: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6542: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6543: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6544: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6545: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6546: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6547: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:24 UTC 2017
ssl.sh: #6548: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6549: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6550: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6551: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6552: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6553: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6554: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6555: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6556: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6557: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6558: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6559: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6560: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6561: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8055 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6562: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 8055 at Wed Aug 23 12:33:25 UTC 2017
kill -USR1 8055
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8055 killed at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9480 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9480 found at Wed Aug 23 12:33:25 UTC 2017
selfserv_9223 with PID 9480 started at Wed Aug 23 12:33:25 UTC 2017
trying to kill selfserv_9223 with PID 9480 at Wed Aug 23 12:33:25 UTC 2017
kill -USR1 9480
./ssl.sh: line 197:  9480 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9480 killed at Wed Aug 23 12:33:25 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:33:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:25 UTC 2017
selfserv_9223 with PID 9522 started at Wed Aug 23 12:33:25 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:25 UTC 2017
ssl.sh: #6563: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6564: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6565: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6566: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6567: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6568: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6569: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6570: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6571: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6572: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6573: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6574: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
ssl.sh: #6575: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6576: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6577: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6578: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6579: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6580: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6581: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6582: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6583: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6584: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6585: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6586: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6587: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6588: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
ssl.sh: #6589: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6590: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6591: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6592: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6593: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6594: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6595: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6596: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6597: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6598: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6599: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6600: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6601: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6602: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9522 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9522 found at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: #6603: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 9522 at Wed Aug 23 12:33:28 UTC 2017
kill -USR1 9522
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9522 killed at Wed Aug 23 12:33:28 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:28 UTC 2017
selfserv_9223 with PID 10950 started at Wed Aug 23 12:33:28 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6604: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6605: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6606: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6607: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6608: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6609: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6610: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6611: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6612: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6613: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6614: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6615: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:29 UTC 2017
ssl.sh: #6616: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6617: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6618: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6619: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6620: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6621: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6622: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6623: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6624: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6625: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6626: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6627: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6628: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:30 UTC 2017
ssl.sh: #6629: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6630: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6631: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6632: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6633: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6634: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6635: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6636: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6637: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6638: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6639: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6640: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6641: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6642: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:31 UTC 2017
ssl.sh: #6643: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10950 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6644: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10950 at Wed Aug 23 12:33:32 UTC 2017
kill -USR1 10950
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10950 killed at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
selfserv_9223 with PID 12378 started at Wed Aug 23 12:33:32 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6645: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6646: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6647: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6648: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6649: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6650: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6651: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6652: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6653: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6654: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6655: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6656: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6657: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6658: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:32 UTC 2017
ssl.sh: #6659: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6660: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6661: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6662: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6663: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6664: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6665: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6666: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6667: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6668: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6669: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6670: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6671: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6672: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6673: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6674: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6675: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6676: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6677: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:33 UTC 2017
ssl.sh: #6678: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6679: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6680: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6681: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6682: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6683: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6684: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12378 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6685: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12378 at Wed Aug 23 12:33:34 UTC 2017
kill -USR1 12378
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12378 killed at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:34 UTC 2017
selfserv_9223 with PID 13807 started at Wed Aug 23 12:33:34 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6686: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6687: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6688: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6689: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6690: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:34 UTC 2017
ssl.sh: #6691: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6692: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6693: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6694: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6695: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6696: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6697: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6698: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6699: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6700: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6701: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6702: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6703: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:35 UTC 2017
ssl.sh: #6704: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6705: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6706: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6707: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6708: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6709: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6710: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6711: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6712: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6713: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6714: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6715: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:36 UTC 2017
ssl.sh: #6716: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6717: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6718: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6719: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6720: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6721: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6722: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6723: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6724: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6725: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13807 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13807 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6726: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 13807 at Wed Aug 23 12:33:37 UTC 2017
kill -USR1 13807
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13807 killed at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:37 UTC 2017
selfserv_9223 with PID 15237 started at Wed Aug 23 12:33:37 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:37 UTC 2017
ssl.sh: #6727: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6728: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6729: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6730: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6731: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6732: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6733: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6734: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6735: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6736: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6737: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6738: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:38 UTC 2017
ssl.sh: #6739: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6740: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6741: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6742: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6743: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6744: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6745: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6746: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6747: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6748: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6749: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6750: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:39 UTC 2017
ssl.sh: #6751: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6752: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6753: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6754: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6755: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6756: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6757: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6758: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6759: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6760: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6761: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6762: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6763: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:40 UTC 2017
ssl.sh: #6764: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6765: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6766: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15237 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15237 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6767: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15237 at Wed Aug 23 12:33:41 UTC 2017
kill -USR1 15237
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15237 killed at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
selfserv_9223 with PID 16661 started at Wed Aug 23 12:33:41 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6768: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6769: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6770: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6771: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6772: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6773: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6774: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6775: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6776: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6777: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:41 UTC 2017
ssl.sh: #6778: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6779: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6780: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6781: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6782: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6783: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6784: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6785: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6786: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6787: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6788: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6789: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6790: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6791: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6792: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:42 UTC 2017
ssl.sh: #6793: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6794: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6795: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6796: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6797: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6798: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6799: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6800: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6801: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6802: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6803: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6804: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6805: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6806: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6807: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16661 found at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: #6808: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16661 at Wed Aug 23 12:33:43 UTC 2017
kill -USR1 16661
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16661 killed at Wed Aug 23 12:33:43 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:33:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:33:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18093 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18093 found at Wed Aug 23 12:33:43 UTC 2017
selfserv_9223 with PID 18093 started at Wed Aug 23 12:33:43 UTC 2017
trying to kill selfserv_9223 with PID 18093 at Wed Aug 23 12:33:43 UTC 2017
kill -USR1 18093
./ssl.sh: line 197: 18093 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18093 killed at Wed Aug 23 12:33:43 UTC 2017
TIMESTAMP ssl END: Wed Aug 23 12:33:43 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Wed Aug 23 12:33:43 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Wed Aug 23 12:33:43 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Wed Aug 23 12:33:43 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Wed Aug 23 12:33:43 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed Aug 23 12:33:43 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #6809: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123344 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6810: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #6811: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6812: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #6813: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6814: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6815: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6816: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6817: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #6818: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6819: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6820: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6821: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6822: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #6823: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6824: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6825: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6826: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6827: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #6828: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6829: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6830: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6831: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #6832: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6833: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6834: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6835: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #6836: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6837: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6838: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6839: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #6840: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6841: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6842: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6843: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #6844: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6845: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6846: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6847: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #6848: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6849: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6850: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6851: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #6852: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6853: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6854: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6855: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #6856: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6857: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6858: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6859: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #6860: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6861: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6862: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6863: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #6864: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6865: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6866: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6867: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #6868: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6869: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6870: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6871: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170823123346Z
nextupdate=20180823123346Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed Aug 23 12:33:46 2017
    Next Update: Thu Aug 23 12:33:46 2018
    CRL Extensions:
chains.sh: #6872: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170823123347Z
addcert 2 20170823123347Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed Aug 23 12:33:47 2017
    Next Update: Thu Aug 23 12:33:46 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:33:47 2017
    CRL Extensions:
chains.sh: #6873: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823123347Z
nextupdate=20180823123347Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:33:47 2017
    Next Update: Thu Aug 23 12:33:47 2018
    CRL Extensions:
chains.sh: #6874: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823123349Z
addcert 2 20170823123349Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:33:49 2017
    Next Update: Thu Aug 23 12:33:47 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:33:49 2017
    CRL Extensions:
chains.sh: #6875: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823123350Z
addcert 4 20170823123350Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:33:50 2017
    Next Update: Thu Aug 23 12:33:47 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:33:49 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed Aug 23 12:33:50 2017
    CRL Extensions:
chains.sh: #6876: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823123350Z
nextupdate=20180823123350Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:33:50 2017
    Next Update: Thu Aug 23 12:33:50 2018
    CRL Extensions:
chains.sh: #6877: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823123351Z
addcert 2 20170823123351Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:33:51 2017
    Next Update: Thu Aug 23 12:33:50 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:33:51 2017
    CRL Extensions:
chains.sh: #6878: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823123352Z
addcert 3 20170823123352Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:33:52 2017
    Next Update: Thu Aug 23 12:33:50 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:33:51 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed Aug 23 12:33:52 2017
    CRL Extensions:
chains.sh: #6879: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823123352Z
nextupdate=20180823123352Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:33:52 2017
    Next Update: Thu Aug 23 12:33:52 2018
    CRL Extensions:
chains.sh: #6880: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823123353Z
addcert 2 20170823123353Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:33:53 2017
    Next Update: Thu Aug 23 12:33:52 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:33:53 2017
    CRL Extensions:
chains.sh: #6881: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823123354Z
addcert 3 20170823123354Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:33:54 2017
    Next Update: Thu Aug 23 12:33:52 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:33:53 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed Aug 23 12:33:54 2017
    CRL Extensions:
chains.sh: #6882: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #6883: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #6884: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6885: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6886: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6887: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6888: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6889: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #6890: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #6891: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6892: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #6893: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #6894: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #6895: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #6896: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #6897: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #6898: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #6899: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #6900: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #6901: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #6902: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #6903: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #6904: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #6905: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #6906: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed Aug 23 12:33:54 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:33:54 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 19560 >/dev/null 2>/dev/null
httpserv with PID 19560 found at Wed Aug 23 12:33:54 UTC 2017
httpserv with PID 19560 started at Wed Aug 23 12:33:54 UTC 2017
tstclnt -h localhost.localdomain -p 9233 -q -t 20
chains.sh: #6907: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123344 (0x310fdd90)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:44 2017
            Not After : Tue Aug 23 12:33:44 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:8e:95:c5:7c:e0:c2:ff:a7:d8:d3:d0:86:df:77:14:
                    93:ee:2d:37:a2:70:31:b9:44:30:82:2c:a0:4c:9b:09:
                    9d:06:1b:98:d8:a1:56:d6:46:2f:72:71:c4:5f:49:1e:
                    63:e5:4b:07:97:8d:6f:a0:a7:4c:9c:52:86:38:5b:26:
                    08:86:0b:db:f8:a4:b6:36:d4:21:8a:db:ba:a5:5b:a6:
                    fb:9e:b2:88:06:2f:bc:dc:38:d4:e9:9f:97:1e:4f:e3:
                    17:91:28:c8:cf:fd:55:45:95:0f:f6:be:22:a4:b9:44:
                    d5:a0:58:f4:18:0a:04:4f:92:86:2c:c2:d7:b7:20:5a:
                    f9:dc:fc:94:c6:5d:78:8c:6e:aa:5b:b2:03:61:90:20:
                    3c:06:49:b6:a5:69:8c:47:f8:f9:79:0e:21:78:59:39:
                    ea:3a:97:db:15:ab:7b:e1:80:e3:6e:bc:13:5f:6b:99:
                    12:78:f7:f3:3d:f5:c8:d4:1f:b6:43:e0:9c:a4:17:ac:
                    f9:48:8c:00:d2:c6:47:d7:6f:3a:3f:42:5c:11:48:61:
                    61:ed:74:1d:00:ce:61:9f:86:79:e3:50:48:d9:16:fa:
                    26:cd:c5:2d:7e:0d:e2:d1:be:a8:79:bd:f7:c8:e2:e7:
                    d7:7c:84:20:95:c4:7a:63:c6:cb:bb:56:2b:dc:a8:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:a2:25:1e:ca:58:1b:19:c7:17:89:e9:33:bc:9a:7a:
        d6:5f:b0:d0:7b:14:79:c3:56:9d:38:b9:7f:62:a5:3b:
        90:34:97:63:82:ca:c1:c7:93:b4:2a:79:d3:a7:fe:98:
        b6:aa:c8:1d:07:8c:c0:c4:fc:1d:0a:3b:a7:ed:3d:f2:
        cf:0c:18:71:0e:1e:55:95:33:94:64:6c:d8:57:00:25:
        c5:60:8d:f1:86:b7:ba:63:c5:a8:5a:e5:36:58:80:2c:
        da:2e:46:4f:53:60:27:45:c7:5c:90:64:ad:ff:2d:be:
        a6:ce:10:87:d5:21:05:09:15:62:67:26:65:74:ed:e1:
        85:96:1c:5e:7c:3e:58:f9:8d:23:18:35:14:e3:f8:3f:
        71:d2:c7:a3:a4:ac:b0:19:3f:c0:da:2a:4a:44:f4:7a:
        5a:e6:ce:8c:bd:5f:4c:a4:a8:95:40:f1:80:dc:d3:d6:
        cd:a4:68:03:8b:38:fc:49:e2:3c:fb:ef:9c:7f:ef:ae:
        14:89:d8:87:a9:0d:8f:4e:00:22:af:07:87:f8:c6:34:
        a0:57:b8:8a:bc:8b:ec:2e:80:4a:08:20:56:88:69:80:
        06:a0:04:af:b4:ef:fe:d0:53:aa:6c:ce:c3:47:fe:64:
        eb:5d:1a:9d:bf:ac:a9:24:85:51:54:bc:97:1f:3e:c2
    Fingerprint (SHA-256):
        86:E7:24:29:D4:28:05:A6:D6:58:B2:3A:FB:6C:C5:44:E2:D7:4A:90:55:86:6F:F2:CF:82:1D:86:41:65:F8:B4
    Fingerprint (SHA1):
        8C:40:83:C8:41:ED:8E:CC:AD:7B:FC:AC:6B:08:19:8C:35:40:D5:82
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6908: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6909: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6910: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 19560 at Wed Aug 23 12:33:54 UTC 2017
kill -USR1 19560
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 19560 killed at Wed Aug 23 12:33:54 UTC 2017
httpserv starting at Wed Aug 23 12:33:54 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:33:54 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 19729 >/dev/null 2>/dev/null
httpserv with PID 19729 found at Wed Aug 23 12:33:54 UTC 2017
httpserv with PID 19729 started at Wed Aug 23 12:33:54 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6911: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6912: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6913: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9233 -q -t 20
chains.sh: #6914: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123344 (0x310fdd90)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:44 2017
            Not After : Tue Aug 23 12:33:44 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:8e:95:c5:7c:e0:c2:ff:a7:d8:d3:d0:86:df:77:14:
                    93:ee:2d:37:a2:70:31:b9:44:30:82:2c:a0:4c:9b:09:
                    9d:06:1b:98:d8:a1:56:d6:46:2f:72:71:c4:5f:49:1e:
                    63:e5:4b:07:97:8d:6f:a0:a7:4c:9c:52:86:38:5b:26:
                    08:86:0b:db:f8:a4:b6:36:d4:21:8a:db:ba:a5:5b:a6:
                    fb:9e:b2:88:06:2f:bc:dc:38:d4:e9:9f:97:1e:4f:e3:
                    17:91:28:c8:cf:fd:55:45:95:0f:f6:be:22:a4:b9:44:
                    d5:a0:58:f4:18:0a:04:4f:92:86:2c:c2:d7:b7:20:5a:
                    f9:dc:fc:94:c6:5d:78:8c:6e:aa:5b:b2:03:61:90:20:
                    3c:06:49:b6:a5:69:8c:47:f8:f9:79:0e:21:78:59:39:
                    ea:3a:97:db:15:ab:7b:e1:80:e3:6e:bc:13:5f:6b:99:
                    12:78:f7:f3:3d:f5:c8:d4:1f:b6:43:e0:9c:a4:17:ac:
                    f9:48:8c:00:d2:c6:47:d7:6f:3a:3f:42:5c:11:48:61:
                    61:ed:74:1d:00:ce:61:9f:86:79:e3:50:48:d9:16:fa:
                    26:cd:c5:2d:7e:0d:e2:d1:be:a8:79:bd:f7:c8:e2:e7:
                    d7:7c:84:20:95:c4:7a:63:c6:cb:bb:56:2b:dc:a8:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:a2:25:1e:ca:58:1b:19:c7:17:89:e9:33:bc:9a:7a:
        d6:5f:b0:d0:7b:14:79:c3:56:9d:38:b9:7f:62:a5:3b:
        90:34:97:63:82:ca:c1:c7:93:b4:2a:79:d3:a7:fe:98:
        b6:aa:c8:1d:07:8c:c0:c4:fc:1d:0a:3b:a7:ed:3d:f2:
        cf:0c:18:71:0e:1e:55:95:33:94:64:6c:d8:57:00:25:
        c5:60:8d:f1:86:b7:ba:63:c5:a8:5a:e5:36:58:80:2c:
        da:2e:46:4f:53:60:27:45:c7:5c:90:64:ad:ff:2d:be:
        a6:ce:10:87:d5:21:05:09:15:62:67:26:65:74:ed:e1:
        85:96:1c:5e:7c:3e:58:f9:8d:23:18:35:14:e3:f8:3f:
        71:d2:c7:a3:a4:ac:b0:19:3f:c0:da:2a:4a:44:f4:7a:
        5a:e6:ce:8c:bd:5f:4c:a4:a8:95:40:f1:80:dc:d3:d6:
        cd:a4:68:03:8b:38:fc:49:e2:3c:fb:ef:9c:7f:ef:ae:
        14:89:d8:87:a9:0d:8f:4e:00:22:af:07:87:f8:c6:34:
        a0:57:b8:8a:bc:8b:ec:2e:80:4a:08:20:56:88:69:80:
        06:a0:04:af:b4:ef:fe:d0:53:aa:6c:ce:c3:47:fe:64:
        eb:5d:1a:9d:bf:ac:a9:24:85:51:54:bc:97:1f:3e:c2
    Fingerprint (SHA-256):
        86:E7:24:29:D4:28:05:A6:D6:58:B2:3A:FB:6C:C5:44:E2:D7:4A:90:55:86:6F:F2:CF:82:1D:86:41:65:F8:B4
    Fingerprint (SHA1):
        8C:40:83:C8:41:ED:8E:CC:AD:7B:FC:AC:6B:08:19:8C:35:40:D5:82
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6915: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6916: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6917: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 19729 at Wed Aug 23 12:33:55 UTC 2017
kill -USR1 19729
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 19729 killed at Wed Aug 23 12:33:55 UTC 2017
httpserv starting at Wed Aug 23 12:33:55 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:33:55 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 19980 >/dev/null 2>/dev/null
httpserv with PID 19980 found at Wed Aug 23 12:33:55 UTC 2017
httpserv with PID 19980 started at Wed Aug 23 12:33:55 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6918: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6919: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123345 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6920: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6921: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6922: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123346 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6923: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6924: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6925: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6926: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123347 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6927: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6928: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123348 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6929: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6930: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6931: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6932: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6933: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 823123349   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6934: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6935: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6936: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6937: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6938: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123346 (0x310fdd92)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:45:c9:9f:bb:03:d6:7e:1d:69:88:ea:e6:90:a0:f0:
                    56:2e:85:56:c5:31:37:4c:59:1e:1a:9a:bc:2a:3e:5b:
                    1b:75:16:c1:d8:b7:30:c7:2f:a7:ac:87:e4:46:4d:65:
                    7e:84:37:88:5a:d1:a3:04:3a:b2:53:f0:c8:6e:98:be:
                    be:c3:46:a3:b6:4b:77:9f:c1:73:5c:f3:82:0e:a8:62:
                    6c:22:ba:04:97:b0:77:37:7c:37:1b:df:a4:ae:75:45:
                    14:38:e7:ff:1d:91:be:95:b4:a3:12:6d:da:2b:a1:89:
                    05:d8:1d:ab:b9:52:a5:31:ac:3e:bb:fa:43:ac:6e:c5:
                    b1:24:ba:7e:de:36:d8:82:b8:cd:00:8e:2f:4e:34:28:
                    f4:76:e3:66:58:9f:f3:97:2f:d2:b6:ea:da:3f:59:a6:
                    ec:c3:ca:8e:3e:79:2f:6b:1b:58:c8:db:19:65:c6:b6:
                    24:2b:9f:99:69:f9:6f:67:2c:10:c8:e4:97:00:ff:06:
                    37:50:63:07:56:41:a1:9b:e3:00:6d:6f:93:97:f3:2c:
                    22:7a:18:e1:0b:cc:18:b8:d2:b3:d9:06:99:72:bc:e9:
                    5c:66:7c:19:8c:4a:85:62:e1:28:e4:78:e5:e2:bf:d9:
                    47:23:1c:10:94:ba:a3:4c:15:10:1b:6b:87:b6:0f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:ab:d7:73:cc:fa:b5:0a:59:05:23:37:75:66:61:51:
        9c:a3:bc:62:49:b0:8c:65:d2:5d:14:a8:fb:b9:33:58:
        b5:5d:63:f8:73:79:35:dc:10:6b:0a:f6:2f:89:5f:aa:
        f0:ab:a2:d4:15:79:87:0d:e3:34:18:02:15:8a:a9:bc:
        e0:dc:2c:24:6f:77:24:8d:98:9d:a2:a3:a3:00:f4:cc:
        04:2c:a1:0f:40:25:7e:55:af:0d:7f:2a:45:4b:a7:67:
        03:10:a7:2a:09:9e:15:20:d1:b6:ef:67:d5:79:cb:6f:
        b5:5a:0d:96:99:9f:8d:fd:a2:1a:ff:be:cd:1d:38:62:
        49:71:8e:19:7d:51:03:b3:22:6d:ed:6f:8a:ae:83:28:
        91:f5:ea:bf:3e:db:fe:4a:ec:87:6e:11:3a:57:8f:40:
        52:5c:7b:5e:65:42:e1:0b:38:ab:d0:94:85:64:49:3a:
        5b:64:db:13:c0:48:52:17:f4:ea:5e:1f:27:67:1f:82:
        b5:e6:27:56:d6:21:b5:20:61:de:1b:44:fb:c0:23:d2:
        01:34:14:99:13:0a:df:26:f8:7a:7b:ec:be:b5:3d:11:
        16:80:82:3a:25:21:66:c1:0f:bc:6f:54:bf:c2:b1:78:
        75:46:db:c4:d3:ad:5c:66:9c:27:75:db:d0:27:15:fe
    Fingerprint (SHA-256):
        AA:3B:BF:41:52:17:F7:9A:23:3A:87:02:32:9F:11:15:DF:F5:23:18:33:AD:BB:DD:F4:CF:00:5D:AE:F2:DE:87
    Fingerprint (SHA1):
        B7:8A:47:6F:DD:2C:4F:C7:14:06:F6:41:45:15:CD:37:73:01:57:D8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6939: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123345 (0x310fdd91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:16:7a:e9:1f:2f:a2:53:b1:94:8b:3a:61:9f:ca:6e:
                    a1:12:01:5a:e6:9d:b7:22:ef:fd:c5:57:ac:c3:2b:c8:
                    46:4c:a9:09:89:3d:9a:42:49:ec:82:5a:98:37:6d:37:
                    d3:15:d9:e4:83:f1:14:93:76:ad:68:e2:4c:84:89:00:
                    b3:61:e6:8d:4a:8b:ad:02:29:2e:40:3e:9e:27:2c:98:
                    98:dd:05:eb:87:4c:a0:87:e3:9e:58:23:a0:65:65:0a:
                    35:0a:c2:a8:fd:ce:fa:a5:7e:2e:f1:90:2f:df:a2:cc:
                    9b:ea:d0:72:48:4d:4a:81:31:a9:e0:f4:b6:0a:b0:4c:
                    81:b6:5a:53:73:22:dc:53:f9:82:ae:0e:08:19:4f:34:
                    3a:4a:7a:d3:15:8f:60:7d:9b:3f:9c:98:37:33:57:47:
                    b9:cf:e0:ba:71:aa:09:99:12:62:0a:7a:a8:86:2c:2f:
                    64:02:48:08:81:b8:26:be:ca:7f:a1:54:37:4d:ab:4b:
                    5d:80:87:14:da:19:42:e0:11:bd:1d:7a:9b:a6:6f:b1:
                    4a:b8:d1:50:c5:4a:e3:34:e2:35:da:f3:28:58:af:17:
                    ac:74:e9:51:45:b9:de:2c:1a:5e:a0:5d:ab:da:6c:f8:
                    ae:51:64:54:16:87:80:04:83:63:e4:6a:00:8e:73:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:22:a6:22:95:58:51:ee:a8:b9:18:bf:24:07:e0:b6:
        22:df:c5:8d:6c:8f:60:cb:30:08:9c:30:f7:04:65:b6:
        32:ca:88:a8:ca:ac:c4:ec:c6:c7:a7:8d:aa:ca:43:35:
        42:84:12:2f:82:ab:79:6a:a6:17:b2:a1:6e:82:02:67:
        ce:36:b8:94:85:b7:53:4e:44:ad:6e:fc:fc:fe:b9:31:
        50:74:da:40:5d:c6:fd:eb:ab:ad:55:71:d3:bb:63:9c:
        0b:fa:07:dc:2e:56:b9:8e:5b:e6:5e:81:e0:cf:f5:79:
        e3:e9:e0:4c:16:ae:8f:52:f3:e2:66:ac:d6:0d:0d:62:
        42:5a:23:73:ec:16:0b:92:cb:06:a0:8b:87:92:f6:a0:
        3f:9a:29:ea:84:8c:7d:d8:e8:48:a8:96:6a:22:7e:df:
        8a:d1:7c:5c:49:dc:2e:2f:40:89:ce:c8:06:29:6e:49:
        d5:27:98:9b:9d:67:9e:62:df:9d:92:c0:ad:ec:f2:62:
        3c:ba:40:a1:87:a0:43:1a:1d:9f:d6:92:93:d9:d5:1a:
        b9:16:db:eb:9d:61:29:3a:2a:16:75:b8:62:6f:1e:f7:
        15:0e:c7:45:ab:a8:9c:32:2f:c6:e0:bf:01:c3:a4:d3:
        ed:6d:d9:f7:96:ef:04:91:dd:a4:6c:8f:1b:17:9d:71
    Fingerprint (SHA-256):
        7D:EA:54:51:99:4D:7D:25:46:0F:38:EA:FE:AE:1D:49:60:38:EC:7F:DC:59:36:43:F4:F7:38:BA:A7:92:FF:65
    Fingerprint (SHA1):
        80:BA:0F:59:2B:B7:CB:7B:F9:F4:54:A1:A8:FA:5E:61:BB:D9:2A:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6940: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6941: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6942: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6943: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123345 (0x310fdd91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:16:7a:e9:1f:2f:a2:53:b1:94:8b:3a:61:9f:ca:6e:
                    a1:12:01:5a:e6:9d:b7:22:ef:fd:c5:57:ac:c3:2b:c8:
                    46:4c:a9:09:89:3d:9a:42:49:ec:82:5a:98:37:6d:37:
                    d3:15:d9:e4:83:f1:14:93:76:ad:68:e2:4c:84:89:00:
                    b3:61:e6:8d:4a:8b:ad:02:29:2e:40:3e:9e:27:2c:98:
                    98:dd:05:eb:87:4c:a0:87:e3:9e:58:23:a0:65:65:0a:
                    35:0a:c2:a8:fd:ce:fa:a5:7e:2e:f1:90:2f:df:a2:cc:
                    9b:ea:d0:72:48:4d:4a:81:31:a9:e0:f4:b6:0a:b0:4c:
                    81:b6:5a:53:73:22:dc:53:f9:82:ae:0e:08:19:4f:34:
                    3a:4a:7a:d3:15:8f:60:7d:9b:3f:9c:98:37:33:57:47:
                    b9:cf:e0:ba:71:aa:09:99:12:62:0a:7a:a8:86:2c:2f:
                    64:02:48:08:81:b8:26:be:ca:7f:a1:54:37:4d:ab:4b:
                    5d:80:87:14:da:19:42:e0:11:bd:1d:7a:9b:a6:6f:b1:
                    4a:b8:d1:50:c5:4a:e3:34:e2:35:da:f3:28:58:af:17:
                    ac:74:e9:51:45:b9:de:2c:1a:5e:a0:5d:ab:da:6c:f8:
                    ae:51:64:54:16:87:80:04:83:63:e4:6a:00:8e:73:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:22:a6:22:95:58:51:ee:a8:b9:18:bf:24:07:e0:b6:
        22:df:c5:8d:6c:8f:60:cb:30:08:9c:30:f7:04:65:b6:
        32:ca:88:a8:ca:ac:c4:ec:c6:c7:a7:8d:aa:ca:43:35:
        42:84:12:2f:82:ab:79:6a:a6:17:b2:a1:6e:82:02:67:
        ce:36:b8:94:85:b7:53:4e:44:ad:6e:fc:fc:fe:b9:31:
        50:74:da:40:5d:c6:fd:eb:ab:ad:55:71:d3:bb:63:9c:
        0b:fa:07:dc:2e:56:b9:8e:5b:e6:5e:81:e0:cf:f5:79:
        e3:e9:e0:4c:16:ae:8f:52:f3:e2:66:ac:d6:0d:0d:62:
        42:5a:23:73:ec:16:0b:92:cb:06:a0:8b:87:92:f6:a0:
        3f:9a:29:ea:84:8c:7d:d8:e8:48:a8:96:6a:22:7e:df:
        8a:d1:7c:5c:49:dc:2e:2f:40:89:ce:c8:06:29:6e:49:
        d5:27:98:9b:9d:67:9e:62:df:9d:92:c0:ad:ec:f2:62:
        3c:ba:40:a1:87:a0:43:1a:1d:9f:d6:92:93:d9:d5:1a:
        b9:16:db:eb:9d:61:29:3a:2a:16:75:b8:62:6f:1e:f7:
        15:0e:c7:45:ab:a8:9c:32:2f:c6:e0:bf:01:c3:a4:d3:
        ed:6d:d9:f7:96:ef:04:91:dd:a4:6c:8f:1b:17:9d:71
    Fingerprint (SHA-256):
        7D:EA:54:51:99:4D:7D:25:46:0F:38:EA:FE:AE:1D:49:60:38:EC:7F:DC:59:36:43:F4:F7:38:BA:A7:92:FF:65
    Fingerprint (SHA1):
        80:BA:0F:59:2B:B7:CB:7B:F9:F4:54:A1:A8:FA:5E:61:BB:D9:2A:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6944: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123346 (0x310fdd92)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:45:c9:9f:bb:03:d6:7e:1d:69:88:ea:e6:90:a0:f0:
                    56:2e:85:56:c5:31:37:4c:59:1e:1a:9a:bc:2a:3e:5b:
                    1b:75:16:c1:d8:b7:30:c7:2f:a7:ac:87:e4:46:4d:65:
                    7e:84:37:88:5a:d1:a3:04:3a:b2:53:f0:c8:6e:98:be:
                    be:c3:46:a3:b6:4b:77:9f:c1:73:5c:f3:82:0e:a8:62:
                    6c:22:ba:04:97:b0:77:37:7c:37:1b:df:a4:ae:75:45:
                    14:38:e7:ff:1d:91:be:95:b4:a3:12:6d:da:2b:a1:89:
                    05:d8:1d:ab:b9:52:a5:31:ac:3e:bb:fa:43:ac:6e:c5:
                    b1:24:ba:7e:de:36:d8:82:b8:cd:00:8e:2f:4e:34:28:
                    f4:76:e3:66:58:9f:f3:97:2f:d2:b6:ea:da:3f:59:a6:
                    ec:c3:ca:8e:3e:79:2f:6b:1b:58:c8:db:19:65:c6:b6:
                    24:2b:9f:99:69:f9:6f:67:2c:10:c8:e4:97:00:ff:06:
                    37:50:63:07:56:41:a1:9b:e3:00:6d:6f:93:97:f3:2c:
                    22:7a:18:e1:0b:cc:18:b8:d2:b3:d9:06:99:72:bc:e9:
                    5c:66:7c:19:8c:4a:85:62:e1:28:e4:78:e5:e2:bf:d9:
                    47:23:1c:10:94:ba:a3:4c:15:10:1b:6b:87:b6:0f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:ab:d7:73:cc:fa:b5:0a:59:05:23:37:75:66:61:51:
        9c:a3:bc:62:49:b0:8c:65:d2:5d:14:a8:fb:b9:33:58:
        b5:5d:63:f8:73:79:35:dc:10:6b:0a:f6:2f:89:5f:aa:
        f0:ab:a2:d4:15:79:87:0d:e3:34:18:02:15:8a:a9:bc:
        e0:dc:2c:24:6f:77:24:8d:98:9d:a2:a3:a3:00:f4:cc:
        04:2c:a1:0f:40:25:7e:55:af:0d:7f:2a:45:4b:a7:67:
        03:10:a7:2a:09:9e:15:20:d1:b6:ef:67:d5:79:cb:6f:
        b5:5a:0d:96:99:9f:8d:fd:a2:1a:ff:be:cd:1d:38:62:
        49:71:8e:19:7d:51:03:b3:22:6d:ed:6f:8a:ae:83:28:
        91:f5:ea:bf:3e:db:fe:4a:ec:87:6e:11:3a:57:8f:40:
        52:5c:7b:5e:65:42:e1:0b:38:ab:d0:94:85:64:49:3a:
        5b:64:db:13:c0:48:52:17:f4:ea:5e:1f:27:67:1f:82:
        b5:e6:27:56:d6:21:b5:20:61:de:1b:44:fb:c0:23:d2:
        01:34:14:99:13:0a:df:26:f8:7a:7b:ec:be:b5:3d:11:
        16:80:82:3a:25:21:66:c1:0f:bc:6f:54:bf:c2:b1:78:
        75:46:db:c4:d3:ad:5c:66:9c:27:75:db:d0:27:15:fe
    Fingerprint (SHA-256):
        AA:3B:BF:41:52:17:F7:9A:23:3A:87:02:32:9F:11:15:DF:F5:23:18:33:AD:BB:DD:F4:CF:00:5D:AE:F2:DE:87
    Fingerprint (SHA1):
        B7:8A:47:6F:DD:2C:4F:C7:14:06:F6:41:45:15:CD:37:73:01:57:D8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6945: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6946: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6947: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6948: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6949: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6950: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123346 (0x310fdd92)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:45:c9:9f:bb:03:d6:7e:1d:69:88:ea:e6:90:a0:f0:
                    56:2e:85:56:c5:31:37:4c:59:1e:1a:9a:bc:2a:3e:5b:
                    1b:75:16:c1:d8:b7:30:c7:2f:a7:ac:87:e4:46:4d:65:
                    7e:84:37:88:5a:d1:a3:04:3a:b2:53:f0:c8:6e:98:be:
                    be:c3:46:a3:b6:4b:77:9f:c1:73:5c:f3:82:0e:a8:62:
                    6c:22:ba:04:97:b0:77:37:7c:37:1b:df:a4:ae:75:45:
                    14:38:e7:ff:1d:91:be:95:b4:a3:12:6d:da:2b:a1:89:
                    05:d8:1d:ab:b9:52:a5:31:ac:3e:bb:fa:43:ac:6e:c5:
                    b1:24:ba:7e:de:36:d8:82:b8:cd:00:8e:2f:4e:34:28:
                    f4:76:e3:66:58:9f:f3:97:2f:d2:b6:ea:da:3f:59:a6:
                    ec:c3:ca:8e:3e:79:2f:6b:1b:58:c8:db:19:65:c6:b6:
                    24:2b:9f:99:69:f9:6f:67:2c:10:c8:e4:97:00:ff:06:
                    37:50:63:07:56:41:a1:9b:e3:00:6d:6f:93:97:f3:2c:
                    22:7a:18:e1:0b:cc:18:b8:d2:b3:d9:06:99:72:bc:e9:
                    5c:66:7c:19:8c:4a:85:62:e1:28:e4:78:e5:e2:bf:d9:
                    47:23:1c:10:94:ba:a3:4c:15:10:1b:6b:87:b6:0f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:ab:d7:73:cc:fa:b5:0a:59:05:23:37:75:66:61:51:
        9c:a3:bc:62:49:b0:8c:65:d2:5d:14:a8:fb:b9:33:58:
        b5:5d:63:f8:73:79:35:dc:10:6b:0a:f6:2f:89:5f:aa:
        f0:ab:a2:d4:15:79:87:0d:e3:34:18:02:15:8a:a9:bc:
        e0:dc:2c:24:6f:77:24:8d:98:9d:a2:a3:a3:00:f4:cc:
        04:2c:a1:0f:40:25:7e:55:af:0d:7f:2a:45:4b:a7:67:
        03:10:a7:2a:09:9e:15:20:d1:b6:ef:67:d5:79:cb:6f:
        b5:5a:0d:96:99:9f:8d:fd:a2:1a:ff:be:cd:1d:38:62:
        49:71:8e:19:7d:51:03:b3:22:6d:ed:6f:8a:ae:83:28:
        91:f5:ea:bf:3e:db:fe:4a:ec:87:6e:11:3a:57:8f:40:
        52:5c:7b:5e:65:42:e1:0b:38:ab:d0:94:85:64:49:3a:
        5b:64:db:13:c0:48:52:17:f4:ea:5e:1f:27:67:1f:82:
        b5:e6:27:56:d6:21:b5:20:61:de:1b:44:fb:c0:23:d2:
        01:34:14:99:13:0a:df:26:f8:7a:7b:ec:be:b5:3d:11:
        16:80:82:3a:25:21:66:c1:0f:bc:6f:54:bf:c2:b1:78:
        75:46:db:c4:d3:ad:5c:66:9c:27:75:db:d0:27:15:fe
    Fingerprint (SHA-256):
        AA:3B:BF:41:52:17:F7:9A:23:3A:87:02:32:9F:11:15:DF:F5:23:18:33:AD:BB:DD:F4:CF:00:5D:AE:F2:DE:87
    Fingerprint (SHA1):
        B7:8A:47:6F:DD:2C:4F:C7:14:06:F6:41:45:15:CD:37:73:01:57:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6951: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123346 (0x310fdd92)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:45:c9:9f:bb:03:d6:7e:1d:69:88:ea:e6:90:a0:f0:
                    56:2e:85:56:c5:31:37:4c:59:1e:1a:9a:bc:2a:3e:5b:
                    1b:75:16:c1:d8:b7:30:c7:2f:a7:ac:87:e4:46:4d:65:
                    7e:84:37:88:5a:d1:a3:04:3a:b2:53:f0:c8:6e:98:be:
                    be:c3:46:a3:b6:4b:77:9f:c1:73:5c:f3:82:0e:a8:62:
                    6c:22:ba:04:97:b0:77:37:7c:37:1b:df:a4:ae:75:45:
                    14:38:e7:ff:1d:91:be:95:b4:a3:12:6d:da:2b:a1:89:
                    05:d8:1d:ab:b9:52:a5:31:ac:3e:bb:fa:43:ac:6e:c5:
                    b1:24:ba:7e:de:36:d8:82:b8:cd:00:8e:2f:4e:34:28:
                    f4:76:e3:66:58:9f:f3:97:2f:d2:b6:ea:da:3f:59:a6:
                    ec:c3:ca:8e:3e:79:2f:6b:1b:58:c8:db:19:65:c6:b6:
                    24:2b:9f:99:69:f9:6f:67:2c:10:c8:e4:97:00:ff:06:
                    37:50:63:07:56:41:a1:9b:e3:00:6d:6f:93:97:f3:2c:
                    22:7a:18:e1:0b:cc:18:b8:d2:b3:d9:06:99:72:bc:e9:
                    5c:66:7c:19:8c:4a:85:62:e1:28:e4:78:e5:e2:bf:d9:
                    47:23:1c:10:94:ba:a3:4c:15:10:1b:6b:87:b6:0f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:ab:d7:73:cc:fa:b5:0a:59:05:23:37:75:66:61:51:
        9c:a3:bc:62:49:b0:8c:65:d2:5d:14:a8:fb:b9:33:58:
        b5:5d:63:f8:73:79:35:dc:10:6b:0a:f6:2f:89:5f:aa:
        f0:ab:a2:d4:15:79:87:0d:e3:34:18:02:15:8a:a9:bc:
        e0:dc:2c:24:6f:77:24:8d:98:9d:a2:a3:a3:00:f4:cc:
        04:2c:a1:0f:40:25:7e:55:af:0d:7f:2a:45:4b:a7:67:
        03:10:a7:2a:09:9e:15:20:d1:b6:ef:67:d5:79:cb:6f:
        b5:5a:0d:96:99:9f:8d:fd:a2:1a:ff:be:cd:1d:38:62:
        49:71:8e:19:7d:51:03:b3:22:6d:ed:6f:8a:ae:83:28:
        91:f5:ea:bf:3e:db:fe:4a:ec:87:6e:11:3a:57:8f:40:
        52:5c:7b:5e:65:42:e1:0b:38:ab:d0:94:85:64:49:3a:
        5b:64:db:13:c0:48:52:17:f4:ea:5e:1f:27:67:1f:82:
        b5:e6:27:56:d6:21:b5:20:61:de:1b:44:fb:c0:23:d2:
        01:34:14:99:13:0a:df:26:f8:7a:7b:ec:be:b5:3d:11:
        16:80:82:3a:25:21:66:c1:0f:bc:6f:54:bf:c2:b1:78:
        75:46:db:c4:d3:ad:5c:66:9c:27:75:db:d0:27:15:fe
    Fingerprint (SHA-256):
        AA:3B:BF:41:52:17:F7:9A:23:3A:87:02:32:9F:11:15:DF:F5:23:18:33:AD:BB:DD:F4:CF:00:5D:AE:F2:DE:87
    Fingerprint (SHA1):
        B7:8A:47:6F:DD:2C:4F:C7:14:06:F6:41:45:15:CD:37:73:01:57:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6952: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6953: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6954: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6955: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6956: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6957: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123345 (0x310fdd91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:16:7a:e9:1f:2f:a2:53:b1:94:8b:3a:61:9f:ca:6e:
                    a1:12:01:5a:e6:9d:b7:22:ef:fd:c5:57:ac:c3:2b:c8:
                    46:4c:a9:09:89:3d:9a:42:49:ec:82:5a:98:37:6d:37:
                    d3:15:d9:e4:83:f1:14:93:76:ad:68:e2:4c:84:89:00:
                    b3:61:e6:8d:4a:8b:ad:02:29:2e:40:3e:9e:27:2c:98:
                    98:dd:05:eb:87:4c:a0:87:e3:9e:58:23:a0:65:65:0a:
                    35:0a:c2:a8:fd:ce:fa:a5:7e:2e:f1:90:2f:df:a2:cc:
                    9b:ea:d0:72:48:4d:4a:81:31:a9:e0:f4:b6:0a:b0:4c:
                    81:b6:5a:53:73:22:dc:53:f9:82:ae:0e:08:19:4f:34:
                    3a:4a:7a:d3:15:8f:60:7d:9b:3f:9c:98:37:33:57:47:
                    b9:cf:e0:ba:71:aa:09:99:12:62:0a:7a:a8:86:2c:2f:
                    64:02:48:08:81:b8:26:be:ca:7f:a1:54:37:4d:ab:4b:
                    5d:80:87:14:da:19:42:e0:11:bd:1d:7a:9b:a6:6f:b1:
                    4a:b8:d1:50:c5:4a:e3:34:e2:35:da:f3:28:58:af:17:
                    ac:74:e9:51:45:b9:de:2c:1a:5e:a0:5d:ab:da:6c:f8:
                    ae:51:64:54:16:87:80:04:83:63:e4:6a:00:8e:73:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:22:a6:22:95:58:51:ee:a8:b9:18:bf:24:07:e0:b6:
        22:df:c5:8d:6c:8f:60:cb:30:08:9c:30:f7:04:65:b6:
        32:ca:88:a8:ca:ac:c4:ec:c6:c7:a7:8d:aa:ca:43:35:
        42:84:12:2f:82:ab:79:6a:a6:17:b2:a1:6e:82:02:67:
        ce:36:b8:94:85:b7:53:4e:44:ad:6e:fc:fc:fe:b9:31:
        50:74:da:40:5d:c6:fd:eb:ab:ad:55:71:d3:bb:63:9c:
        0b:fa:07:dc:2e:56:b9:8e:5b:e6:5e:81:e0:cf:f5:79:
        e3:e9:e0:4c:16:ae:8f:52:f3:e2:66:ac:d6:0d:0d:62:
        42:5a:23:73:ec:16:0b:92:cb:06:a0:8b:87:92:f6:a0:
        3f:9a:29:ea:84:8c:7d:d8:e8:48:a8:96:6a:22:7e:df:
        8a:d1:7c:5c:49:dc:2e:2f:40:89:ce:c8:06:29:6e:49:
        d5:27:98:9b:9d:67:9e:62:df:9d:92:c0:ad:ec:f2:62:
        3c:ba:40:a1:87:a0:43:1a:1d:9f:d6:92:93:d9:d5:1a:
        b9:16:db:eb:9d:61:29:3a:2a:16:75:b8:62:6f:1e:f7:
        15:0e:c7:45:ab:a8:9c:32:2f:c6:e0:bf:01:c3:a4:d3:
        ed:6d:d9:f7:96:ef:04:91:dd:a4:6c:8f:1b:17:9d:71
    Fingerprint (SHA-256):
        7D:EA:54:51:99:4D:7D:25:46:0F:38:EA:FE:AE:1D:49:60:38:EC:7F:DC:59:36:43:F4:F7:38:BA:A7:92:FF:65
    Fingerprint (SHA1):
        80:BA:0F:59:2B:B7:CB:7B:F9:F4:54:A1:A8:FA:5E:61:BB:D9:2A:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6958: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123345 (0x310fdd91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:55 2017
            Not After : Tue Aug 23 12:33:55 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:16:7a:e9:1f:2f:a2:53:b1:94:8b:3a:61:9f:ca:6e:
                    a1:12:01:5a:e6:9d:b7:22:ef:fd:c5:57:ac:c3:2b:c8:
                    46:4c:a9:09:89:3d:9a:42:49:ec:82:5a:98:37:6d:37:
                    d3:15:d9:e4:83:f1:14:93:76:ad:68:e2:4c:84:89:00:
                    b3:61:e6:8d:4a:8b:ad:02:29:2e:40:3e:9e:27:2c:98:
                    98:dd:05:eb:87:4c:a0:87:e3:9e:58:23:a0:65:65:0a:
                    35:0a:c2:a8:fd:ce:fa:a5:7e:2e:f1:90:2f:df:a2:cc:
                    9b:ea:d0:72:48:4d:4a:81:31:a9:e0:f4:b6:0a:b0:4c:
                    81:b6:5a:53:73:22:dc:53:f9:82:ae:0e:08:19:4f:34:
                    3a:4a:7a:d3:15:8f:60:7d:9b:3f:9c:98:37:33:57:47:
                    b9:cf:e0:ba:71:aa:09:99:12:62:0a:7a:a8:86:2c:2f:
                    64:02:48:08:81:b8:26:be:ca:7f:a1:54:37:4d:ab:4b:
                    5d:80:87:14:da:19:42:e0:11:bd:1d:7a:9b:a6:6f:b1:
                    4a:b8:d1:50:c5:4a:e3:34:e2:35:da:f3:28:58:af:17:
                    ac:74:e9:51:45:b9:de:2c:1a:5e:a0:5d:ab:da:6c:f8:
                    ae:51:64:54:16:87:80:04:83:63:e4:6a:00:8e:73:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:22:a6:22:95:58:51:ee:a8:b9:18:bf:24:07:e0:b6:
        22:df:c5:8d:6c:8f:60:cb:30:08:9c:30:f7:04:65:b6:
        32:ca:88:a8:ca:ac:c4:ec:c6:c7:a7:8d:aa:ca:43:35:
        42:84:12:2f:82:ab:79:6a:a6:17:b2:a1:6e:82:02:67:
        ce:36:b8:94:85:b7:53:4e:44:ad:6e:fc:fc:fe:b9:31:
        50:74:da:40:5d:c6:fd:eb:ab:ad:55:71:d3:bb:63:9c:
        0b:fa:07:dc:2e:56:b9:8e:5b:e6:5e:81:e0:cf:f5:79:
        e3:e9:e0:4c:16:ae:8f:52:f3:e2:66:ac:d6:0d:0d:62:
        42:5a:23:73:ec:16:0b:92:cb:06:a0:8b:87:92:f6:a0:
        3f:9a:29:ea:84:8c:7d:d8:e8:48:a8:96:6a:22:7e:df:
        8a:d1:7c:5c:49:dc:2e:2f:40:89:ce:c8:06:29:6e:49:
        d5:27:98:9b:9d:67:9e:62:df:9d:92:c0:ad:ec:f2:62:
        3c:ba:40:a1:87:a0:43:1a:1d:9f:d6:92:93:d9:d5:1a:
        b9:16:db:eb:9d:61:29:3a:2a:16:75:b8:62:6f:1e:f7:
        15:0e:c7:45:ab:a8:9c:32:2f:c6:e0:bf:01:c3:a4:d3:
        ed:6d:d9:f7:96:ef:04:91:dd:a4:6c:8f:1b:17:9d:71
    Fingerprint (SHA-256):
        7D:EA:54:51:99:4D:7D:25:46:0F:38:EA:FE:AE:1D:49:60:38:EC:7F:DC:59:36:43:F4:F7:38:BA:A7:92:FF:65
    Fingerprint (SHA1):
        80:BA:0F:59:2B:B7:CB:7B:F9:F4:54:A1:A8:FA:5E:61:BB:D9:2A:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6959: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6960: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123350 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6961: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6962: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6963: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123351 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6964: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6965: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6966: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123352 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6967: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6968: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6969: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123353 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6970: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6971: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6972: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123354 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6973: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6974: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6975: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123355 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6976: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6977: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6978: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123356 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6979: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6980: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6981: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123357 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6982: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6983: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6984: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123358 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6985: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6986: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6987: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6988: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 823123359 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6989: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6990: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 823123360 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6991: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6992: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 823123361 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6993: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6994: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6995: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6996: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6997: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 823123362 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6998: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6999: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 823123363 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7000: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7001: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 823123364 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7002: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7003: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #7004: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #7005: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7006: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 823123365 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7007: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7008: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 823123366 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7009: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7010: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 823123367 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7011: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7012: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #7013: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #7014: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7015: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 823123368 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7016: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7017: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 823123369 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7018: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7019: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 823123370 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7020: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7021: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #7022: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7023: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7024: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 823123371   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7025: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7026: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7027: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7028: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123372   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7029: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7030: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123350 (0x310fdd96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:56 2017
            Not After : Tue Aug 23 12:33:56 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:ac:ae:19:40:ef:44:30:24:6b:fc:aa:d9:06:6d:1b:
                    88:04:9f:1c:8e:f8:72:3d:8b:58:ab:14:24:14:e2:1d:
                    26:07:15:c8:44:6f:df:c9:28:f1:b2:0c:0b:6f:41:50:
                    0d:ed:69:47:62:22:76:98:54:28:1c:fd:97:69:53:27:
                    f2:2c:72:58:20:c4:9b:da:3a:0e:17:af:2e:b1:85:60:
                    b4:eb:32:e9:b9:8a:52:2f:1a:6d:95:f5:ee:0e:b0:7d:
                    db:79:bf:0a:f4:c9:ef:b8:53:0d:bb:36:39:4b:03:0f:
                    0c:8e:cb:8f:62:bc:5e:ff:58:2c:48:c5:54:eb:9c:d1:
                    25:c5:cb:fa:3e:1c:7c:a1:5d:22:79:69:0c:f3:93:64:
                    5f:bc:66:d2:47:15:de:45:c2:89:d9:c6:f8:65:82:a1:
                    e0:56:8e:1d:32:f5:0d:82:bc:41:ae:bf:74:13:70:e9:
                    31:3f:f7:ba:5f:ba:67:19:60:20:75:ed:75:b4:ce:ff:
                    fb:b9:7b:e1:ac:5e:bf:ba:01:fb:ae:9f:46:24:91:ba:
                    b2:e8:28:95:1f:fd:ff:63:bf:f4:af:59:83:4a:bf:ce:
                    21:96:d7:45:ec:3f:6f:4b:c6:d5:41:7c:e0:88:0b:3b:
                    0b:cc:d7:76:7c:44:fa:c9:39:6e:50:d8:9f:00:ce:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:dd:54:65:a9:b3:40:35:5e:7a:8f:a9:a7:a9:64:08:
        02:4e:21:49:22:1a:83:53:72:97:57:aa:7c:2d:59:45:
        cb:50:11:4d:15:d0:df:d6:2a:9d:8f:6f:8a:4d:a0:84:
        d8:f2:66:d6:3b:8c:98:d1:9e:0a:35:7c:bf:c0:b4:87:
        db:27:8e:94:74:53:35:91:95:aa:88:ba:05:77:40:ae:
        b8:40:b6:fd:34:ce:cb:7d:2c:ee:2d:e7:2b:01:2e:17:
        89:2c:9b:12:c1:1c:cf:80:77:03:44:64:6e:0f:fc:1d:
        4b:77:78:7d:5c:13:a4:0c:1f:91:55:ca:f2:3e:ac:99:
        3d:11:22:ac:ea:0c:64:fe:02:66:21:40:d7:aa:14:d1:
        2e:02:5e:b1:e8:3c:35:8a:a9:8f:a8:78:a0:bf:55:27:
        6b:75:bc:95:f4:61:96:0c:38:13:fb:50:32:ce:b3:c8:
        26:ac:13:cc:9d:61:6d:68:01:ff:da:6c:d4:cd:94:ae:
        0c:98:e1:a0:32:5e:d7:39:a0:48:d8:63:90:87:06:be:
        36:bb:25:fa:f5:45:9e:fe:35:a5:8f:90:b8:c6:69:7e:
        1d:cc:b5:09:22:8e:70:8e:b7:c0:68:7f:72:29:5f:2e:
        b0:a2:3a:ed:a6:b7:d7:30:4b:ed:7f:14:26:17:9d:c7
    Fingerprint (SHA-256):
        22:38:81:F2:CD:9A:D9:B3:FC:BB:53:A7:D3:BB:33:7C:3D:EB:A3:12:8F:14:F2:C4:DA:99:0F:38:77:BE:9E:8F
    Fingerprint (SHA1):
        A2:1A:1B:EC:35:C8:1B:D9:DB:F0:8E:9D:73:C2:95:A0:C7:97:C7:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7031: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123351 (0x310fdd97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:56 2017
            Not After : Tue Aug 23 12:33:56 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:9b:35:ad:f2:b1:40:90:5c:fc:7c:84:28:c6:6c:f6:
                    31:84:d1:69:46:ce:a3:43:38:50:4d:71:6a:9d:33:62:
                    4f:b3:d6:bd:9b:72:d0:46:38:17:d2:6f:e1:72:69:22:
                    6b:44:cb:3e:53:1d:1c:65:ab:ae:c4:e3:15:ad:9c:4b:
                    bc:de:a2:f8:1a:b9:a0:e7:ed:51:ee:70:94:af:12:87:
                    59:aa:fa:ad:bb:cc:8c:b3:25:30:f3:57:bc:bb:39:6f:
                    38:06:3d:ed:1a:ea:dd:78:90:a8:1c:0d:c1:a3:2a:26:
                    da:7f:39:a6:18:8b:a6:29:ab:e0:df:a4:37:c3:1d:f0:
                    b7:66:44:54:8b:f9:13:bb:0d:e5:6e:e3:54:79:c5:ed:
                    36:b9:31:bc:3b:49:63:9c:36:56:e3:82:cb:0f:8a:53:
                    e4:93:38:1f:c6:0e:6c:cf:35:d3:0c:a4:c8:b2:7e:08:
                    69:50:a4:27:93:4f:c6:f7:a5:50:5e:b7:fd:40:42:41:
                    87:29:ea:e2:f2:e0:84:68:9c:8d:da:c4:a7:cc:57:89:
                    c6:cf:69:f2:7d:14:0d:a1:18:69:c1:54:4f:24:16:bf:
                    e9:7e:37:75:e8:1b:26:92:cb:32:29:42:cc:e7:9e:01:
                    20:1a:92:a6:d7:74:08:8c:30:3a:db:8f:12:5a:0f:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5b:bb:32:7c:40:7b:a2:00:fd:0c:af:58:2e:d9:d1:da:
        ea:84:7a:4f:cf:64:bc:2e:38:75:f2:f6:67:9a:8c:8f:
        7f:3a:04:bf:b7:0e:35:85:f7:4d:bb:fc:34:d1:2a:20:
        f4:d1:9d:5d:33:14:30:34:9c:48:03:eb:e2:99:1c:60:
        0a:f0:29:23:31:66:32:bd:ec:f3:1b:40:da:03:b2:24:
        16:e0:ce:a2:d4:a3:1a:29:8b:d1:3b:de:8d:fa:81:8e:
        5a:77:8d:e4:52:77:eb:9c:46:0f:f6:2f:f1:13:57:8f:
        d4:52:2a:98:50:7c:35:57:82:42:75:49:97:92:07:89:
        a3:39:62:b1:ce:48:39:67:d3:c3:ac:89:b8:89:70:1f:
        f1:9f:62:21:a2:10:ee:32:ec:81:4b:dc:f8:9e:19:8d:
        e7:a5:89:7f:a0:20:d6:cc:ea:ad:b4:f6:c6:fe:80:fc:
        12:f1:2e:4b:e2:05:13:31:8b:3c:d7:1d:d4:3f:e0:31:
        15:2e:ed:48:03:86:e3:a7:8b:e3:b6:b2:aa:54:0d:a6:
        82:0a:4a:de:7f:dc:18:cc:83:6d:14:3c:7b:71:f3:de:
        e5:2f:42:03:44:a5:9d:15:d6:d7:8c:2b:51:57:86:ed:
        29:87:6a:95:57:6a:51:5b:b5:1d:72:9b:0d:87:08:2c
    Fingerprint (SHA-256):
        B6:58:46:12:C6:46:A6:EA:60:B5:CC:27:9F:82:0B:62:D1:58:DE:4C:8D:34:97:AC:45:10:E9:EE:88:E7:4A:3A
    Fingerprint (SHA1):
        95:BF:D2:BC:52:5A:CB:8F:DD:21:3D:C2:99:48:6B:37:14:2C:98:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7032: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123352 (0x310fdd98)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:57 2017
            Not After : Tue Aug 23 12:33:57 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:4c:2b:5c:9e:51:37:ec:86:f9:ac:60:77:43:39:6f:
                    a0:b1:c9:20:a1:39:8e:f3:45:74:97:b1:47:1e:40:6b:
                    50:d1:b3:b1:79:cb:72:31:fd:ec:f3:9a:e3:e4:9e:05:
                    12:07:13:f9:94:38:a1:5e:f2:a3:5b:46:b7:34:02:44:
                    e4:d0:56:c2:fb:af:e1:0c:5a:32:25:2a:fb:8b:21:79:
                    f7:78:29:52:e5:8b:47:e0:1c:bc:52:4c:c4:e2:1a:f1:
                    30:6a:a0:77:37:f2:fb:4e:7a:2c:44:b7:5e:f1:4e:e0:
                    50:08:7f:8f:88:49:5d:37:55:5b:32:53:57:32:ac:d9:
                    b1:c1:6c:ad:0a:48:33:0f:c7:0f:59:bb:dd:e0:9d:1d:
                    9f:52:c9:30:44:65:c9:f1:54:c6:eb:28:ea:c8:5a:2d:
                    f8:55:17:3a:e3:3b:1b:36:88:1c:89:56:0d:66:fc:9b:
                    26:d4:23:fc:6c:e5:2c:4d:65:44:d8:cc:8a:4d:e9:17:
                    36:cc:a4:1f:4a:43:6f:65:69:85:eb:58:d6:f9:d9:0d:
                    8b:22:c3:c2:64:bf:82:1e:23:d3:67:2d:26:d8:03:90:
                    02:1e:f7:a2:3e:7f:3b:ef:3c:5d:ee:32:90:89:fc:23:
                    78:0c:4d:15:19:12:df:a1:16:c0:f9:ef:26:05:87:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bb:4a:24:57:77:90:f4:96:85:ba:52:3a:b3:21:af:1e:
        dd:85:8e:ec:98:a0:59:95:8a:6d:94:17:f5:08:82:6d:
        d3:22:af:1a:8d:6c:a9:9d:91:7d:96:e7:bd:b4:d9:60:
        3c:46:4d:05:03:11:a2:9e:01:1e:19:61:71:ad:5f:fe:
        c1:c3:00:3d:63:eb:3c:ab:75:59:9c:af:8f:c8:68:45:
        37:5d:c8:06:dd:5e:ae:0a:29:ac:84:01:cb:32:0c:6f:
        00:9f:8c:4b:04:2e:59:fc:1e:ef:82:b4:00:ee:8a:15:
        d8:50:30:d8:9f:46:3f:c5:24:d5:cf:62:41:d7:a0:f8:
        ae:9a:dc:7b:9b:9e:a0:b4:77:6b:b3:0a:c7:18:63:a1:
        2e:8b:3d:70:29:9c:d8:6a:33:3e:16:67:91:82:ee:60:
        71:97:bb:4d:82:71:df:cc:3f:d3:e5:68:f6:3a:89:99:
        21:32:1c:74:8f:e2:02:44:fc:51:64:f6:09:39:f5:9c:
        db:e1:d9:fb:e6:71:3c:00:ec:c8:31:2d:cf:05:8d:e7:
        73:0f:e5:c7:a8:7b:e2:c7:6b:f4:9d:a4:48:9e:1f:ad:
        93:61:51:fb:b3:81:1d:c5:fd:2a:56:ae:af:fd:0c:de:
        d1:eb:c7:1b:ee:13:5a:da:81:03:d0:d3:55:fb:a1:4e
    Fingerprint (SHA-256):
        0B:AC:46:70:D9:74:36:EC:17:A9:58:68:9A:FC:10:A2:34:EB:15:B8:FD:1A:E8:C6:F6:EF:13:3C:D6:2A:18:6F
    Fingerprint (SHA1):
        3F:11:7E:1C:14:D6:74:0A:4F:63:F3:0D:C8:AB:FD:91:10:5D:83:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7033: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123353 (0x310fdd99)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:57 2017
            Not After : Tue Aug 23 12:33:57 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:dc:f5:ff:b3:26:ef:4d:01:74:f0:d3:44:e6:72:59:
                    98:2f:1e:fb:0e:38:b7:e5:c3:65:0c:97:a6:39:f8:d7:
                    fd:ce:ff:a1:bc:29:ec:0a:e0:fd:71:a1:29:7b:94:b3:
                    72:da:19:d4:47:b7:95:e0:d1:07:5a:77:f4:2b:53:26:
                    3b:b1:20:fe:c0:97:c2:47:ec:b8:87:81:a5:f6:5a:17:
                    a4:6e:c5:4a:57:58:bb:e2:49:07:b3:62:36:42:c9:20:
                    e9:53:07:38:6f:84:49:c3:bc:79:14:16:b8:6c:f7:88:
                    86:e3:42:56:14:9f:75:6e:42:96:83:38:56:f4:e4:4f:
                    f0:c4:ff:fd:21:31:f5:26:8c:c7:ae:35:d3:ce:47:ae:
                    fe:2d:e5:b9:ec:b3:a7:bc:93:62:58:53:13:dc:3c:6a:
                    fa:1a:7e:1d:15:78:dd:6b:24:17:f3:1c:52:02:34:af:
                    64:6d:f4:3d:4e:2c:e7:c6:57:29:16:96:b1:8e:c5:7e:
                    f6:88:16:d4:90:74:00:cf:64:ef:e5:00:c0:4c:9b:01:
                    86:86:e9:7a:cf:ff:74:1c:33:c6:45:0e:74:4a:0c:32:
                    26:c2:b7:c4:72:a0:d8:15:16:32:b9:c6:2b:af:eb:c4:
                    a9:b7:e8:d7:16:a1:94:4c:0e:7c:f8:07:d8:07:85:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:58:29:b0:f3:c5:ea:64:8c:8e:80:88:a3:0f:21:3a:
        70:22:ea:a9:74:c4:36:38:16:c0:a5:54:21:e6:e0:12:
        c6:94:6c:85:08:e7:14:ee:0d:a2:d5:83:b7:30:f3:87:
        44:46:66:e5:6a:e2:dc:6e:4c:90:a9:6f:24:3b:a5:38:
        f1:a9:c0:45:0a:cc:65:3d:e0:84:2e:1e:f1:77:97:aa:
        f5:24:70:10:ca:cb:bf:0a:e0:60:fd:35:41:13:27:be:
        d7:a2:8f:f0:cb:fb:d2:b2:ce:bd:8a:0b:b1:c2:6e:b7:
        15:71:39:69:ac:ad:97:46:d8:a6:93:60:99:61:45:98:
        b1:4a:b9:2e:3f:f1:66:18:5b:d5:0d:6f:3f:2b:80:19:
        9f:d4:23:66:72:37:6f:d1:5a:c7:6a:69:c1:ae:ee:a8:
        66:ac:2c:8a:65:11:37:70:34:73:06:1f:01:34:78:6b:
        b2:25:26:05:1d:10:10:bc:c8:47:7d:ec:48:77:55:69:
        b5:fa:1b:7f:a5:cb:c5:3a:d1:81:e6:28:8d:19:6e:58:
        99:55:7d:78:c6:1a:be:d5:9f:46:22:78:e5:91:cc:52:
        63:fb:29:b3:96:18:8f:dd:38:23:64:f0:ad:7e:34:12:
        d7:21:b6:57:f6:81:59:38:2c:20:bf:b8:8f:f0:01:84
    Fingerprint (SHA-256):
        4D:A7:92:23:44:D7:8D:48:40:47:29:42:8A:80:AD:CB:BF:D6:C7:1E:7F:C3:98:CE:21:A9:01:43:C4:81:CC:F0
    Fingerprint (SHA1):
        8F:6E:B0:2C:21:B4:EF:B9:DB:6C:11:B7:DD:7D:3F:15:78:FC:AA:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7034: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123354 (0x310fdd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:57 2017
            Not After : Tue Aug 23 12:33:57 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:38:e4:c2:a9:cf:5e:f7:4e:6a:2f:cd:70:26:97:be:
                    44:76:5d:a1:ec:e4:fe:70:3b:4f:b8:62:1b:76:86:e8:
                    62:87:e8:b1:fa:18:dd:be:a7:80:54:19:8c:75:ce:10:
                    e5:14:67:e0:37:fe:47:3b:d2:24:f1:fc:0f:3f:18:83:
                    e5:14:27:89:56:aa:6a:bc:fd:e3:44:de:6b:52:15:25:
                    cd:d5:a4:1f:3c:10:31:56:5c:5a:28:7d:b6:63:37:09:
                    d0:d7:09:19:97:a3:25:67:17:4e:99:54:ea:c3:9d:c2:
                    99:55:db:62:bf:97:7e:29:ed:66:05:8a:db:97:d3:c7:
                    23:69:17:4e:9a:06:14:f6:e6:62:4b:5b:61:3e:42:39:
                    ef:02:b7:35:68:29:f7:4b:f2:58:f3:3a:18:8c:98:40:
                    7c:f4:88:da:50:02:f1:4e:13:ad:cd:85:2b:ff:90:56:
                    e7:3e:b1:84:fe:60:ee:ee:c6:86:ff:53:91:9e:48:66:
                    00:02:81:85:ac:d7:c5:2f:12:0b:20:03:ef:90:64:c9:
                    92:1a:2d:27:92:5b:bd:b3:4d:bb:6f:c6:1d:9e:2a:cb:
                    5f:5d:87:ac:f8:7b:1d:d2:d6:73:ae:1b:7e:fe:ea:3f:
                    dc:4a:10:6b:ac:a9:bf:45:fe:6e:6e:d8:25:75:69:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:00:4f:eb:4e:5c:90:77:aa:25:17:72:4c:0a:1b:bd:
        98:77:a7:f4:a9:27:78:04:cf:e6:fb:20:cb:be:51:1f:
        35:d3:d7:87:5b:ff:43:55:b1:75:c6:35:bd:6c:06:54:
        11:46:48:9d:6d:7b:ca:bb:46:ce:4d:be:0f:ab:3e:9e:
        09:1c:42:a7:81:ff:ea:ba:62:f5:9a:bf:f8:ff:78:4c:
        b1:4d:21:e5:f6:fa:9f:e3:af:eb:74:74:0e:aa:93:ed:
        11:4e:9d:d9:cd:5a:b3:b9:8d:c4:6d:29:55:2d:6c:e6:
        30:70:da:fa:6b:41:8c:a6:73:50:3d:38:7b:14:93:8e:
        e4:5c:9d:47:4c:87:79:23:1a:36:42:ba:66:bd:a7:ea:
        02:87:7f:ec:8d:50:b7:bf:cd:f9:78:7c:a2:ea:c6:84:
        01:6f:e7:3a:14:46:4b:de:74:4a:4a:4f:20:3d:f8:2a:
        6a:2e:c4:44:5b:55:c2:82:64:74:82:7e:54:cb:5d:be:
        cd:dd:d3:f3:d2:46:d5:63:7e:61:11:ec:d1:71:b7:e8:
        c7:ad:1e:c7:d6:ce:8f:36:22:76:84:88:1f:ed:5a:92:
        18:a4:50:8a:33:0b:33:f5:e9:f0:e7:8b:5f:05:67:dc:
        a8:39:93:65:f7:64:63:be:28:84:e4:71:0d:c3:72:f3
    Fingerprint (SHA-256):
        8C:92:65:4D:39:F6:59:BA:B7:97:06:F3:E9:80:F5:2C:2F:4B:E4:C5:6F:80:34:EE:C0:93:0B:A4:F3:46:11:12
    Fingerprint (SHA1):
        97:A0:4F:B6:AD:F6:73:26:0A:84:FD:79:C2:DD:E8:F9:C6:E6:40:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7035: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123355 (0x310fdd9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:57 2017
            Not After : Tue Aug 23 12:33:57 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:7b:29:df:32:15:17:eb:ae:60:b0:ae:08:c5:60:31:
                    ca:99:0c:66:b5:46:6b:56:b5:20:f9:64:0e:4a:33:a0:
                    7f:82:da:17:ac:51:30:cd:59:91:ae:4f:e7:42:db:74:
                    d1:c6:cb:de:26:74:f3:45:a5:f4:ce:ae:e0:d3:dc:38:
                    8b:4d:dc:69:a7:64:b8:cd:a7:35:46:18:aa:95:3b:e4:
                    76:0c:29:cf:84:b0:0a:89:28:b0:79:23:d3:b4:12:cc:
                    95:b9:0a:e7:41:fc:24:88:ff:38:54:b8:04:a6:d2:96:
                    9a:8d:a2:47:7c:94:55:9c:d2:35:a0:df:29:59:4b:ea:
                    c0:78:e2:cc:5b:83:37:38:b7:84:dd:fc:94:5e:2c:5b:
                    bc:8f:b5:8e:a3:64:f4:cc:88:5e:f5:8c:62:80:ef:d4:
                    74:38:ef:c1:5d:6c:e8:36:9b:98:22:3e:b0:37:61:33:
                    ec:52:ae:47:a4:6d:4a:65:7f:b4:5e:af:b3:65:61:77:
                    fd:96:db:42:66:81:3f:aa:02:f6:52:05:06:75:e2:2f:
                    49:e2:48:18:a5:b5:45:ff:e8:9d:b2:32:af:aa:7a:7f:
                    9e:af:f3:62:64:32:c3:7a:de:93:77:af:5b:33:8f:1b:
                    96:a2:00:68:92:52:ff:0b:c0:72:1c:81:d7:2a:b7:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:7c:67:b2:52:41:ae:27:8e:7e:5d:92:01:38:67:6d:
        c8:aa:71:7c:ff:b8:5b:66:a2:a9:f2:0f:9e:56:43:fb:
        5b:00:fb:e7:aa:81:a2:1e:9d:f7:06:11:9d:b6:9f:2c:
        58:34:95:62:a7:8f:be:83:ab:20:cf:b6:cd:15:b5:c8:
        29:6b:98:17:6c:a7:90:08:f0:49:1e:23:07:af:8e:98:
        bd:a3:2f:6f:d9:85:e0:ee:f6:6b:82:1e:3c:0a:75:37:
        57:e3:c8:32:fd:92:d3:ee:c8:c2:19:2d:af:f4:7f:64:
        8c:07:e5:e6:c9:ea:91:7a:b8:ad:df:d4:5f:28:16:86:
        45:5f:d7:80:cc:f9:66:93:dc:b0:8c:ad:f3:d1:82:68:
        49:e4:8f:63:3a:ef:23:b6:f6:8a:98:c5:2a:0a:c5:34:
        84:c1:f9:ef:1e:f9:aa:9c:d7:92:90:0a:07:0d:9d:e5:
        94:92:4e:07:e4:fb:b2:96:23:87:94:c6:e7:ed:fa:8f:
        1e:ae:59:89:7e:4b:3c:de:23:6d:c4:42:cd:55:be:5b:
        6d:45:d1:73:f7:c1:f0:4f:cc:bb:a8:f5:c8:97:a4:bd:
        bf:72:fd:bb:73:18:da:cb:71:c4:b2:f9:46:87:68:60:
        e5:90:de:f8:25:3d:d4:19:cb:92:21:e8:bc:4c:72:64
    Fingerprint (SHA-256):
        BA:42:8A:D6:0F:99:3B:B6:26:CE:46:6F:8F:0F:AF:C2:55:D6:5E:23:30:34:A6:59:8C:F2:80:AD:DA:5F:0F:AE
    Fingerprint (SHA1):
        AB:35:17:A9:3E:71:94:B6:F2:41:6C:5A:51:2E:D4:74:29:8E:B1:9D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7036: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123356 (0x310fdd9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:57 2017
            Not After : Tue Aug 23 12:33:57 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f1:94:d0:96:ef:ce:88:ee:81:65:87:09:02:18:61:c2:
                    db:95:a1:95:4b:80:bf:e1:33:f3:6c:2e:5f:ba:b0:f8:
                    68:aa:62:c4:f0:5e:23:22:a6:a8:df:cc:3c:66:3a:93:
                    7a:2b:77:42:b1:f0:83:b7:3b:ab:c9:41:91:e1:38:16:
                    11:61:44:3e:1a:83:5b:a1:d2:c9:c0:5f:ac:55:8b:57:
                    94:f1:db:a5:41:76:8a:53:3b:70:3d:08:90:03:d5:ba:
                    47:96:6b:8d:60:75:03:06:64:e0:ba:9c:a7:bc:37:22:
                    4b:28:85:08:59:30:36:8d:f7:49:a7:d9:62:ee:96:91:
                    9c:a5:f9:e0:b8:65:1c:c3:dd:49:ad:61:64:25:8a:f3:
                    f4:f8:e6:d6:00:5c:bf:04:8a:63:0a:cb:c9:0d:d0:c1:
                    37:03:a1:ca:95:6d:3c:c4:5a:c8:2d:01:ce:13:87:41:
                    2d:2f:0e:37:a7:16:c6:b8:f2:42:e5:18:b1:b4:dc:aa:
                    0c:28:b1:41:86:41:5f:72:6b:18:e7:0f:54:53:72:a5:
                    7d:c9:90:36:36:da:77:26:6c:36:39:1e:31:9a:b2:79:
                    5b:7e:9b:6d:c3:22:11:17:27:83:82:12:7e:15:87:b6:
                    7d:93:2d:18:da:77:44:17:d0:f5:a6:b1:34:a2:63:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:11:1d:f1:c5:b9:e9:c6:ef:98:52:ce:eb:d9:ae:43:
        c3:86:6a:5d:4c:07:46:e2:8c:08:7b:b1:7a:41:ca:e3:
        3f:9b:fb:b8:b6:94:0d:b2:f4:d9:c1:69:6d:2e:19:f4:
        b0:4c:cb:2b:4a:69:21:c2:43:6d:70:92:92:f0:d2:b0:
        b3:98:17:ce:81:b4:3c:51:16:01:51:0c:24:8c:82:a7:
        e5:34:4a:8e:3f:7f:c4:e1:cb:6b:b7:06:36:59:0a:05:
        6c:a5:89:e0:09:c3:a9:11:0a:52:c5:57:ee:47:0b:b1:
        16:6b:97:aa:96:30:5a:f2:3b:72:4f:85:f3:aa:7f:66:
        54:31:a0:d5:39:1b:07:0b:56:b7:b0:dd:40:c0:a0:13:
        2f:15:89:53:65:86:b8:68:37:29:8b:a6:7e:be:86:b3:
        71:ff:05:75:60:fc:ef:f6:54:77:28:4e:ce:3a:df:a5:
        a9:ed:8d:92:37:bd:6d:38:c1:13:11:7e:79:17:f0:6a:
        c8:92:b1:e2:46:87:8d:6d:c4:27:bb:8f:44:f5:7d:c0:
        73:fc:f9:2a:46:3e:ea:b3:76:47:48:65:39:cd:0d:74:
        22:50:22:22:49:3e:64:cd:02:91:26:e0:ba:32:49:b2:
        fd:bd:30:c5:b6:89:53:6e:24:73:5d:25:76:a5:b8:9b
    Fingerprint (SHA-256):
        71:25:FD:E4:8B:3A:1F:43:49:08:CC:51:F6:28:0F:5E:12:EE:F0:F5:7D:D7:9B:E3:30:19:8F:46:70:9E:4B:61
    Fingerprint (SHA1):
        2B:7C:FB:E0:01:AD:81:84:86:10:B9:00:29:11:D6:1C:F9:54:22:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7037: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123357 (0x310fdd9d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:57 2017
            Not After : Tue Aug 23 12:33:57 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:47:61:51:e3:56:a8:e4:84:ec:ea:e3:a0:3f:5c:80:
                    b1:fb:a5:95:ba:b2:3c:73:06:93:e9:e4:a9:91:4c:4a:
                    7d:9a:32:b5:ae:e2:24:cb:0f:b9:31:8a:99:b4:10:af:
                    8a:e7:1b:6b:bb:ed:d4:32:ab:87:29:5c:25:c5:3f:a5:
                    dd:83:a6:90:a1:4a:a0:a3:67:da:0d:21:2e:14:46:1c:
                    f0:de:0b:f5:54:bf:cf:75:ee:fd:8c:41:10:18:34:89:
                    d5:f5:69:09:70:23:e1:e6:f1:bb:c6:f8:f5:a1:ad:09:
                    ed:9b:c0:28:38:7a:1c:f1:b7:d8:fc:33:55:d3:af:2d:
                    a4:d7:89:04:8e:4d:cc:31:24:fd:6a:43:57:21:91:f2:
                    fc:1d:e0:00:ef:1e:92:1d:13:a2:0d:e4:15:d6:09:59:
                    37:43:ce:72:cb:f4:0f:a5:3f:dc:94:6d:f2:c4:66:6b:
                    d3:d7:d4:3e:5c:01:38:87:fe:b3:fc:9b:12:a2:19:a3:
                    0c:da:e1:5c:38:58:d1:68:9b:0f:b2:a3:11:3c:3f:ef:
                    10:f6:42:b0:2d:fd:d5:8b:a5:35:87:bf:26:7f:8c:ae:
                    e7:0e:e9:41:57:a2:4c:cb:02:99:c2:8f:ba:6e:d3:d6:
                    66:b0:27:fe:1b:03:a9:de:71:97:fa:e3:71:81:66:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:d5:3f:06:a0:f2:3f:ff:c5:a9:c6:1c:07:30:19:f6:
        8a:52:f3:88:f0:13:ec:3a:1b:5b:ba:f6:55:b6:14:b0:
        65:c8:d9:94:0b:d8:4a:ed:c9:7d:93:f0:58:b6:d1:37:
        02:f1:28:37:52:87:39:cd:56:e6:9f:3c:ac:7f:7f:b3:
        29:63:57:85:de:2c:c2:46:cd:11:74:95:09:00:ee:89:
        8a:69:ba:bd:9a:e4:bf:96:57:6f:7d:64:04:93:7f:a4:
        71:03:6c:36:d6:8a:a9:40:42:93:a1:58:33:d6:07:84:
        68:f6:14:9c:2a:9f:b6:15:4b:24:2c:fb:e3:71:3d:d1:
        4d:58:9b:38:46:0d:79:aa:55:c4:ab:0d:ac:a2:71:c3:
        b8:46:f3:d4:bc:33:dd:b7:67:fd:8a:de:36:18:ec:ae:
        b0:ee:86:f9:49:7d:5e:7e:de:26:9a:7b:ba:f6:cf:96:
        47:1c:a2:63:ec:8f:fe:2f:f2:77:46:4d:0a:7a:44:53:
        0f:1b:7a:8a:d6:be:6a:4a:c0:47:b7:16:4e:dc:02:80:
        b9:2a:e5:16:01:69:d4:96:d7:e9:83:7a:69:c5:eb:ed:
        35:c4:e3:d3:07:69:61:c9:f9:c9:ec:96:1c:e9:2f:6b:
        9c:c8:a2:cf:57:e4:c7:74:74:7f:d7:c6:9e:1b:04:ce
    Fingerprint (SHA-256):
        B1:6A:20:BC:28:61:C6:DD:8B:21:CF:76:F8:D6:4D:6D:2F:BB:62:FE:F4:9E:BA:87:2B:1D:68:06:13:F7:D9:90
    Fingerprint (SHA1):
        AE:F6:8B:FF:18:A1:4E:39:C1:C0:3F:EC:72:1F:97:13:3F:C1:1F:CA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7038: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123358 (0x310fdd9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed Aug 23 12:33:58 2017
            Not After : Tue Aug 23 12:33:58 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:a1:8b:27:da:d4:ae:b1:99:83:a2:c4:26:ad:51:28:
                    76:b7:29:22:e4:3c:42:88:7a:7f:a1:ee:01:d8:e2:6b:
                    f6:8a:31:be:0a:89:c5:e8:e4:57:a8:9c:cb:c0:00:45:
                    72:fd:87:b5:6e:c4:65:7d:cf:35:f5:cb:f6:a5:13:62:
                    18:af:a4:24:8c:a9:3d:c4:58:9b:61:31:78:5f:67:e5:
                    1f:34:a9:c5:ba:87:aa:77:06:ff:7c:c8:e1:f4:1e:7b:
                    bc:ac:8a:52:e7:8c:fb:bc:48:ce:70:d9:28:2d:0e:0a:
                    22:e4:a6:c0:84:0d:bd:94:af:99:9c:08:84:2b:d2:b7:
                    7c:55:26:36:9a:1a:dc:82:d6:e8:8a:aa:63:b4:a0:9d:
                    8d:d9:a4:be:9d:11:6f:00:24:fa:db:8f:02:19:05:2a:
                    c2:f7:4e:45:84:f6:ae:12:a5:1a:de:f5:2a:e1:2a:63:
                    10:bb:c6:d2:bd:62:c3:e6:27:e7:25:c5:60:ea:5b:4c:
                    d9:08:f9:39:ba:14:e0:1e:d0:a5:2b:1b:46:df:49:76:
                    f8:90:29:59:8a:d9:cf:d4:bc:e6:f4:d0:98:f0:5a:bf:
                    e7:68:e6:86:7d:62:13:b6:dc:1c:2d:36:e4:5e:35:07:
                    14:f4:d2:f4:23:0e:ea:a1:ef:06:a9:55:52:99:d8:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d4:b9:49:46:21:1b:5c:78:9a:0d:c7:7f:0f:99:10:be:
        e9:d2:1c:de:2a:89:f9:16:ab:42:40:74:29:86:f4:cc:
        a0:95:7a:3e:68:c1:7b:b1:3b:1c:52:8e:d7:aa:72:ef:
        af:ae:c5:00:e2:cd:97:b4:d8:65:1f:16:c3:5d:87:16:
        a5:e4:3f:a9:62:7e:dc:16:7c:97:30:88:22:ce:60:5f:
        1c:cc:bf:26:31:d1:5f:8d:ba:bf:f4:09:56:ee:ac:40:
        85:65:10:13:ed:23:25:0f:d7:f7:5b:5d:bf:94:bc:dd:
        b3:ac:54:a7:e0:ee:74:8b:c5:8e:e1:06:3c:c9:f4:29:
        9b:d2:ce:bd:0a:10:4f:ac:89:20:a8:d3:e2:ce:d9:ff:
        0d:e2:94:ce:b9:25:5e:fa:cc:4b:a4:08:4b:d0:e2:9e:
        1f:7c:38:09:79:d0:83:7b:33:dd:46:9c:c5:ee:93:bb:
        32:16:b6:51:9a:e0:55:c6:ff:47:cc:3d:4e:47:05:83:
        ff:a9:2e:e4:c3:f1:d5:29:f7:f6:7b:45:19:bf:fc:1c:
        04:ec:a7:92:87:33:b8:ac:bd:59:53:bd:7f:49:8c:ab:
        27:04:11:d8:00:45:ab:77:d5:3d:fa:d9:63:72:66:25:
        50:a5:04:47:28:32:95:05:4c:a6:32:9b:d8:a9:07:bc
    Fingerprint (SHA-256):
        62:2C:3F:69:3A:8C:B5:D1:76:F4:9A:B0:16:38:C3:AA:3A:A3:8C:8E:E1:9E:7E:DF:26:4C:C2:F5:D2:55:37:46
    Fingerprint (SHA1):
        FE:D0:23:F4:82:8F:FE:33:2B:7B:BD:F7:2D:EA:90:34:E4:78:32:D0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7039: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7040: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123373 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7041: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7042: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7043: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7044: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123374   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7045: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7046: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7047: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7048: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123375   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7049: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7050: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7051: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7052: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123376   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7053: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7054: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7055: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123373 (0x310fddad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:00 2017
            Not After : Tue Aug 23 12:34:00 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:13:38:89:9c:0b:00:f7:41:3b:c0:bd:2b:54:bb:9f:
                    ac:4a:4e:5e:5e:70:6c:d7:1b:77:df:10:d0:45:65:0a:
                    1a:fe:cf:76:ba:97:17:c1:41:93:51:c8:ac:4c:8f:1e:
                    8b:8f:5d:ad:8d:07:53:3b:43:78:c8:2e:3b:79:85:ab:
                    00:b8:21:3a:51:50:6a:ac:50:60:26:41:f6:b2:cc:b6:
                    99:de:b6:88:a9:cf:dd:9f:0f:57:a9:15:aa:b6:ec:c8:
                    2f:5b:fd:b2:d1:de:41:1a:a3:67:50:3b:a1:23:70:0d:
                    c8:73:f1:ac:50:a5:ee:e4:75:97:f6:cf:85:85:a4:b6:
                    99:7b:f4:55:8d:ce:25:fc:6f:0e:e6:a0:7b:c1:16:e2:
                    19:64:74:3d:ea:71:f4:21:f3:84:7b:90:02:b2:37:35:
                    89:4a:10:51:fc:d5:ae:58:ef:13:e9:a1:9e:92:28:c9:
                    fe:1f:bb:e4:d4:b3:02:a5:44:9f:a8:fb:f7:9f:fe:18:
                    2a:c0:ee:70:12:07:74:d0:7d:6a:cc:a9:c1:26:e6:d2:
                    7e:ab:6b:43:29:6c:a5:f2:71:92:4d:31:2e:55:c4:eb:
                    6e:54:5f:c4:50:10:11:20:61:2d:ca:07:04:f2:eb:af:
                    cc:0b:28:20:21:dd:00:b2:27:21:cf:41:70:72:0e:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:4f:b4:26:1a:70:4f:68:95:44:02:81:11:5a:d2:cc:
        24:96:21:35:41:18:e0:17:21:f0:3f:94:07:5c:da:1b:
        1e:f7:99:21:6d:c2:5b:d2:79:34:19:26:16:e8:4e:ea:
        9a:77:47:76:7d:3d:4d:c7:79:e8:1c:0a:12:dc:f4:a6:
        9a:b6:64:1b:8d:63:59:b2:d9:c8:62:fd:81:eb:4d:f5:
        fc:7e:71:31:0f:b4:a7:2e:30:e2:2a:91:11:15:96:07:
        97:c8:c8:73:a8:04:d3:a2:15:db:c5:79:3f:ea:32:d7:
        82:25:76:a1:c7:04:d9:21:2a:86:a1:2b:b8:b7:69:b3:
        59:37:88:d5:59:b8:9f:ac:5a:14:d3:f5:c0:59:1f:87:
        63:ec:06:96:9d:26:eb:0c:cb:13:6f:ab:38:7d:70:cc:
        f2:9a:2a:86:df:a3:45:41:fc:48:94:08:e2:94:39:d9:
        36:65:db:82:58:7c:f4:56:c6:c5:03:03:58:7b:36:57:
        64:cc:0a:6d:cb:fb:0a:da:4e:3a:47:2d:b7:39:9f:28:
        c5:20:0a:c4:fe:0d:90:6f:0c:a7:bf:a4:f1:e0:ef:ea:
        f7:29:b0:ca:cb:03:27:e8:af:aa:d5:29:95:f7:cf:3b:
        e2:5c:f9:7c:f1:22:af:1f:04:5d:31:87:f4:8a:11:d2
    Fingerprint (SHA-256):
        C8:87:76:2A:40:A9:51:86:55:7F:66:F6:88:0A:07:0A:8D:CE:CA:D6:D4:C9:1A:0C:95:51:EB:52:FB:64:7D:80
    Fingerprint (SHA1):
        60:DB:8C:AF:13:26:C5:F1:4B:0F:4C:89:01:02:A4:78:FF:20:BB:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7056: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7057: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123374 (0x310fddae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:00 2017
            Not After : Tue Aug 23 12:34:00 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:b4:09:e6:be:11:42:4d:b1:7f:bd:fe:63:00:c6:8d:
                    8c:87:73:7e:2b:54:07:9d:6f:d9:a2:cd:53:f9:b8:54:
                    40:26:b6:b6:12:e8:3e:96:e9:0d:4a:04:d3:ed:de:eb:
                    92:9f:dc:e2:c3:46:be:06:c6:d2:c3:66:38:cc:a6:e5:
                    6d:59:27:83:bf:48:97:a2:c5:de:a4:4b:15:b5:ff:61:
                    c6:55:90:bd:7f:50:75:55:aa:dc:39:61:5e:7e:3e:b0:
                    c2:c9:47:a8:4c:46:5c:5d:23:29:bb:58:d0:e6:f2:ff:
                    ce:98:04:21:11:ff:f8:d9:bc:97:21:8d:94:73:c5:d5:
                    a1:41:8b:14:6d:11:7a:f3:64:49:93:ff:0d:2a:0c:d5:
                    03:f4:4a:37:95:22:a9:0c:e4:a6:92:d2:21:56:4e:d9:
                    67:57:08:5a:e1:8f:ff:49:1c:53:54:a5:16:80:39:f7:
                    29:64:00:ee:d4:b3:f0:0a:73:7f:91:31:c7:d5:92:78:
                    82:44:09:1c:61:cd:17:3a:6f:4b:0f:34:6e:4f:28:3f:
                    38:83:65:d9:ad:06:b3:ca:8f:e8:3d:6f:0e:ae:bc:50:
                    a2:0b:b5:2e:a6:d8:ff:00:b3:a9:5d:11:8b:8a:a5:03:
                    27:7e:ea:1a:d9:f0:a3:2d:62:4c:b4:67:42:c3:f0:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:2c:52:5e:71:20:52:b9:15:5d:d4:12:3e:e5:04:7e:
        31:d6:8f:8a:8d:d8:88:76:41:8d:c5:a4:c4:79:21:05:
        4c:e6:6a:e7:99:9d:7f:a6:85:07:c0:68:59:a7:74:88:
        cc:6f:ff:8b:2e:c3:23:f0:48:64:ab:ed:32:ff:f6:4d:
        a8:5e:da:46:87:2f:03:90:16:91:f5:2a:13:2d:79:9c:
        ca:1c:4e:8f:3e:75:61:7b:f9:04:6a:7b:3d:c3:cf:16:
        9d:46:56:3b:2e:ca:ee:15:f9:c8:6d:8d:dd:ce:de:cb:
        76:93:e5:c2:f2:98:13:39:4f:da:b5:59:45:ae:dd:48:
        7c:b4:55:1a:e0:ed:01:52:f5:74:59:b9:21:4a:9d:ba:
        f9:98:35:be:00:f7:de:48:95:ac:fc:f8:74:c1:d6:95:
        fb:6c:34:8c:b6:59:7e:a2:1c:6d:98:c6:c6:47:e8:9f:
        6f:84:44:02:d9:ad:4e:7a:1c:63:1c:2f:2b:3b:79:1e:
        f0:04:6b:13:7a:ac:b7:1b:be:12:c9:c9:1f:fd:84:b2:
        b1:42:c8:36:04:93:62:4e:fe:7a:9f:7d:1a:0c:9c:2f:
        0d:59:ba:1b:b5:9b:c3:dd:96:f2:7e:9b:1e:d7:f6:36:
        55:af:fb:4e:7c:8c:11:9c:c7:d2:0a:1a:59:2c:43:87
    Fingerprint (SHA-256):
        4D:41:C3:BE:8C:46:7B:C8:C9:31:F7:17:5F:30:07:5C:E5:EA:2B:F0:90:5B:78:A9:6F:FC:05:3E:D6:43:36:4D
    Fingerprint (SHA1):
        6E:7C:1A:1C:23:13:EF:DD:70:A0:7A:D4:6C:0A:C3:AA:DE:6A:72:9D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7058: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7059: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123375 (0x310fddaf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:00 2017
            Not After : Tue Aug 23 12:34:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ed:65:2c:9b:69:9b:e7:32:4a:e4:6a:6f:03:37:9a:
                    18:12:d4:18:2f:2a:17:3d:d1:72:c7:3b:2e:5b:51:a2:
                    ac:96:67:86:00:2f:93:e7:98:80:b7:9b:ce:09:98:b1:
                    f7:ba:ee:6a:c7:86:92:83:ea:f7:a3:a7:9c:8b:52:bc:
                    ee:02:07:ba:08:f7:e7:83:b9:d6:9d:c4:72:f5:74:f7:
                    1f:20:63:73:3c:26:60:e6:3e:79:ec:c0:d9:16:aa:7a:
                    1d:44:53:eb:1a:77:5e:bd:93:1f:3f:a9:d5:c6:61:eb:
                    19:ee:78:54:30:04:10:0d:a0:1c:86:f2:39:4e:4f:5b:
                    e4:aa:db:51:5f:2b:ad:ee:3b:26:8f:cb:d8:fc:fc:c3:
                    24:72:5b:0f:85:2a:f8:25:2b:89:3d:95:45:14:fe:8b:
                    3e:e1:44:54:e0:e2:8e:d0:cf:06:37:b2:f1:45:c6:9b:
                    4f:d6:b7:cf:94:8e:84:6c:e0:17:72:79:b0:8a:9b:7f:
                    8c:53:5b:f6:61:b2:da:04:e7:54:9b:bb:dc:f9:02:b7:
                    dc:54:67:c4:e0:88:c2:c9:29:34:fe:d7:9d:b1:a9:26:
                    b4:65:97:3a:c1:51:08:57:12:d2:6f:68:27:2c:fa:c3:
                    5f:09:75:9f:c1:7f:9c:2f:c9:92:43:84:08:ca:6d:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:dc:31:a2:63:ef:20:bd:d4:ec:b3:69:54:82:fb:6d:
        bd:1a:97:43:09:8f:32:36:53:67:38:81:78:bb:8a:8d:
        93:82:57:cf:fb:2f:77:41:6e:8f:95:eb:a5:de:50:2d:
        3f:b5:e0:f2:3b:22:47:08:f1:14:41:b0:91:0f:b2:67:
        ec:d5:47:93:d0:fc:a5:4f:25:83:a4:9b:5f:09:9e:b8:
        60:5b:14:29:0e:c1:00:38:d5:e3:e5:b5:59:92:91:02:
        73:af:01:8a:3f:a4:13:94:b2:75:b6:e8:35:9d:c2:43:
        1f:a5:58:e9:24:09:28:a7:71:d8:c7:b9:51:1f:7e:5f:
        5b:d5:19:67:49:49:32:39:fc:19:0a:37:a9:17:5e:c4:
        7c:f5:ea:3c:c0:e7:79:ad:55:13:a0:0f:d5:de:98:cc:
        d8:6f:4d:13:48:32:92:26:a7:82:eb:7c:fa:d9:62:88:
        71:b7:88:84:c8:8e:54:94:0b:33:e5:15:e8:ce:18:85:
        5f:b8:f1:52:fc:d5:da:1f:4c:bf:b0:73:45:4f:51:df:
        0c:e7:8b:2e:0c:5e:70:d2:1f:43:97:86:8a:26:72:60:
        47:c5:b6:3b:74:cd:78:b3:57:c2:6c:4e:30:43:c8:49:
        ae:db:4b:be:0d:94:e1:21:6b:43:d0:94:ec:39:1c:72
    Fingerprint (SHA-256):
        89:D0:E2:12:1C:26:E7:07:94:04:DC:AD:84:BB:4A:8F:3A:22:D9:D8:01:9B:DB:5A:4E:82:68:CC:36:C8:BD:25
    Fingerprint (SHA1):
        01:1D:87:C8:66:D1:B5:9F:DB:5F:7F:0C:13:95:01:76:79:88:56:15
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7060: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7061: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7062: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7063: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7064: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123373 (0x310fddad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:00 2017
            Not After : Tue Aug 23 12:34:00 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:13:38:89:9c:0b:00:f7:41:3b:c0:bd:2b:54:bb:9f:
                    ac:4a:4e:5e:5e:70:6c:d7:1b:77:df:10:d0:45:65:0a:
                    1a:fe:cf:76:ba:97:17:c1:41:93:51:c8:ac:4c:8f:1e:
                    8b:8f:5d:ad:8d:07:53:3b:43:78:c8:2e:3b:79:85:ab:
                    00:b8:21:3a:51:50:6a:ac:50:60:26:41:f6:b2:cc:b6:
                    99:de:b6:88:a9:cf:dd:9f:0f:57:a9:15:aa:b6:ec:c8:
                    2f:5b:fd:b2:d1:de:41:1a:a3:67:50:3b:a1:23:70:0d:
                    c8:73:f1:ac:50:a5:ee:e4:75:97:f6:cf:85:85:a4:b6:
                    99:7b:f4:55:8d:ce:25:fc:6f:0e:e6:a0:7b:c1:16:e2:
                    19:64:74:3d:ea:71:f4:21:f3:84:7b:90:02:b2:37:35:
                    89:4a:10:51:fc:d5:ae:58:ef:13:e9:a1:9e:92:28:c9:
                    fe:1f:bb:e4:d4:b3:02:a5:44:9f:a8:fb:f7:9f:fe:18:
                    2a:c0:ee:70:12:07:74:d0:7d:6a:cc:a9:c1:26:e6:d2:
                    7e:ab:6b:43:29:6c:a5:f2:71:92:4d:31:2e:55:c4:eb:
                    6e:54:5f:c4:50:10:11:20:61:2d:ca:07:04:f2:eb:af:
                    cc:0b:28:20:21:dd:00:b2:27:21:cf:41:70:72:0e:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:4f:b4:26:1a:70:4f:68:95:44:02:81:11:5a:d2:cc:
        24:96:21:35:41:18:e0:17:21:f0:3f:94:07:5c:da:1b:
        1e:f7:99:21:6d:c2:5b:d2:79:34:19:26:16:e8:4e:ea:
        9a:77:47:76:7d:3d:4d:c7:79:e8:1c:0a:12:dc:f4:a6:
        9a:b6:64:1b:8d:63:59:b2:d9:c8:62:fd:81:eb:4d:f5:
        fc:7e:71:31:0f:b4:a7:2e:30:e2:2a:91:11:15:96:07:
        97:c8:c8:73:a8:04:d3:a2:15:db:c5:79:3f:ea:32:d7:
        82:25:76:a1:c7:04:d9:21:2a:86:a1:2b:b8:b7:69:b3:
        59:37:88:d5:59:b8:9f:ac:5a:14:d3:f5:c0:59:1f:87:
        63:ec:06:96:9d:26:eb:0c:cb:13:6f:ab:38:7d:70:cc:
        f2:9a:2a:86:df:a3:45:41:fc:48:94:08:e2:94:39:d9:
        36:65:db:82:58:7c:f4:56:c6:c5:03:03:58:7b:36:57:
        64:cc:0a:6d:cb:fb:0a:da:4e:3a:47:2d:b7:39:9f:28:
        c5:20:0a:c4:fe:0d:90:6f:0c:a7:bf:a4:f1:e0:ef:ea:
        f7:29:b0:ca:cb:03:27:e8:af:aa:d5:29:95:f7:cf:3b:
        e2:5c:f9:7c:f1:22:af:1f:04:5d:31:87:f4:8a:11:d2
    Fingerprint (SHA-256):
        C8:87:76:2A:40:A9:51:86:55:7F:66:F6:88:0A:07:0A:8D:CE:CA:D6:D4:C9:1A:0C:95:51:EB:52:FB:64:7D:80
    Fingerprint (SHA1):
        60:DB:8C:AF:13:26:C5:F1:4B:0F:4C:89:01:02:A4:78:FF:20:BB:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7065: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7066: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123374 (0x310fddae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:00 2017
            Not After : Tue Aug 23 12:34:00 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:b4:09:e6:be:11:42:4d:b1:7f:bd:fe:63:00:c6:8d:
                    8c:87:73:7e:2b:54:07:9d:6f:d9:a2:cd:53:f9:b8:54:
                    40:26:b6:b6:12:e8:3e:96:e9:0d:4a:04:d3:ed:de:eb:
                    92:9f:dc:e2:c3:46:be:06:c6:d2:c3:66:38:cc:a6:e5:
                    6d:59:27:83:bf:48:97:a2:c5:de:a4:4b:15:b5:ff:61:
                    c6:55:90:bd:7f:50:75:55:aa:dc:39:61:5e:7e:3e:b0:
                    c2:c9:47:a8:4c:46:5c:5d:23:29:bb:58:d0:e6:f2:ff:
                    ce:98:04:21:11:ff:f8:d9:bc:97:21:8d:94:73:c5:d5:
                    a1:41:8b:14:6d:11:7a:f3:64:49:93:ff:0d:2a:0c:d5:
                    03:f4:4a:37:95:22:a9:0c:e4:a6:92:d2:21:56:4e:d9:
                    67:57:08:5a:e1:8f:ff:49:1c:53:54:a5:16:80:39:f7:
                    29:64:00:ee:d4:b3:f0:0a:73:7f:91:31:c7:d5:92:78:
                    82:44:09:1c:61:cd:17:3a:6f:4b:0f:34:6e:4f:28:3f:
                    38:83:65:d9:ad:06:b3:ca:8f:e8:3d:6f:0e:ae:bc:50:
                    a2:0b:b5:2e:a6:d8:ff:00:b3:a9:5d:11:8b:8a:a5:03:
                    27:7e:ea:1a:d9:f0:a3:2d:62:4c:b4:67:42:c3:f0:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:2c:52:5e:71:20:52:b9:15:5d:d4:12:3e:e5:04:7e:
        31:d6:8f:8a:8d:d8:88:76:41:8d:c5:a4:c4:79:21:05:
        4c:e6:6a:e7:99:9d:7f:a6:85:07:c0:68:59:a7:74:88:
        cc:6f:ff:8b:2e:c3:23:f0:48:64:ab:ed:32:ff:f6:4d:
        a8:5e:da:46:87:2f:03:90:16:91:f5:2a:13:2d:79:9c:
        ca:1c:4e:8f:3e:75:61:7b:f9:04:6a:7b:3d:c3:cf:16:
        9d:46:56:3b:2e:ca:ee:15:f9:c8:6d:8d:dd:ce:de:cb:
        76:93:e5:c2:f2:98:13:39:4f:da:b5:59:45:ae:dd:48:
        7c:b4:55:1a:e0:ed:01:52:f5:74:59:b9:21:4a:9d:ba:
        f9:98:35:be:00:f7:de:48:95:ac:fc:f8:74:c1:d6:95:
        fb:6c:34:8c:b6:59:7e:a2:1c:6d:98:c6:c6:47:e8:9f:
        6f:84:44:02:d9:ad:4e:7a:1c:63:1c:2f:2b:3b:79:1e:
        f0:04:6b:13:7a:ac:b7:1b:be:12:c9:c9:1f:fd:84:b2:
        b1:42:c8:36:04:93:62:4e:fe:7a:9f:7d:1a:0c:9c:2f:
        0d:59:ba:1b:b5:9b:c3:dd:96:f2:7e:9b:1e:d7:f6:36:
        55:af:fb:4e:7c:8c:11:9c:c7:d2:0a:1a:59:2c:43:87
    Fingerprint (SHA-256):
        4D:41:C3:BE:8C:46:7B:C8:C9:31:F7:17:5F:30:07:5C:E5:EA:2B:F0:90:5B:78:A9:6F:FC:05:3E:D6:43:36:4D
    Fingerprint (SHA1):
        6E:7C:1A:1C:23:13:EF:DD:70:A0:7A:D4:6C:0A:C3:AA:DE:6A:72:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7067: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7068: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123375 (0x310fddaf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:00 2017
            Not After : Tue Aug 23 12:34:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ed:65:2c:9b:69:9b:e7:32:4a:e4:6a:6f:03:37:9a:
                    18:12:d4:18:2f:2a:17:3d:d1:72:c7:3b:2e:5b:51:a2:
                    ac:96:67:86:00:2f:93:e7:98:80:b7:9b:ce:09:98:b1:
                    f7:ba:ee:6a:c7:86:92:83:ea:f7:a3:a7:9c:8b:52:bc:
                    ee:02:07:ba:08:f7:e7:83:b9:d6:9d:c4:72:f5:74:f7:
                    1f:20:63:73:3c:26:60:e6:3e:79:ec:c0:d9:16:aa:7a:
                    1d:44:53:eb:1a:77:5e:bd:93:1f:3f:a9:d5:c6:61:eb:
                    19:ee:78:54:30:04:10:0d:a0:1c:86:f2:39:4e:4f:5b:
                    e4:aa:db:51:5f:2b:ad:ee:3b:26:8f:cb:d8:fc:fc:c3:
                    24:72:5b:0f:85:2a:f8:25:2b:89:3d:95:45:14:fe:8b:
                    3e:e1:44:54:e0:e2:8e:d0:cf:06:37:b2:f1:45:c6:9b:
                    4f:d6:b7:cf:94:8e:84:6c:e0:17:72:79:b0:8a:9b:7f:
                    8c:53:5b:f6:61:b2:da:04:e7:54:9b:bb:dc:f9:02:b7:
                    dc:54:67:c4:e0:88:c2:c9:29:34:fe:d7:9d:b1:a9:26:
                    b4:65:97:3a:c1:51:08:57:12:d2:6f:68:27:2c:fa:c3:
                    5f:09:75:9f:c1:7f:9c:2f:c9:92:43:84:08:ca:6d:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:dc:31:a2:63:ef:20:bd:d4:ec:b3:69:54:82:fb:6d:
        bd:1a:97:43:09:8f:32:36:53:67:38:81:78:bb:8a:8d:
        93:82:57:cf:fb:2f:77:41:6e:8f:95:eb:a5:de:50:2d:
        3f:b5:e0:f2:3b:22:47:08:f1:14:41:b0:91:0f:b2:67:
        ec:d5:47:93:d0:fc:a5:4f:25:83:a4:9b:5f:09:9e:b8:
        60:5b:14:29:0e:c1:00:38:d5:e3:e5:b5:59:92:91:02:
        73:af:01:8a:3f:a4:13:94:b2:75:b6:e8:35:9d:c2:43:
        1f:a5:58:e9:24:09:28:a7:71:d8:c7:b9:51:1f:7e:5f:
        5b:d5:19:67:49:49:32:39:fc:19:0a:37:a9:17:5e:c4:
        7c:f5:ea:3c:c0:e7:79:ad:55:13:a0:0f:d5:de:98:cc:
        d8:6f:4d:13:48:32:92:26:a7:82:eb:7c:fa:d9:62:88:
        71:b7:88:84:c8:8e:54:94:0b:33:e5:15:e8:ce:18:85:
        5f:b8:f1:52:fc:d5:da:1f:4c:bf:b0:73:45:4f:51:df:
        0c:e7:8b:2e:0c:5e:70:d2:1f:43:97:86:8a:26:72:60:
        47:c5:b6:3b:74:cd:78:b3:57:c2:6c:4e:30:43:c8:49:
        ae:db:4b:be:0d:94:e1:21:6b:43:d0:94:ec:39:1c:72
    Fingerprint (SHA-256):
        89:D0:E2:12:1C:26:E7:07:94:04:DC:AD:84:BB:4A:8F:3A:22:D9:D8:01:9B:DB:5A:4E:82:68:CC:36:C8:BD:25
    Fingerprint (SHA1):
        01:1D:87:C8:66:D1:B5:9F:DB:5F:7F:0C:13:95:01:76:79:88:56:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7069: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7070: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7071: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123377 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7072: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7073: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7074: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7075: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123378   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7076: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7077: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7078: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7079: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123379   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7080: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7081: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7082: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7083: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123380   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7084: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7085: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7086: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7087: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123381   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7088: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7089: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7090: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123377 (0x310fddb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:65:3d:77:54:ed:96:66:b5:3c:79:e7:20:c0:b6:ab:
                    ad:08:6b:db:09:5b:41:2a:81:74:e0:9e:ad:a7:bf:e2:
                    a6:ee:e4:19:55:b8:a7:a6:38:a3:b8:42:85:a9:e1:34:
                    0c:f8:fe:82:99:12:55:ef:60:65:79:e1:e9:e3:24:9d:
                    2c:00:9d:cb:21:53:11:70:b6:5e:68:26:cb:c3:b9:1c:
                    4c:73:50:f0:3d:70:bc:a7:a5:d8:43:a5:d9:31:ca:8c:
                    79:6a:30:1d:a5:56:49:cd:69:10:ef:d4:fd:f8:a8:93:
                    ca:ad:3f:15:69:90:98:e5:38:10:ec:cf:66:cb:a3:12:
                    e3:a8:7b:23:3c:bb:e4:c9:96:5c:1e:e8:63:44:0e:e9:
                    9a:88:0e:35:4f:0e:2e:91:94:4d:c2:89:c5:b5:4b:df:
                    d7:73:98:d8:5e:9f:ff:62:34:73:30:81:b5:f9:1c:36:
                    be:ba:2c:92:3f:38:31:77:a6:bf:70:81:80:a9:04:51:
                    ed:d6:54:43:29:2a:11:81:db:a4:2b:d8:7b:d5:18:8a:
                    84:51:76:85:f6:e5:c1:02:15:16:d6:1a:ba:dd:a1:11:
                    60:1c:32:2e:f4:0d:09:cc:ff:80:af:a7:79:98:42:f1:
                    06:eb:44:14:d1:6c:b6:cc:20:e6:6b:e0:4a:29:5c:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:7a:e4:15:73:d2:98:c1:ce:93:ad:8a:67:87:e9:c0:
        6e:b5:3d:69:4c:c3:da:d3:f9:c1:1e:32:4f:13:cf:93:
        d5:40:7f:32:d6:3f:5f:df:ba:13:1b:1a:25:6e:c0:a4:
        97:45:a4:18:cb:e3:ed:01:e6:9e:11:bf:a1:68:0d:01:
        13:11:56:4b:e7:a7:6c:f3:42:45:fa:e7:e1:21:6b:fe:
        21:58:85:1c:79:29:9b:d6:92:05:30:46:42:a4:cb:e6:
        93:52:af:d6:bc:8f:19:19:f3:83:cd:6c:1c:ea:d6:03:
        66:37:22:30:9c:1a:8d:67:21:a5:7d:48:f4:9d:0f:3f:
        23:ef:e9:40:8e:9d:3f:55:86:2e:56:5a:19:c2:58:e1:
        c3:1a:58:78:4f:52:e4:43:01:22:8c:33:0e:3e:b9:b5:
        df:f4:21:98:9c:e0:9d:24:83:34:3e:eb:1a:2d:3a:6e:
        4c:97:7b:d4:3d:7d:8e:94:11:bb:f7:8d:c1:4d:6c:c6:
        56:30:8c:39:b5:b0:f3:cd:40:de:0e:74:f5:26:b5:69:
        2d:d0:57:83:b2:f2:17:cb:c1:9e:96:f8:6c:07:91:83:
        43:ab:e2:e9:ee:b2:48:41:f9:ef:90:dc:6d:bc:14:91:
        ad:4d:b0:1c:2f:16:84:9a:c2:e6:7a:e6:c7:40:c5:94
    Fingerprint (SHA-256):
        F9:37:E9:BD:AF:48:C3:DC:94:45:BA:63:05:32:A5:C2:F8:53:D3:C6:3A:0C:A4:4B:27:CF:78:E7:14:FA:87:9A
    Fingerprint (SHA1):
        7B:C2:01:A0:FC:8B:40:D5:8F:11:CB:EA:56:FE:6E:C1:B7:94:62:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7091: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7092: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123378 (0x310fddb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:22:9b:01:59:02:12:2a:94:25:0f:d9:a6:16:24:2a:
                    c9:6b:39:08:3f:81:f4:b4:a8:a8:f4:49:35:22:85:3b:
                    49:91:73:6e:03:a3:f5:b8:39:a4:97:ed:56:e7:a9:36:
                    e7:d0:19:22:95:28:e1:dc:09:d6:22:63:b7:83:7b:3c:
                    a9:2f:c3:f0:53:90:6f:56:ce:b8:a0:05:e1:6c:00:6d:
                    05:d5:80:16:08:b1:b3:61:39:a5:26:9f:c9:a5:29:87:
                    4c:b1:ae:ec:28:4e:44:f2:10:63:2b:24:c8:20:e3:0d:
                    e5:6f:0d:d5:95:aa:e0:6f:3d:1c:85:30:e9:c0:69:12:
                    23:13:63:08:9a:87:7b:8d:3e:27:b6:32:52:83:cd:43:
                    1b:23:17:e1:a2:1a:86:75:ef:70:96:89:0a:eb:3a:92:
                    c3:57:49:b9:e5:3a:99:9f:3a:15:7f:e3:3c:43:2d:56:
                    8d:44:b1:79:ac:bb:d0:b4:7d:91:46:6e:c0:55:10:bd:
                    d5:b7:9b:a7:7c:34:3a:a6:0c:64:86:17:84:58:63:f1:
                    48:20:61:41:5c:7f:11:b0:95:ab:06:48:21:d3:01:5c:
                    d2:80:dc:76:11:02:ba:2a:38:e1:3c:13:00:28:d2:b7:
                    bd:fa:8f:90:30:88:25:7c:ee:a3:ae:18:2e:90:3e:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:1f:27:95:ca:a9:36:68:37:2c:cd:1f:91:36:d5:a8:
        49:9b:6b:ca:74:9d:fd:6d:f5:a1:76:0d:b7:03:42:0e:
        d8:05:0b:3e:b7:f2:2b:4a:b5:5a:15:4e:b1:23:d0:15:
        3f:04:fc:53:c6:63:f3:3f:21:67:d1:33:75:e3:10:c8:
        30:6d:54:00:dd:ca:d8:0e:35:af:b9:76:47:5b:cd:80:
        6f:e6:1d:0a:a4:1f:6d:18:15:52:97:09:95:6e:c8:d0:
        fa:fe:b1:a3:7e:c5:8e:cb:bc:f5:aa:41:a9:8a:26:f0:
        85:85:ac:1f:de:04:86:98:06:0e:45:1e:03:20:e8:74:
        6c:5e:e6:24:7f:a7:20:83:5d:71:5b:30:d5:c4:3f:72:
        50:c6:ef:e0:7b:56:ef:ab:20:d7:aa:b6:9d:fd:29:ec:
        05:3a:8d:e3:be:4a:f3:fb:c6:10:d7:d8:dc:d0:28:76:
        94:a4:ec:f2:34:f5:05:f8:e4:85:1e:0e:9d:eb:71:23:
        da:74:89:68:51:7d:44:6d:94:f3:1a:66:14:58:da:7a:
        c7:1b:b8:44:b2:b3:58:17:54:0a:a2:6f:26:62:2d:04:
        8c:ed:36:95:ea:22:76:64:14:aa:d3:71:e2:02:72:9b:
        52:ce:3c:68:0e:7c:44:39:10:30:c0:5e:e4:4a:4b:a1
    Fingerprint (SHA-256):
        A8:94:7D:F3:67:00:6D:A8:2F:3F:AF:D7:8B:0E:DB:BA:39:C8:10:EF:78:E3:B9:98:E8:92:BF:79:85:0A:E8:F3
    Fingerprint (SHA1):
        31:AE:1A:66:4D:2A:F7:5D:43:72:43:1F:42:F3:CB:54:8F:1A:81:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7093: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7094: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123379 (0x310fddb3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:a8:ef:e5:1f:31:23:87:2f:32:36:6a:0d:ed:2f:14:
                    13:02:11:ec:0c:2c:81:44:e6:0e:56:38:6c:70:23:f4:
                    2f:60:3b:1e:61:1e:c1:76:83:21:ec:e3:d0:17:59:2d:
                    76:c5:a1:12:43:75:72:64:f2:f7:1b:57:a5:7e:45:05:
                    dd:d7:9a:90:2f:70:48:66:f4:90:e5:a6:de:1d:42:d2:
                    34:ab:01:7c:6d:50:14:f1:9b:54:be:92:a5:be:0a:99:
                    23:df:74:56:df:56:58:b3:1b:7d:35:4b:8b:0e:b2:3a:
                    9c:93:23:19:16:91:74:c6:92:6a:a7:a1:a1:05:ef:f4:
                    b5:1f:ff:4e:72:f8:e9:33:e5:07:a8:b1:fa:19:39:20:
                    06:6f:f5:62:91:0f:a4:e7:40:70:64:5b:64:d5:cd:6c:
                    ff:d7:43:27:c5:0b:8e:ae:25:20:e5:12:3f:2d:a2:26:
                    bc:81:8a:03:f2:79:f2:a5:e1:37:ea:c5:19:0c:65:f7:
                    91:7b:b3:93:df:8a:7a:14:d9:45:5c:b4:d2:85:00:49:
                    b3:00:19:4b:59:60:e4:9a:54:03:0c:56:15:23:4d:d1:
                    c3:44:b0:64:48:19:3d:6d:fd:2f:87:17:bb:52:9b:31:
                    ab:f1:4f:24:ea:34:3b:74:ca:47:64:e6:8c:bd:c0:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:5e:61:e8:4d:83:e6:de:ef:77:33:03:fe:e0:72:4c:
        09:22:fb:2b:dd:df:69:8c:af:b3:d4:76:f4:1e:0b:1e:
        b3:eb:fb:96:9b:95:ac:8e:e6:49:da:37:f5:0a:fa:f4:
        0d:8f:12:4c:7f:6f:6f:3d:e6:95:af:66:c7:d2:1c:1b:
        db:a1:99:9f:06:6a:d8:7c:30:b2:56:a5:c4:c0:ee:00:
        56:14:52:8a:71:3e:50:91:a3:7c:c2:33:ec:b4:4a:c7:
        2b:8b:f7:61:d3:d9:3d:52:57:e3:12:ce:98:4a:73:ba:
        ff:79:03:86:93:d4:b7:65:22:21:87:69:29:94:0e:17:
        10:c1:7e:15:41:f3:66:ff:e7:35:0e:f2:95:5d:cf:aa:
        1c:a2:ba:c4:0a:7f:ba:ea:a0:34:99:91:19:4f:5a:43:
        de:61:2a:bb:a2:65:82:50:ae:17:69:6e:0a:fe:e0:89:
        85:de:47:41:e4:7f:eb:6f:2f:92:41:82:e9:d5:e5:da:
        68:f1:00:1a:11:1e:6c:dc:2a:95:2e:64:02:f9:d6:37:
        b1:34:4b:ac:83:27:6e:b1:96:9d:50:fd:4f:7f:80:23:
        8a:8c:61:e3:e3:ba:e1:db:6f:c0:93:2d:95:38:7c:e6:
        9c:a5:fa:db:48:7a:ec:96:81:7b:0c:b6:32:89:e9:19
    Fingerprint (SHA-256):
        D3:AB:A8:6D:77:86:74:9A:9A:03:AF:B6:8C:31:6B:B3:52:62:27:AC:72:37:EE:2E:14:A1:6A:0E:23:DC:94:AA
    Fingerprint (SHA1):
        4E:57:8E:D8:36:5F:D0:B5:0B:95:3C:E5:DC:AD:18:DA:01:D8:4A:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7095: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7096: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7097: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7098: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7099: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123377 (0x310fddb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:65:3d:77:54:ed:96:66:b5:3c:79:e7:20:c0:b6:ab:
                    ad:08:6b:db:09:5b:41:2a:81:74:e0:9e:ad:a7:bf:e2:
                    a6:ee:e4:19:55:b8:a7:a6:38:a3:b8:42:85:a9:e1:34:
                    0c:f8:fe:82:99:12:55:ef:60:65:79:e1:e9:e3:24:9d:
                    2c:00:9d:cb:21:53:11:70:b6:5e:68:26:cb:c3:b9:1c:
                    4c:73:50:f0:3d:70:bc:a7:a5:d8:43:a5:d9:31:ca:8c:
                    79:6a:30:1d:a5:56:49:cd:69:10:ef:d4:fd:f8:a8:93:
                    ca:ad:3f:15:69:90:98:e5:38:10:ec:cf:66:cb:a3:12:
                    e3:a8:7b:23:3c:bb:e4:c9:96:5c:1e:e8:63:44:0e:e9:
                    9a:88:0e:35:4f:0e:2e:91:94:4d:c2:89:c5:b5:4b:df:
                    d7:73:98:d8:5e:9f:ff:62:34:73:30:81:b5:f9:1c:36:
                    be:ba:2c:92:3f:38:31:77:a6:bf:70:81:80:a9:04:51:
                    ed:d6:54:43:29:2a:11:81:db:a4:2b:d8:7b:d5:18:8a:
                    84:51:76:85:f6:e5:c1:02:15:16:d6:1a:ba:dd:a1:11:
                    60:1c:32:2e:f4:0d:09:cc:ff:80:af:a7:79:98:42:f1:
                    06:eb:44:14:d1:6c:b6:cc:20:e6:6b:e0:4a:29:5c:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:7a:e4:15:73:d2:98:c1:ce:93:ad:8a:67:87:e9:c0:
        6e:b5:3d:69:4c:c3:da:d3:f9:c1:1e:32:4f:13:cf:93:
        d5:40:7f:32:d6:3f:5f:df:ba:13:1b:1a:25:6e:c0:a4:
        97:45:a4:18:cb:e3:ed:01:e6:9e:11:bf:a1:68:0d:01:
        13:11:56:4b:e7:a7:6c:f3:42:45:fa:e7:e1:21:6b:fe:
        21:58:85:1c:79:29:9b:d6:92:05:30:46:42:a4:cb:e6:
        93:52:af:d6:bc:8f:19:19:f3:83:cd:6c:1c:ea:d6:03:
        66:37:22:30:9c:1a:8d:67:21:a5:7d:48:f4:9d:0f:3f:
        23:ef:e9:40:8e:9d:3f:55:86:2e:56:5a:19:c2:58:e1:
        c3:1a:58:78:4f:52:e4:43:01:22:8c:33:0e:3e:b9:b5:
        df:f4:21:98:9c:e0:9d:24:83:34:3e:eb:1a:2d:3a:6e:
        4c:97:7b:d4:3d:7d:8e:94:11:bb:f7:8d:c1:4d:6c:c6:
        56:30:8c:39:b5:b0:f3:cd:40:de:0e:74:f5:26:b5:69:
        2d:d0:57:83:b2:f2:17:cb:c1:9e:96:f8:6c:07:91:83:
        43:ab:e2:e9:ee:b2:48:41:f9:ef:90:dc:6d:bc:14:91:
        ad:4d:b0:1c:2f:16:84:9a:c2:e6:7a:e6:c7:40:c5:94
    Fingerprint (SHA-256):
        F9:37:E9:BD:AF:48:C3:DC:94:45:BA:63:05:32:A5:C2:F8:53:D3:C6:3A:0C:A4:4B:27:CF:78:E7:14:FA:87:9A
    Fingerprint (SHA1):
        7B:C2:01:A0:FC:8B:40:D5:8F:11:CB:EA:56:FE:6E:C1:B7:94:62:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7100: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7101: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123378 (0x310fddb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:22:9b:01:59:02:12:2a:94:25:0f:d9:a6:16:24:2a:
                    c9:6b:39:08:3f:81:f4:b4:a8:a8:f4:49:35:22:85:3b:
                    49:91:73:6e:03:a3:f5:b8:39:a4:97:ed:56:e7:a9:36:
                    e7:d0:19:22:95:28:e1:dc:09:d6:22:63:b7:83:7b:3c:
                    a9:2f:c3:f0:53:90:6f:56:ce:b8:a0:05:e1:6c:00:6d:
                    05:d5:80:16:08:b1:b3:61:39:a5:26:9f:c9:a5:29:87:
                    4c:b1:ae:ec:28:4e:44:f2:10:63:2b:24:c8:20:e3:0d:
                    e5:6f:0d:d5:95:aa:e0:6f:3d:1c:85:30:e9:c0:69:12:
                    23:13:63:08:9a:87:7b:8d:3e:27:b6:32:52:83:cd:43:
                    1b:23:17:e1:a2:1a:86:75:ef:70:96:89:0a:eb:3a:92:
                    c3:57:49:b9:e5:3a:99:9f:3a:15:7f:e3:3c:43:2d:56:
                    8d:44:b1:79:ac:bb:d0:b4:7d:91:46:6e:c0:55:10:bd:
                    d5:b7:9b:a7:7c:34:3a:a6:0c:64:86:17:84:58:63:f1:
                    48:20:61:41:5c:7f:11:b0:95:ab:06:48:21:d3:01:5c:
                    d2:80:dc:76:11:02:ba:2a:38:e1:3c:13:00:28:d2:b7:
                    bd:fa:8f:90:30:88:25:7c:ee:a3:ae:18:2e:90:3e:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:1f:27:95:ca:a9:36:68:37:2c:cd:1f:91:36:d5:a8:
        49:9b:6b:ca:74:9d:fd:6d:f5:a1:76:0d:b7:03:42:0e:
        d8:05:0b:3e:b7:f2:2b:4a:b5:5a:15:4e:b1:23:d0:15:
        3f:04:fc:53:c6:63:f3:3f:21:67:d1:33:75:e3:10:c8:
        30:6d:54:00:dd:ca:d8:0e:35:af:b9:76:47:5b:cd:80:
        6f:e6:1d:0a:a4:1f:6d:18:15:52:97:09:95:6e:c8:d0:
        fa:fe:b1:a3:7e:c5:8e:cb:bc:f5:aa:41:a9:8a:26:f0:
        85:85:ac:1f:de:04:86:98:06:0e:45:1e:03:20:e8:74:
        6c:5e:e6:24:7f:a7:20:83:5d:71:5b:30:d5:c4:3f:72:
        50:c6:ef:e0:7b:56:ef:ab:20:d7:aa:b6:9d:fd:29:ec:
        05:3a:8d:e3:be:4a:f3:fb:c6:10:d7:d8:dc:d0:28:76:
        94:a4:ec:f2:34:f5:05:f8:e4:85:1e:0e:9d:eb:71:23:
        da:74:89:68:51:7d:44:6d:94:f3:1a:66:14:58:da:7a:
        c7:1b:b8:44:b2:b3:58:17:54:0a:a2:6f:26:62:2d:04:
        8c:ed:36:95:ea:22:76:64:14:aa:d3:71:e2:02:72:9b:
        52:ce:3c:68:0e:7c:44:39:10:30:c0:5e:e4:4a:4b:a1
    Fingerprint (SHA-256):
        A8:94:7D:F3:67:00:6D:A8:2F:3F:AF:D7:8B:0E:DB:BA:39:C8:10:EF:78:E3:B9:98:E8:92:BF:79:85:0A:E8:F3
    Fingerprint (SHA1):
        31:AE:1A:66:4D:2A:F7:5D:43:72:43:1F:42:F3:CB:54:8F:1A:81:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7102: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7103: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123379 (0x310fddb3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:a8:ef:e5:1f:31:23:87:2f:32:36:6a:0d:ed:2f:14:
                    13:02:11:ec:0c:2c:81:44:e6:0e:56:38:6c:70:23:f4:
                    2f:60:3b:1e:61:1e:c1:76:83:21:ec:e3:d0:17:59:2d:
                    76:c5:a1:12:43:75:72:64:f2:f7:1b:57:a5:7e:45:05:
                    dd:d7:9a:90:2f:70:48:66:f4:90:e5:a6:de:1d:42:d2:
                    34:ab:01:7c:6d:50:14:f1:9b:54:be:92:a5:be:0a:99:
                    23:df:74:56:df:56:58:b3:1b:7d:35:4b:8b:0e:b2:3a:
                    9c:93:23:19:16:91:74:c6:92:6a:a7:a1:a1:05:ef:f4:
                    b5:1f:ff:4e:72:f8:e9:33:e5:07:a8:b1:fa:19:39:20:
                    06:6f:f5:62:91:0f:a4:e7:40:70:64:5b:64:d5:cd:6c:
                    ff:d7:43:27:c5:0b:8e:ae:25:20:e5:12:3f:2d:a2:26:
                    bc:81:8a:03:f2:79:f2:a5:e1:37:ea:c5:19:0c:65:f7:
                    91:7b:b3:93:df:8a:7a:14:d9:45:5c:b4:d2:85:00:49:
                    b3:00:19:4b:59:60:e4:9a:54:03:0c:56:15:23:4d:d1:
                    c3:44:b0:64:48:19:3d:6d:fd:2f:87:17:bb:52:9b:31:
                    ab:f1:4f:24:ea:34:3b:74:ca:47:64:e6:8c:bd:c0:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:5e:61:e8:4d:83:e6:de:ef:77:33:03:fe:e0:72:4c:
        09:22:fb:2b:dd:df:69:8c:af:b3:d4:76:f4:1e:0b:1e:
        b3:eb:fb:96:9b:95:ac:8e:e6:49:da:37:f5:0a:fa:f4:
        0d:8f:12:4c:7f:6f:6f:3d:e6:95:af:66:c7:d2:1c:1b:
        db:a1:99:9f:06:6a:d8:7c:30:b2:56:a5:c4:c0:ee:00:
        56:14:52:8a:71:3e:50:91:a3:7c:c2:33:ec:b4:4a:c7:
        2b:8b:f7:61:d3:d9:3d:52:57:e3:12:ce:98:4a:73:ba:
        ff:79:03:86:93:d4:b7:65:22:21:87:69:29:94:0e:17:
        10:c1:7e:15:41:f3:66:ff:e7:35:0e:f2:95:5d:cf:aa:
        1c:a2:ba:c4:0a:7f:ba:ea:a0:34:99:91:19:4f:5a:43:
        de:61:2a:bb:a2:65:82:50:ae:17:69:6e:0a:fe:e0:89:
        85:de:47:41:e4:7f:eb:6f:2f:92:41:82:e9:d5:e5:da:
        68:f1:00:1a:11:1e:6c:dc:2a:95:2e:64:02:f9:d6:37:
        b1:34:4b:ac:83:27:6e:b1:96:9d:50:fd:4f:7f:80:23:
        8a:8c:61:e3:e3:ba:e1:db:6f:c0:93:2d:95:38:7c:e6:
        9c:a5:fa:db:48:7a:ec:96:81:7b:0c:b6:32:89:e9:19
    Fingerprint (SHA-256):
        D3:AB:A8:6D:77:86:74:9A:9A:03:AF:B6:8C:31:6B:B3:52:62:27:AC:72:37:EE:2E:14:A1:6A:0E:23:DC:94:AA
    Fingerprint (SHA1):
        4E:57:8E:D8:36:5F:D0:B5:0B:95:3C:E5:DC:AD:18:DA:01:D8:4A:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7104: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7105: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123377 (0x310fddb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:65:3d:77:54:ed:96:66:b5:3c:79:e7:20:c0:b6:ab:
                    ad:08:6b:db:09:5b:41:2a:81:74:e0:9e:ad:a7:bf:e2:
                    a6:ee:e4:19:55:b8:a7:a6:38:a3:b8:42:85:a9:e1:34:
                    0c:f8:fe:82:99:12:55:ef:60:65:79:e1:e9:e3:24:9d:
                    2c:00:9d:cb:21:53:11:70:b6:5e:68:26:cb:c3:b9:1c:
                    4c:73:50:f0:3d:70:bc:a7:a5:d8:43:a5:d9:31:ca:8c:
                    79:6a:30:1d:a5:56:49:cd:69:10:ef:d4:fd:f8:a8:93:
                    ca:ad:3f:15:69:90:98:e5:38:10:ec:cf:66:cb:a3:12:
                    e3:a8:7b:23:3c:bb:e4:c9:96:5c:1e:e8:63:44:0e:e9:
                    9a:88:0e:35:4f:0e:2e:91:94:4d:c2:89:c5:b5:4b:df:
                    d7:73:98:d8:5e:9f:ff:62:34:73:30:81:b5:f9:1c:36:
                    be:ba:2c:92:3f:38:31:77:a6:bf:70:81:80:a9:04:51:
                    ed:d6:54:43:29:2a:11:81:db:a4:2b:d8:7b:d5:18:8a:
                    84:51:76:85:f6:e5:c1:02:15:16:d6:1a:ba:dd:a1:11:
                    60:1c:32:2e:f4:0d:09:cc:ff:80:af:a7:79:98:42:f1:
                    06:eb:44:14:d1:6c:b6:cc:20:e6:6b:e0:4a:29:5c:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:7a:e4:15:73:d2:98:c1:ce:93:ad:8a:67:87:e9:c0:
        6e:b5:3d:69:4c:c3:da:d3:f9:c1:1e:32:4f:13:cf:93:
        d5:40:7f:32:d6:3f:5f:df:ba:13:1b:1a:25:6e:c0:a4:
        97:45:a4:18:cb:e3:ed:01:e6:9e:11:bf:a1:68:0d:01:
        13:11:56:4b:e7:a7:6c:f3:42:45:fa:e7:e1:21:6b:fe:
        21:58:85:1c:79:29:9b:d6:92:05:30:46:42:a4:cb:e6:
        93:52:af:d6:bc:8f:19:19:f3:83:cd:6c:1c:ea:d6:03:
        66:37:22:30:9c:1a:8d:67:21:a5:7d:48:f4:9d:0f:3f:
        23:ef:e9:40:8e:9d:3f:55:86:2e:56:5a:19:c2:58:e1:
        c3:1a:58:78:4f:52:e4:43:01:22:8c:33:0e:3e:b9:b5:
        df:f4:21:98:9c:e0:9d:24:83:34:3e:eb:1a:2d:3a:6e:
        4c:97:7b:d4:3d:7d:8e:94:11:bb:f7:8d:c1:4d:6c:c6:
        56:30:8c:39:b5:b0:f3:cd:40:de:0e:74:f5:26:b5:69:
        2d:d0:57:83:b2:f2:17:cb:c1:9e:96:f8:6c:07:91:83:
        43:ab:e2:e9:ee:b2:48:41:f9:ef:90:dc:6d:bc:14:91:
        ad:4d:b0:1c:2f:16:84:9a:c2:e6:7a:e6:c7:40:c5:94
    Fingerprint (SHA-256):
        F9:37:E9:BD:AF:48:C3:DC:94:45:BA:63:05:32:A5:C2:F8:53:D3:C6:3A:0C:A4:4B:27:CF:78:E7:14:FA:87:9A
    Fingerprint (SHA1):
        7B:C2:01:A0:FC:8B:40:D5:8F:11:CB:EA:56:FE:6E:C1:B7:94:62:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7106: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123377 (0x310fddb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:65:3d:77:54:ed:96:66:b5:3c:79:e7:20:c0:b6:ab:
                    ad:08:6b:db:09:5b:41:2a:81:74:e0:9e:ad:a7:bf:e2:
                    a6:ee:e4:19:55:b8:a7:a6:38:a3:b8:42:85:a9:e1:34:
                    0c:f8:fe:82:99:12:55:ef:60:65:79:e1:e9:e3:24:9d:
                    2c:00:9d:cb:21:53:11:70:b6:5e:68:26:cb:c3:b9:1c:
                    4c:73:50:f0:3d:70:bc:a7:a5:d8:43:a5:d9:31:ca:8c:
                    79:6a:30:1d:a5:56:49:cd:69:10:ef:d4:fd:f8:a8:93:
                    ca:ad:3f:15:69:90:98:e5:38:10:ec:cf:66:cb:a3:12:
                    e3:a8:7b:23:3c:bb:e4:c9:96:5c:1e:e8:63:44:0e:e9:
                    9a:88:0e:35:4f:0e:2e:91:94:4d:c2:89:c5:b5:4b:df:
                    d7:73:98:d8:5e:9f:ff:62:34:73:30:81:b5:f9:1c:36:
                    be:ba:2c:92:3f:38:31:77:a6:bf:70:81:80:a9:04:51:
                    ed:d6:54:43:29:2a:11:81:db:a4:2b:d8:7b:d5:18:8a:
                    84:51:76:85:f6:e5:c1:02:15:16:d6:1a:ba:dd:a1:11:
                    60:1c:32:2e:f4:0d:09:cc:ff:80:af:a7:79:98:42:f1:
                    06:eb:44:14:d1:6c:b6:cc:20:e6:6b:e0:4a:29:5c:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:7a:e4:15:73:d2:98:c1:ce:93:ad:8a:67:87:e9:c0:
        6e:b5:3d:69:4c:c3:da:d3:f9:c1:1e:32:4f:13:cf:93:
        d5:40:7f:32:d6:3f:5f:df:ba:13:1b:1a:25:6e:c0:a4:
        97:45:a4:18:cb:e3:ed:01:e6:9e:11:bf:a1:68:0d:01:
        13:11:56:4b:e7:a7:6c:f3:42:45:fa:e7:e1:21:6b:fe:
        21:58:85:1c:79:29:9b:d6:92:05:30:46:42:a4:cb:e6:
        93:52:af:d6:bc:8f:19:19:f3:83:cd:6c:1c:ea:d6:03:
        66:37:22:30:9c:1a:8d:67:21:a5:7d:48:f4:9d:0f:3f:
        23:ef:e9:40:8e:9d:3f:55:86:2e:56:5a:19:c2:58:e1:
        c3:1a:58:78:4f:52:e4:43:01:22:8c:33:0e:3e:b9:b5:
        df:f4:21:98:9c:e0:9d:24:83:34:3e:eb:1a:2d:3a:6e:
        4c:97:7b:d4:3d:7d:8e:94:11:bb:f7:8d:c1:4d:6c:c6:
        56:30:8c:39:b5:b0:f3:cd:40:de:0e:74:f5:26:b5:69:
        2d:d0:57:83:b2:f2:17:cb:c1:9e:96:f8:6c:07:91:83:
        43:ab:e2:e9:ee:b2:48:41:f9:ef:90:dc:6d:bc:14:91:
        ad:4d:b0:1c:2f:16:84:9a:c2:e6:7a:e6:c7:40:c5:94
    Fingerprint (SHA-256):
        F9:37:E9:BD:AF:48:C3:DC:94:45:BA:63:05:32:A5:C2:F8:53:D3:C6:3A:0C:A4:4B:27:CF:78:E7:14:FA:87:9A
    Fingerprint (SHA1):
        7B:C2:01:A0:FC:8B:40:D5:8F:11:CB:EA:56:FE:6E:C1:B7:94:62:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7107: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123378 (0x310fddb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:22:9b:01:59:02:12:2a:94:25:0f:d9:a6:16:24:2a:
                    c9:6b:39:08:3f:81:f4:b4:a8:a8:f4:49:35:22:85:3b:
                    49:91:73:6e:03:a3:f5:b8:39:a4:97:ed:56:e7:a9:36:
                    e7:d0:19:22:95:28:e1:dc:09:d6:22:63:b7:83:7b:3c:
                    a9:2f:c3:f0:53:90:6f:56:ce:b8:a0:05:e1:6c:00:6d:
                    05:d5:80:16:08:b1:b3:61:39:a5:26:9f:c9:a5:29:87:
                    4c:b1:ae:ec:28:4e:44:f2:10:63:2b:24:c8:20:e3:0d:
                    e5:6f:0d:d5:95:aa:e0:6f:3d:1c:85:30:e9:c0:69:12:
                    23:13:63:08:9a:87:7b:8d:3e:27:b6:32:52:83:cd:43:
                    1b:23:17:e1:a2:1a:86:75:ef:70:96:89:0a:eb:3a:92:
                    c3:57:49:b9:e5:3a:99:9f:3a:15:7f:e3:3c:43:2d:56:
                    8d:44:b1:79:ac:bb:d0:b4:7d:91:46:6e:c0:55:10:bd:
                    d5:b7:9b:a7:7c:34:3a:a6:0c:64:86:17:84:58:63:f1:
                    48:20:61:41:5c:7f:11:b0:95:ab:06:48:21:d3:01:5c:
                    d2:80:dc:76:11:02:ba:2a:38:e1:3c:13:00:28:d2:b7:
                    bd:fa:8f:90:30:88:25:7c:ee:a3:ae:18:2e:90:3e:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:1f:27:95:ca:a9:36:68:37:2c:cd:1f:91:36:d5:a8:
        49:9b:6b:ca:74:9d:fd:6d:f5:a1:76:0d:b7:03:42:0e:
        d8:05:0b:3e:b7:f2:2b:4a:b5:5a:15:4e:b1:23:d0:15:
        3f:04:fc:53:c6:63:f3:3f:21:67:d1:33:75:e3:10:c8:
        30:6d:54:00:dd:ca:d8:0e:35:af:b9:76:47:5b:cd:80:
        6f:e6:1d:0a:a4:1f:6d:18:15:52:97:09:95:6e:c8:d0:
        fa:fe:b1:a3:7e:c5:8e:cb:bc:f5:aa:41:a9:8a:26:f0:
        85:85:ac:1f:de:04:86:98:06:0e:45:1e:03:20:e8:74:
        6c:5e:e6:24:7f:a7:20:83:5d:71:5b:30:d5:c4:3f:72:
        50:c6:ef:e0:7b:56:ef:ab:20:d7:aa:b6:9d:fd:29:ec:
        05:3a:8d:e3:be:4a:f3:fb:c6:10:d7:d8:dc:d0:28:76:
        94:a4:ec:f2:34:f5:05:f8:e4:85:1e:0e:9d:eb:71:23:
        da:74:89:68:51:7d:44:6d:94:f3:1a:66:14:58:da:7a:
        c7:1b:b8:44:b2:b3:58:17:54:0a:a2:6f:26:62:2d:04:
        8c:ed:36:95:ea:22:76:64:14:aa:d3:71:e2:02:72:9b:
        52:ce:3c:68:0e:7c:44:39:10:30:c0:5e:e4:4a:4b:a1
    Fingerprint (SHA-256):
        A8:94:7D:F3:67:00:6D:A8:2F:3F:AF:D7:8B:0E:DB:BA:39:C8:10:EF:78:E3:B9:98:E8:92:BF:79:85:0A:E8:F3
    Fingerprint (SHA1):
        31:AE:1A:66:4D:2A:F7:5D:43:72:43:1F:42:F3:CB:54:8F:1A:81:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7108: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123378 (0x310fddb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:22:9b:01:59:02:12:2a:94:25:0f:d9:a6:16:24:2a:
                    c9:6b:39:08:3f:81:f4:b4:a8:a8:f4:49:35:22:85:3b:
                    49:91:73:6e:03:a3:f5:b8:39:a4:97:ed:56:e7:a9:36:
                    e7:d0:19:22:95:28:e1:dc:09:d6:22:63:b7:83:7b:3c:
                    a9:2f:c3:f0:53:90:6f:56:ce:b8:a0:05:e1:6c:00:6d:
                    05:d5:80:16:08:b1:b3:61:39:a5:26:9f:c9:a5:29:87:
                    4c:b1:ae:ec:28:4e:44:f2:10:63:2b:24:c8:20:e3:0d:
                    e5:6f:0d:d5:95:aa:e0:6f:3d:1c:85:30:e9:c0:69:12:
                    23:13:63:08:9a:87:7b:8d:3e:27:b6:32:52:83:cd:43:
                    1b:23:17:e1:a2:1a:86:75:ef:70:96:89:0a:eb:3a:92:
                    c3:57:49:b9:e5:3a:99:9f:3a:15:7f:e3:3c:43:2d:56:
                    8d:44:b1:79:ac:bb:d0:b4:7d:91:46:6e:c0:55:10:bd:
                    d5:b7:9b:a7:7c:34:3a:a6:0c:64:86:17:84:58:63:f1:
                    48:20:61:41:5c:7f:11:b0:95:ab:06:48:21:d3:01:5c:
                    d2:80:dc:76:11:02:ba:2a:38:e1:3c:13:00:28:d2:b7:
                    bd:fa:8f:90:30:88:25:7c:ee:a3:ae:18:2e:90:3e:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:1f:27:95:ca:a9:36:68:37:2c:cd:1f:91:36:d5:a8:
        49:9b:6b:ca:74:9d:fd:6d:f5:a1:76:0d:b7:03:42:0e:
        d8:05:0b:3e:b7:f2:2b:4a:b5:5a:15:4e:b1:23:d0:15:
        3f:04:fc:53:c6:63:f3:3f:21:67:d1:33:75:e3:10:c8:
        30:6d:54:00:dd:ca:d8:0e:35:af:b9:76:47:5b:cd:80:
        6f:e6:1d:0a:a4:1f:6d:18:15:52:97:09:95:6e:c8:d0:
        fa:fe:b1:a3:7e:c5:8e:cb:bc:f5:aa:41:a9:8a:26:f0:
        85:85:ac:1f:de:04:86:98:06:0e:45:1e:03:20:e8:74:
        6c:5e:e6:24:7f:a7:20:83:5d:71:5b:30:d5:c4:3f:72:
        50:c6:ef:e0:7b:56:ef:ab:20:d7:aa:b6:9d:fd:29:ec:
        05:3a:8d:e3:be:4a:f3:fb:c6:10:d7:d8:dc:d0:28:76:
        94:a4:ec:f2:34:f5:05:f8:e4:85:1e:0e:9d:eb:71:23:
        da:74:89:68:51:7d:44:6d:94:f3:1a:66:14:58:da:7a:
        c7:1b:b8:44:b2:b3:58:17:54:0a:a2:6f:26:62:2d:04:
        8c:ed:36:95:ea:22:76:64:14:aa:d3:71:e2:02:72:9b:
        52:ce:3c:68:0e:7c:44:39:10:30:c0:5e:e4:4a:4b:a1
    Fingerprint (SHA-256):
        A8:94:7D:F3:67:00:6D:A8:2F:3F:AF:D7:8B:0E:DB:BA:39:C8:10:EF:78:E3:B9:98:E8:92:BF:79:85:0A:E8:F3
    Fingerprint (SHA1):
        31:AE:1A:66:4D:2A:F7:5D:43:72:43:1F:42:F3:CB:54:8F:1A:81:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7109: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123379 (0x310fddb3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:a8:ef:e5:1f:31:23:87:2f:32:36:6a:0d:ed:2f:14:
                    13:02:11:ec:0c:2c:81:44:e6:0e:56:38:6c:70:23:f4:
                    2f:60:3b:1e:61:1e:c1:76:83:21:ec:e3:d0:17:59:2d:
                    76:c5:a1:12:43:75:72:64:f2:f7:1b:57:a5:7e:45:05:
                    dd:d7:9a:90:2f:70:48:66:f4:90:e5:a6:de:1d:42:d2:
                    34:ab:01:7c:6d:50:14:f1:9b:54:be:92:a5:be:0a:99:
                    23:df:74:56:df:56:58:b3:1b:7d:35:4b:8b:0e:b2:3a:
                    9c:93:23:19:16:91:74:c6:92:6a:a7:a1:a1:05:ef:f4:
                    b5:1f:ff:4e:72:f8:e9:33:e5:07:a8:b1:fa:19:39:20:
                    06:6f:f5:62:91:0f:a4:e7:40:70:64:5b:64:d5:cd:6c:
                    ff:d7:43:27:c5:0b:8e:ae:25:20:e5:12:3f:2d:a2:26:
                    bc:81:8a:03:f2:79:f2:a5:e1:37:ea:c5:19:0c:65:f7:
                    91:7b:b3:93:df:8a:7a:14:d9:45:5c:b4:d2:85:00:49:
                    b3:00:19:4b:59:60:e4:9a:54:03:0c:56:15:23:4d:d1:
                    c3:44:b0:64:48:19:3d:6d:fd:2f:87:17:bb:52:9b:31:
                    ab:f1:4f:24:ea:34:3b:74:ca:47:64:e6:8c:bd:c0:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:5e:61:e8:4d:83:e6:de:ef:77:33:03:fe:e0:72:4c:
        09:22:fb:2b:dd:df:69:8c:af:b3:d4:76:f4:1e:0b:1e:
        b3:eb:fb:96:9b:95:ac:8e:e6:49:da:37:f5:0a:fa:f4:
        0d:8f:12:4c:7f:6f:6f:3d:e6:95:af:66:c7:d2:1c:1b:
        db:a1:99:9f:06:6a:d8:7c:30:b2:56:a5:c4:c0:ee:00:
        56:14:52:8a:71:3e:50:91:a3:7c:c2:33:ec:b4:4a:c7:
        2b:8b:f7:61:d3:d9:3d:52:57:e3:12:ce:98:4a:73:ba:
        ff:79:03:86:93:d4:b7:65:22:21:87:69:29:94:0e:17:
        10:c1:7e:15:41:f3:66:ff:e7:35:0e:f2:95:5d:cf:aa:
        1c:a2:ba:c4:0a:7f:ba:ea:a0:34:99:91:19:4f:5a:43:
        de:61:2a:bb:a2:65:82:50:ae:17:69:6e:0a:fe:e0:89:
        85:de:47:41:e4:7f:eb:6f:2f:92:41:82:e9:d5:e5:da:
        68:f1:00:1a:11:1e:6c:dc:2a:95:2e:64:02:f9:d6:37:
        b1:34:4b:ac:83:27:6e:b1:96:9d:50:fd:4f:7f:80:23:
        8a:8c:61:e3:e3:ba:e1:db:6f:c0:93:2d:95:38:7c:e6:
        9c:a5:fa:db:48:7a:ec:96:81:7b:0c:b6:32:89:e9:19
    Fingerprint (SHA-256):
        D3:AB:A8:6D:77:86:74:9A:9A:03:AF:B6:8C:31:6B:B3:52:62:27:AC:72:37:EE:2E:14:A1:6A:0E:23:DC:94:AA
    Fingerprint (SHA1):
        4E:57:8E:D8:36:5F:D0:B5:0B:95:3C:E5:DC:AD:18:DA:01:D8:4A:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7110: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123379 (0x310fddb3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:01 2017
            Not After : Tue Aug 23 12:34:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:a8:ef:e5:1f:31:23:87:2f:32:36:6a:0d:ed:2f:14:
                    13:02:11:ec:0c:2c:81:44:e6:0e:56:38:6c:70:23:f4:
                    2f:60:3b:1e:61:1e:c1:76:83:21:ec:e3:d0:17:59:2d:
                    76:c5:a1:12:43:75:72:64:f2:f7:1b:57:a5:7e:45:05:
                    dd:d7:9a:90:2f:70:48:66:f4:90:e5:a6:de:1d:42:d2:
                    34:ab:01:7c:6d:50:14:f1:9b:54:be:92:a5:be:0a:99:
                    23:df:74:56:df:56:58:b3:1b:7d:35:4b:8b:0e:b2:3a:
                    9c:93:23:19:16:91:74:c6:92:6a:a7:a1:a1:05:ef:f4:
                    b5:1f:ff:4e:72:f8:e9:33:e5:07:a8:b1:fa:19:39:20:
                    06:6f:f5:62:91:0f:a4:e7:40:70:64:5b:64:d5:cd:6c:
                    ff:d7:43:27:c5:0b:8e:ae:25:20:e5:12:3f:2d:a2:26:
                    bc:81:8a:03:f2:79:f2:a5:e1:37:ea:c5:19:0c:65:f7:
                    91:7b:b3:93:df:8a:7a:14:d9:45:5c:b4:d2:85:00:49:
                    b3:00:19:4b:59:60:e4:9a:54:03:0c:56:15:23:4d:d1:
                    c3:44:b0:64:48:19:3d:6d:fd:2f:87:17:bb:52:9b:31:
                    ab:f1:4f:24:ea:34:3b:74:ca:47:64:e6:8c:bd:c0:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c1:5e:61:e8:4d:83:e6:de:ef:77:33:03:fe:e0:72:4c:
        09:22:fb:2b:dd:df:69:8c:af:b3:d4:76:f4:1e:0b:1e:
        b3:eb:fb:96:9b:95:ac:8e:e6:49:da:37:f5:0a:fa:f4:
        0d:8f:12:4c:7f:6f:6f:3d:e6:95:af:66:c7:d2:1c:1b:
        db:a1:99:9f:06:6a:d8:7c:30:b2:56:a5:c4:c0:ee:00:
        56:14:52:8a:71:3e:50:91:a3:7c:c2:33:ec:b4:4a:c7:
        2b:8b:f7:61:d3:d9:3d:52:57:e3:12:ce:98:4a:73:ba:
        ff:79:03:86:93:d4:b7:65:22:21:87:69:29:94:0e:17:
        10:c1:7e:15:41:f3:66:ff:e7:35:0e:f2:95:5d:cf:aa:
        1c:a2:ba:c4:0a:7f:ba:ea:a0:34:99:91:19:4f:5a:43:
        de:61:2a:bb:a2:65:82:50:ae:17:69:6e:0a:fe:e0:89:
        85:de:47:41:e4:7f:eb:6f:2f:92:41:82:e9:d5:e5:da:
        68:f1:00:1a:11:1e:6c:dc:2a:95:2e:64:02:f9:d6:37:
        b1:34:4b:ac:83:27:6e:b1:96:9d:50:fd:4f:7f:80:23:
        8a:8c:61:e3:e3:ba:e1:db:6f:c0:93:2d:95:38:7c:e6:
        9c:a5:fa:db:48:7a:ec:96:81:7b:0c:b6:32:89:e9:19
    Fingerprint (SHA-256):
        D3:AB:A8:6D:77:86:74:9A:9A:03:AF:B6:8C:31:6B:B3:52:62:27:AC:72:37:EE:2E:14:A1:6A:0E:23:DC:94:AA
    Fingerprint (SHA1):
        4E:57:8E:D8:36:5F:D0:B5:0B:95:3C:E5:DC:AD:18:DA:01:D8:4A:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7111: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7112: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123382 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7113: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7114: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7115: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7116: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123383   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7117: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7118: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7119: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7120: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123384   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7121: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7122: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7123: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7124: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 823123385   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7125: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7126: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7127: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7128: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123386   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7129: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7130: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7131: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7132: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123387   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7133: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7134: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7135: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7136: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 823123388   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7137: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7138: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7139: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7140: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7141: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7142: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7143: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123382 (0x310fddb6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:03 2017
            Not After : Tue Aug 23 12:34:03 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:00:b0:8f:8c:c8:b2:09:78:35:06:db:06:29:62:c8:
                    b9:6d:96:28:c1:ea:b6:d8:99:a1:1c:4b:36:07:2d:fa:
                    0b:bf:06:37:93:80:9f:32:6f:c8:56:50:ec:b9:0a:c7:
                    8c:f4:79:1e:5e:19:0a:a2:bc:bc:72:b9:7c:d0:a8:d4:
                    08:62:b0:f1:d4:cc:10:78:84:00:93:fd:85:9e:9d:d2:
                    ad:8b:3a:b9:74:a3:09:fd:35:18:27:0c:ea:93:b9:29:
                    1c:24:42:51:ab:13:31:ec:51:fc:b7:57:1f:5d:a5:36:
                    5e:69:0c:28:5a:e7:05:37:bc:5d:b0:ca:ce:14:03:a8:
                    2c:74:18:68:d3:20:21:a9:0e:fa:a5:0d:50:aa:77:ff:
                    b2:bc:f0:4e:97:b3:7e:18:fc:e8:13:5b:6f:9e:5b:3c:
                    f1:d3:f5:3a:16:40:af:95:bc:1e:e9:ad:45:7c:62:6e:
                    86:54:3c:72:ef:a7:27:14:72:c7:6d:a9:44:f8:2d:1a:
                    c2:7a:59:6c:17:14:bf:d2:c1:3c:ad:5a:7d:b3:cc:8d:
                    cf:f5:10:24:a5:62:a6:7f:d5:25:be:29:82:8a:97:25:
                    14:a3:5a:3c:09:ed:c0:68:d6:e6:77:72:1a:65:ee:53:
                    3c:45:df:73:55:83:e0:10:74:db:5f:96:d9:97:c6:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:a3:32:f3:4a:6d:7a:62:41:f5:d9:ff:41:bf:47:26:
        e9:4a:11:91:17:c9:9c:69:47:5a:1b:c1:de:70:d4:2d:
        5f:09:e7:c3:31:67:9e:9d:7a:b6:bd:e6:35:24:63:91:
        f6:cd:0c:f7:c9:9c:e4:e8:fc:82:b6:71:2f:3a:99:67:
        4f:10:cc:13:4a:5d:28:5f:ea:73:5c:48:44:1c:fc:51:
        75:8b:00:6e:a1:1d:13:de:41:8b:65:fa:50:d1:41:69:
        38:aa:14:07:c0:73:d8:68:22:be:72:39:18:42:9c:b9:
        24:38:81:52:ad:e9:55:83:4e:62:b5:f8:8e:7b:dc:63:
        5b:b6:4e:24:b4:06:44:1b:87:1c:a2:17:8b:ff:a6:1c:
        9a:de:cd:a9:a0:e3:79:83:64:7e:b2:cb:59:46:59:06:
        0f:3d:3e:8e:af:35:42:8f:4b:3f:1d:7e:f2:a9:f9:7e:
        a6:10:34:22:c7:d4:84:02:29:b0:1a:b2:27:3f:f2:d6:
        36:d8:31:80:df:cc:4a:b3:e5:3e:5c:9b:1b:d4:20:e1:
        a4:72:cc:68:1e:cc:86:32:fe:a5:8c:c1:87:47:54:fb:
        95:71:88:c2:3f:4c:7d:de:6e:37:c3:d5:b0:8d:46:e2:
        ce:e5:36:34:88:3d:bf:99:5b:e3:92:1e:2f:a3:2b:89
    Fingerprint (SHA-256):
        D5:42:2B:F5:ED:D6:F1:CC:0B:9A:66:AB:3A:17:5E:7F:1F:FE:46:EA:E5:43:97:4B:42:FB:39:32:80:0A:08:2F
    Fingerprint (SHA1):
        89:05:DB:E0:6D:5A:7F:4E:3B:4A:8B:F0:7C:9C:69:30:78:6B:57:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7144: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7145: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7146: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7147: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123382 (0x310fddb6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:03 2017
            Not After : Tue Aug 23 12:34:03 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:00:b0:8f:8c:c8:b2:09:78:35:06:db:06:29:62:c8:
                    b9:6d:96:28:c1:ea:b6:d8:99:a1:1c:4b:36:07:2d:fa:
                    0b:bf:06:37:93:80:9f:32:6f:c8:56:50:ec:b9:0a:c7:
                    8c:f4:79:1e:5e:19:0a:a2:bc:bc:72:b9:7c:d0:a8:d4:
                    08:62:b0:f1:d4:cc:10:78:84:00:93:fd:85:9e:9d:d2:
                    ad:8b:3a:b9:74:a3:09:fd:35:18:27:0c:ea:93:b9:29:
                    1c:24:42:51:ab:13:31:ec:51:fc:b7:57:1f:5d:a5:36:
                    5e:69:0c:28:5a:e7:05:37:bc:5d:b0:ca:ce:14:03:a8:
                    2c:74:18:68:d3:20:21:a9:0e:fa:a5:0d:50:aa:77:ff:
                    b2:bc:f0:4e:97:b3:7e:18:fc:e8:13:5b:6f:9e:5b:3c:
                    f1:d3:f5:3a:16:40:af:95:bc:1e:e9:ad:45:7c:62:6e:
                    86:54:3c:72:ef:a7:27:14:72:c7:6d:a9:44:f8:2d:1a:
                    c2:7a:59:6c:17:14:bf:d2:c1:3c:ad:5a:7d:b3:cc:8d:
                    cf:f5:10:24:a5:62:a6:7f:d5:25:be:29:82:8a:97:25:
                    14:a3:5a:3c:09:ed:c0:68:d6:e6:77:72:1a:65:ee:53:
                    3c:45:df:73:55:83:e0:10:74:db:5f:96:d9:97:c6:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:a3:32:f3:4a:6d:7a:62:41:f5:d9:ff:41:bf:47:26:
        e9:4a:11:91:17:c9:9c:69:47:5a:1b:c1:de:70:d4:2d:
        5f:09:e7:c3:31:67:9e:9d:7a:b6:bd:e6:35:24:63:91:
        f6:cd:0c:f7:c9:9c:e4:e8:fc:82:b6:71:2f:3a:99:67:
        4f:10:cc:13:4a:5d:28:5f:ea:73:5c:48:44:1c:fc:51:
        75:8b:00:6e:a1:1d:13:de:41:8b:65:fa:50:d1:41:69:
        38:aa:14:07:c0:73:d8:68:22:be:72:39:18:42:9c:b9:
        24:38:81:52:ad:e9:55:83:4e:62:b5:f8:8e:7b:dc:63:
        5b:b6:4e:24:b4:06:44:1b:87:1c:a2:17:8b:ff:a6:1c:
        9a:de:cd:a9:a0:e3:79:83:64:7e:b2:cb:59:46:59:06:
        0f:3d:3e:8e:af:35:42:8f:4b:3f:1d:7e:f2:a9:f9:7e:
        a6:10:34:22:c7:d4:84:02:29:b0:1a:b2:27:3f:f2:d6:
        36:d8:31:80:df:cc:4a:b3:e5:3e:5c:9b:1b:d4:20:e1:
        a4:72:cc:68:1e:cc:86:32:fe:a5:8c:c1:87:47:54:fb:
        95:71:88:c2:3f:4c:7d:de:6e:37:c3:d5:b0:8d:46:e2:
        ce:e5:36:34:88:3d:bf:99:5b:e3:92:1e:2f:a3:2b:89
    Fingerprint (SHA-256):
        D5:42:2B:F5:ED:D6:F1:CC:0B:9A:66:AB:3A:17:5E:7F:1F:FE:46:EA:E5:43:97:4B:42:FB:39:32:80:0A:08:2F
    Fingerprint (SHA1):
        89:05:DB:E0:6D:5A:7F:4E:3B:4A:8B:F0:7C:9C:69:30:78:6B:57:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7148: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7149: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7150: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123389 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7151: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7152: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7153: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7154: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123390   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7155: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7156: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7157: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7158: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 823123391   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7159: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7160: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7161: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7162: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 823123392   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7163: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7164: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7165: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7166: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 823123393   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7167: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7168: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7169: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7170: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 823123394   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7171: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7172: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7173: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7174: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 823123395   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7175: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7176: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7177: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7178: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 823123396   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7179: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7180: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7181: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7182: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 823123397   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7183: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7184: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7185: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7186: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 823123398   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7187: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7188: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7189: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7190: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 823123399   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7191: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7192: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7193: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7194: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 823123400   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7195: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7196: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7197: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7198: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 823123401   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7199: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7200: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7201: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7202: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 823123402   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7203: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7204: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7205: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7206: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 823123403   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7207: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7208: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7209: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7210: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 823123404   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7211: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7212: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7213: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7214: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 823123405   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7215: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7216: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7217: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7218: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 823123406   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7219: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7220: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7221: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7222: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 823123407   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7223: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7224: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7225: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7226: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 823123408   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7227: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7228: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7229: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7230: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 823123409   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7231: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7232: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7233: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7234: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 823123410   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7235: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7236: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7237: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7238: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 823123411   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7239: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7240: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7241: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7242: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 823123412   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7243: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7244: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7245: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7246: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 823123413   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7247: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7248: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7249: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7250: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 823123414   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7251: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7252: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7253: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7254: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 823123415   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7255: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7256: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7257: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7258: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 823123416   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7259: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7260: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7261: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7262: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 823123417   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7263: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7264: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7265: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7266: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 823123418   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7267: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7268: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7269: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7270: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7271: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7272: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7273: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7274: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7275: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7276: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7277: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7278: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7279: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7280: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7281: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7282: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7283: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7284: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7285: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7286: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7287: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7288: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7289: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7290: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7291: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123389 (0x310fddbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:04 2017
            Not After : Tue Aug 23 12:34:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:90:0a:7f:9f:fa:56:c4:e5:0e:70:f2:6f:2f:39:17:
                    84:e6:35:a1:0b:04:1c:2b:81:c8:e5:c1:be:b3:7b:ce:
                    6b:2d:c5:83:cf:be:19:d4:8e:ca:49:f9:c7:05:1c:1f:
                    4b:b0:da:57:21:27:20:01:72:7f:9b:a3:5e:8a:91:43:
                    c5:d8:b2:bd:76:31:cd:1c:7b:fa:b9:f0:ca:89:aa:9e:
                    09:1f:dd:15:75:fe:06:0c:bf:f1:03:a2:cb:ba:49:74:
                    9d:23:0c:4c:8d:b7:b8:a2:cb:04:d6:35:59:8c:02:23:
                    38:28:99:55:f4:df:b8:82:73:07:39:a5:2b:bb:33:5e:
                    21:13:65:67:ea:48:c2:54:59:7a:67:6e:a6:0b:76:f5:
                    54:22:aa:73:76:a5:15:ce:96:03:b1:d1:84:c0:b9:94:
                    e7:42:7b:4f:2b:f5:01:10:6a:e9:b7:16:7c:3b:c3:7a:
                    1f:bf:71:29:92:13:bc:ac:99:cf:7e:4b:a5:b7:31:06:
                    80:8e:c7:2f:d4:c5:0d:8f:73:ef:5d:b2:56:fe:76:c4:
                    72:8d:2a:61:72:c8:a2:69:96:bc:05:e5:98:64:a2:1f:
                    94:02:60:c6:b7:9e:74:23:22:2d:59:22:de:45:01:db:
                    f3:b5:52:93:ee:fe:d3:20:2f:97:b6:39:56:d0:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:54:f8:c2:e3:b2:29:fd:b3:4c:fb:54:1a:ac:92:7a:
        4d:9d:a3:33:a0:2f:3b:11:b4:93:42:86:c7:3e:33:3d:
        b8:02:5a:84:75:fa:d3:3c:1f:28:c4:30:26:00:7b:86:
        5c:81:03:b3:b5:e1:c7:9b:6f:b3:3d:80:e5:b6:cc:c5:
        9b:a3:cc:c6:cf:4c:82:00:60:f9:3c:5f:f0:d7:6a:9a:
        92:2c:b5:31:d5:6a:c7:cb:b9:e9:49:bc:47:6c:71:94:
        fc:cc:92:7d:1f:78:8a:41:dd:ca:41:d3:f2:8e:15:6c:
        1a:07:54:61:b8:52:52:32:bf:9e:a6:ac:a3:e0:0c:58:
        db:3e:df:31:da:63:ea:64:bf:f0:b9:ab:44:80:fe:40:
        e9:33:2f:80:8b:7d:af:ae:ea:d0:88:b8:76:bc:03:ce:
        69:6e:de:e2:c2:eb:00:35:58:10:36:48:ea:2d:b0:dd:
        f8:ea:2f:22:f8:7b:5b:b9:9e:2d:57:42:16:b0:3c:06:
        11:2f:10:0b:6f:f9:8e:b7:0e:b0:e0:e3:73:0d:e3:bd:
        f2:5d:ef:d0:35:dd:33:ac:97:01:cd:d8:a1:22:7c:8c:
        94:d6:f8:57:74:f2:d8:1a:3b:5f:96:1e:5d:be:41:e6:
        6e:c2:82:e1:ff:ec:4b:28:b5:0d:2a:09:fd:d2:40:12
    Fingerprint (SHA-256):
        6A:B0:7E:FE:00:E2:F4:8C:03:B1:A7:93:E0:FE:5F:F0:57:6A:3C:F9:FB:83:FE:0F:63:32:5A:34:6B:96:EE:2F
    Fingerprint (SHA1):
        AF:EB:7E:79:33:2F:D1:54:F1:D2:C9:DE:46:3D:83:77:56:E7:80:98
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7292: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7293: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7294: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123419 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7295: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7296: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7297: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7298: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 823123420   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7299: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7300: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7301: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7302: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 823123421   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7303: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7304: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7305: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7306: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 823123422   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7307: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7308: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7309: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7310: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 823123423   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7311: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7312: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7313: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7314: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 823123424   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7315: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7316: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7317: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7318: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 823123425   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7319: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7320: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7321: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123419 (0x310fdddb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:11 2017
            Not After : Tue Aug 23 12:34:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:22:55:e1:ec:9b:51:e7:bd:92:02:48:a6:60:d2:84:
                    83:c3:64:ad:6d:0f:2e:3b:6b:7c:8c:08:90:cb:49:5c:
                    92:f3:a6:45:a9:99:dc:a8:39:1c:04:78:1d:b9:f7:a5:
                    5b:4a:db:f5:0b:42:42:f2:21:ed:56:01:69:4c:b9:79:
                    4b:33:cf:08:db:83:5f:ea:f7:ab:13:e7:55:56:e3:c7:
                    f3:cd:f9:40:fe:0c:3d:7b:79:39:b4:0f:82:43:8d:30:
                    80:89:d7:00:91:93:81:64:c0:c5:d1:63:5a:3a:1e:80:
                    f8:5f:56:ce:32:1d:fb:7e:c3:86:5e:6a:a5:4e:81:81:
                    95:1f:ea:0e:eb:84:a0:14:c7:e3:35:ec:05:22:c5:fd:
                    66:2e:86:2d:5d:87:58:fb:c1:0c:b6:6a:3b:a4:10:85:
                    b7:2f:70:25:cc:61:9c:c8:44:0e:aa:85:23:9e:2a:3a:
                    b6:ee:7a:c9:63:6c:dc:fc:f8:77:c0:27:fc:1b:2f:8f:
                    8b:a0:52:4a:cf:f3:d4:21:1b:c1:d6:d3:81:35:19:37:
                    a6:6b:cf:51:23:ed:eb:f8:79:04:49:5e:52:63:5b:c6:
                    dd:4f:06:eb:dd:60:ec:97:dd:f6:b8:93:73:a0:a5:63:
                    ea:d0:82:e7:a6:e1:fb:08:16:49:5a:1a:fe:ae:54:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:cb:8f:2c:53:29:37:04:a3:f2:b1:ef:e1:f6:9d:ce:
        7f:c5:d6:b0:ed:ea:d3:b1:98:4b:87:ba:f0:dc:73:0c:
        f6:41:c6:c1:3d:ce:7c:57:55:ee:c1:ba:1e:14:e6:0f:
        f8:82:5c:68:94:11:39:84:8d:dc:8c:ae:33:c6:88:3a:
        af:57:4f:d7:79:ec:94:59:5c:92:ce:2b:de:74:52:e0:
        a3:4c:45:60:57:75:a7:dc:05:6a:80:21:53:ac:3e:32:
        e6:e0:72:9b:cb:14:31:ec:cb:68:c8:85:d4:49:8c:28:
        87:62:fe:ab:01:c1:fb:2f:f2:17:33:7b:31:ff:00:51:
        76:fa:20:1c:d6:b1:71:00:27:0a:50:f4:b2:34:c6:06:
        b9:f4:a4:60:59:65:49:10:85:f9:21:b2:5f:09:fb:08:
        d1:9f:18:bd:55:b8:0f:ad:c4:d6:47:be:79:44:58:13:
        54:30:da:08:8d:c0:bb:66:34:b5:1b:82:ab:c3:b3:68:
        b3:a6:db:a5:ba:37:5d:59:66:eb:b2:49:ea:f6:8e:3b:
        2b:f8:1a:05:fa:06:fb:09:2d:26:32:d6:2a:f1:94:98:
        07:5d:36:43:3c:b5:8b:ae:be:89:8d:b7:0a:0f:e4:c9:
        43:c4:12:d9:ed:1d:10:08:5d:6a:c6:a9:b9:ab:ca:0d
    Fingerprint (SHA-256):
        10:A8:CF:56:1C:87:FC:70:7E:BF:B4:0B:EC:B2:02:A3:27:9B:AC:C2:34:0A:A9:0A:70:7C:D6:06:D4:32:0E:4F
    Fingerprint (SHA1):
        3D:D2:96:24:5B:E3:73:F7:DC:E2:C9:11:6C:1E:23:2B:F5:18:64:2D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7322: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7323: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7324: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7325: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123419 (0x310fdddb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:11 2017
            Not After : Tue Aug 23 12:34:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:22:55:e1:ec:9b:51:e7:bd:92:02:48:a6:60:d2:84:
                    83:c3:64:ad:6d:0f:2e:3b:6b:7c:8c:08:90:cb:49:5c:
                    92:f3:a6:45:a9:99:dc:a8:39:1c:04:78:1d:b9:f7:a5:
                    5b:4a:db:f5:0b:42:42:f2:21:ed:56:01:69:4c:b9:79:
                    4b:33:cf:08:db:83:5f:ea:f7:ab:13:e7:55:56:e3:c7:
                    f3:cd:f9:40:fe:0c:3d:7b:79:39:b4:0f:82:43:8d:30:
                    80:89:d7:00:91:93:81:64:c0:c5:d1:63:5a:3a:1e:80:
                    f8:5f:56:ce:32:1d:fb:7e:c3:86:5e:6a:a5:4e:81:81:
                    95:1f:ea:0e:eb:84:a0:14:c7:e3:35:ec:05:22:c5:fd:
                    66:2e:86:2d:5d:87:58:fb:c1:0c:b6:6a:3b:a4:10:85:
                    b7:2f:70:25:cc:61:9c:c8:44:0e:aa:85:23:9e:2a:3a:
                    b6:ee:7a:c9:63:6c:dc:fc:f8:77:c0:27:fc:1b:2f:8f:
                    8b:a0:52:4a:cf:f3:d4:21:1b:c1:d6:d3:81:35:19:37:
                    a6:6b:cf:51:23:ed:eb:f8:79:04:49:5e:52:63:5b:c6:
                    dd:4f:06:eb:dd:60:ec:97:dd:f6:b8:93:73:a0:a5:63:
                    ea:d0:82:e7:a6:e1:fb:08:16:49:5a:1a:fe:ae:54:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:cb:8f:2c:53:29:37:04:a3:f2:b1:ef:e1:f6:9d:ce:
        7f:c5:d6:b0:ed:ea:d3:b1:98:4b:87:ba:f0:dc:73:0c:
        f6:41:c6:c1:3d:ce:7c:57:55:ee:c1:ba:1e:14:e6:0f:
        f8:82:5c:68:94:11:39:84:8d:dc:8c:ae:33:c6:88:3a:
        af:57:4f:d7:79:ec:94:59:5c:92:ce:2b:de:74:52:e0:
        a3:4c:45:60:57:75:a7:dc:05:6a:80:21:53:ac:3e:32:
        e6:e0:72:9b:cb:14:31:ec:cb:68:c8:85:d4:49:8c:28:
        87:62:fe:ab:01:c1:fb:2f:f2:17:33:7b:31:ff:00:51:
        76:fa:20:1c:d6:b1:71:00:27:0a:50:f4:b2:34:c6:06:
        b9:f4:a4:60:59:65:49:10:85:f9:21:b2:5f:09:fb:08:
        d1:9f:18:bd:55:b8:0f:ad:c4:d6:47:be:79:44:58:13:
        54:30:da:08:8d:c0:bb:66:34:b5:1b:82:ab:c3:b3:68:
        b3:a6:db:a5:ba:37:5d:59:66:eb:b2:49:ea:f6:8e:3b:
        2b:f8:1a:05:fa:06:fb:09:2d:26:32:d6:2a:f1:94:98:
        07:5d:36:43:3c:b5:8b:ae:be:89:8d:b7:0a:0f:e4:c9:
        43:c4:12:d9:ed:1d:10:08:5d:6a:c6:a9:b9:ab:ca:0d
    Fingerprint (SHA-256):
        10:A8:CF:56:1C:87:FC:70:7E:BF:B4:0B:EC:B2:02:A3:27:9B:AC:C2:34:0A:A9:0A:70:7C:D6:06:D4:32:0E:4F
    Fingerprint (SHA1):
        3D:D2:96:24:5B:E3:73:F7:DC:E2:C9:11:6C:1E:23:2B:F5:18:64:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7326: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7327: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7328: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7329: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123426 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7330: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7331: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7332: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7333: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123427   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7334: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7335: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7336: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7337: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123428   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7338: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7339: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7340: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7341: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123429   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7342: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7343: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7344: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7345: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7346: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7347: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123426 (0x310fdde2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:13 2017
            Not After : Tue Aug 23 12:34:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:c8:0b:37:27:2e:7f:3c:14:a9:17:1e:9c:b4:bf:a4:
                    42:69:e0:ab:73:02:8a:7d:52:e3:33:89:52:69:ae:9d:
                    97:0f:ab:d2:14:09:f9:21:38:9f:d6:ec:72:02:74:ff:
                    3e:02:db:8e:22:05:d2:d2:33:03:24:4e:64:cc:03:15:
                    75:e1:71:df:af:94:14:28:4c:75:3e:eb:ed:80:cf:e9:
                    fc:60:6e:65:00:25:6f:99:b3:83:4f:ec:48:6b:4c:de:
                    7e:83:60:22:8a:81:cc:26:4c:07:34:73:d6:e4:16:ce:
                    83:56:d7:4f:46:2d:c4:6e:70:de:2e:20:ea:16:75:2b:
                    ab:04:b6:b0:93:4a:0d:33:d9:b5:e8:4b:ea:32:ed:7e:
                    85:25:9d:7c:d9:30:52:de:5f:3e:94:93:87:45:9c:90:
                    05:b8:32:00:48:d7:c4:8c:a3:ad:14:44:9a:67:94:c2:
                    96:7e:d7:13:48:e8:37:10:c3:0e:17:b3:20:08:3e:fa:
                    30:a1:59:95:fe:c7:7d:14:a8:f5:3d:59:58:62:e9:d1:
                    31:e2:aa:bc:1c:d9:24:d8:ed:99:c0:91:4b:04:bb:48:
                    74:4a:66:37:a0:ce:73:1b:c0:ce:e5:0c:7a:83:a2:d1:
                    63:13:aa:b9:c5:d7:89:03:16:33:8c:3e:24:df:98:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:4f:bb:63:b8:82:88:45:ea:4b:68:c1:7b:99:9b:d2:
        16:74:27:44:5d:75:ef:7e:b9:4c:e9:c8:d0:3e:c1:53:
        83:ed:32:ff:7e:a3:cd:41:eb:58:38:b0:83:fc:d3:22:
        f8:67:2c:8f:e1:86:a0:e1:61:34:ca:f8:e3:98:08:f4:
        38:cc:0d:65:99:f4:f2:43:90:40:31:6a:66:f2:e8:82:
        34:23:2a:a2:e4:c8:df:21:53:40:34:d4:e6:f1:5d:40:
        bd:60:02:e7:ca:be:c7:c0:51:c8:95:37:34:a3:42:07:
        0b:3e:06:7c:3a:aa:e0:f1:ef:58:44:d9:c4:19:8f:70:
        f4:d3:32:5a:bf:72:01:21:7f:6f:f7:b9:1e:64:b4:29:
        b7:e0:b5:c8:8f:72:90:0d:b8:26:ff:cc:df:a9:5f:47:
        24:af:3e:0e:ed:fd:1b:9a:c0:1d:c8:de:71:9d:24:e8:
        ff:a7:57:73:b0:3d:13:37:a2:2d:37:98:87:7f:15:5e:
        f5:6e:5b:13:f8:df:61:e2:33:6d:4b:94:db:e7:2b:0b:
        2b:f0:c5:ee:f9:33:a8:b7:6a:8c:f1:e2:18:9a:d9:26:
        7e:4d:7f:d7:5d:90:5e:3a:0c:74:14:97:9f:95:f1:ba:
        f0:9b:d0:d8:84:f0:a8:1a:48:ac:19:d3:a8:7f:ec:1b
    Fingerprint (SHA-256):
        E7:A2:7E:E6:21:E9:45:F2:3C:9C:FA:57:79:9D:8D:82:AC:F8:F0:68:1E:C8:A6:C5:E0:56:4B:DA:D2:E6:35:58
    Fingerprint (SHA1):
        34:63:E6:22:36:D9:49:A7:8D:F6:85:B5:75:A6:77:0C:6B:CA:95:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7348: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7349: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7350: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123427 (0x310fdde3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:13 2017
            Not After : Tue Aug 23 12:34:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:8a:bb:46:1d:d0:c4:f2:a5:44:5b:8a:c8:bf:d1:1c:
                    95:ca:e7:74:5c:6b:f6:2c:82:12:10:22:83:47:45:fe:
                    91:9e:59:87:78:f0:77:45:5c:70:af:30:13:72:cf:d0:
                    05:12:6f:99:5f:0a:f9:e8:e8:43:de:2d:8f:77:10:04:
                    3c:1b:9f:55:a9:79:bf:b0:88:d6:91:5c:77:b0:26:90:
                    2b:87:b9:26:5a:c3:4d:6d:91:a8:58:94:ae:95:7c:cd:
                    39:06:f3:25:0a:f0:b7:75:c0:16:0e:cd:db:31:38:9c:
                    fb:34:fd:0f:07:a9:4b:e0:28:d9:42:ca:91:6d:8f:c5:
                    77:0f:fc:d6:9a:40:4c:7d:1a:63:12:58:05:4d:80:29:
                    32:db:06:9a:d3:c4:67:74:1f:6e:c6:06:e7:8c:57:5e:
                    46:b1:ec:f6:b2:e0:4f:29:5d:70:5f:0e:9d:e0:17:21:
                    93:36:63:1d:3c:57:b3:47:10:67:8f:cb:89:29:14:1b:
                    98:0f:43:85:02:a7:63:06:89:24:6c:da:c3:cf:97:28:
                    c5:54:05:4c:e0:b6:e6:75:28:7d:46:ac:78:a9:a5:33:
                    49:12:52:cb:9b:9a:c1:ae:bb:d3:a8:48:90:70:b3:9b:
                    39:94:da:27:dc:20:26:3e:ce:76:89:8e:d2:14:43:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:9d:24:1d:ba:b0:2d:05:c9:03:06:d4:38:f1:ba:45:
        c0:4d:03:06:5c:e8:f3:71:12:92:eb:02:6e:a1:dc:54:
        7a:55:05:28:e0:64:d6:4c:78:67:3a:37:38:0b:32:cc:
        5a:2e:73:d8:af:26:e5:8a:d7:99:34:c1:45:e9:29:2e:
        5d:8f:2d:09:3f:81:62:3b:8c:a1:31:aa:20:0a:65:3b:
        e6:ba:db:0b:10:2d:9b:7e:bc:af:ea:a2:39:1b:27:2a:
        d7:32:de:93:1c:4c:67:75:fe:8b:74:2a:e2:54:70:7f:
        1b:89:06:e4:77:be:11:c5:ef:2d:b1:8a:60:5b:16:b4:
        5d:fb:06:42:fc:49:98:e2:7d:b6:c0:25:8d:d6:24:2c:
        f8:31:ce:3a:8c:c3:c9:96:e7:71:06:31:5d:45:cd:fe:
        fb:e8:f5:e8:3b:37:c5:97:5b:36:85:f7:76:b7:a0:b6:
        83:04:5f:70:a1:73:59:53:92:20:8d:2d:4c:b6:0d:cb:
        65:2b:d0:df:67:37:97:7a:06:63:45:70:16:ee:a0:48:
        d0:92:1c:a1:00:28:f6:a6:be:d8:ae:34:9f:2a:73:c4:
        26:b4:0c:e9:1d:8c:7b:36:eb:cd:93:27:be:45:16:2c:
        e7:ce:ef:44:95:1e:91:54:05:c0:a8:15:79:21:8c:7e
    Fingerprint (SHA-256):
        E9:13:27:F0:CB:D4:36:AF:62:4C:78:1C:C0:D5:E7:C6:98:BC:70:7C:EF:F8:4F:70:B5:39:FA:54:FC:EF:1B:8B
    Fingerprint (SHA1):
        21:88:3E:7D:B9:B8:47:4F:E2:AF:32:E6:D1:11:A2:96:A9:CA:91:83
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7351: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7352: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123428 (0x310fdde4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:13 2017
            Not After : Tue Aug 23 12:34:13 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:f1:cd:2b:98:8f:20:bf:93:d1:84:22:5b:e4:fc:3b:
                    eb:ba:6b:ec:64:da:01:00:48:07:41:f5:6a:99:fb:67:
                    ec:df:08:05:6d:bf:f1:5b:9d:e7:a4:92:a2:74:31:a1:
                    cf:b2:cb:9d:11:13:7f:bf:85:67:04:f5:54:47:db:21:
                    31:72:66:25:3f:e4:a4:12:4e:bf:99:eb:87:79:2d:fc:
                    85:0c:9c:61:04:3f:78:c6:ae:05:4b:ec:25:0b:b6:12:
                    ec:c7:55:de:25:93:ca:0a:da:e6:e4:12:4d:e3:08:58:
                    de:52:c7:72:20:bb:7e:16:1f:9c:4d:56:de:c2:a9:68:
                    43:e3:1a:8b:15:d9:9c:4e:03:21:df:cc:03:56:11:f5:
                    22:80:ce:fa:7e:85:8f:84:98:96:aa:9b:a0:c9:36:e5:
                    2b:ef:f5:bc:16:1e:fa:eb:66:79:30:9d:14:3f:4e:f9:
                    2e:96:59:d1:41:bd:02:28:2a:35:26:4a:6c:54:ca:50:
                    f5:98:46:8c:4b:1e:05:08:33:53:17:b3:27:0d:7b:0c:
                    e5:8c:98:0b:16:c3:72:74:0e:90:0b:10:57:e0:d2:37:
                    e4:94:19:e2:0b:e7:4e:0e:0f:bd:1d:09:33:47:e5:ab:
                    ae:c8:68:e0:46:8f:ef:b0:ad:9e:07:a6:df:a0:b5:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:67:fd:5c:69:d2:19:58:90:d4:e8:ad:5f:8d:ae:2e:
        58:41:9b:7d:3e:a4:a6:a9:70:c4:dc:d9:7f:5d:c0:ed:
        e6:a6:fc:f3:03:0e:e0:59:b3:07:6f:92:eb:33:cb:9f:
        c3:2f:ff:1a:b1:5d:30:f5:58:6e:a0:24:10:7b:2e:6b:
        cd:eb:60:b5:da:96:01:60:8c:b2:8a:cc:0c:1a:1d:82:
        d8:1b:cc:57:51:df:08:e4:f7:21:4a:4a:ab:d3:d2:36:
        2d:0f:d9:31:05:68:b1:82:11:80:f6:f1:f9:ef:70:a4:
        ec:65:ef:77:19:88:e6:b1:3c:04:c0:45:23:c6:a0:06:
        b7:f1:56:29:a4:0b:81:bf:c4:20:a2:0c:44:51:43:0b:
        42:b3:67:cf:9f:2f:9a:05:4f:6f:6c:64:94:6c:a7:40:
        b0:82:34:dd:81:54:ca:9d:04:ef:60:a0:89:af:02:e5:
        3e:9f:b1:89:76:8c:db:81:0e:4b:d6:e6:df:12:28:5f:
        90:3c:89:b6:ba:ae:ac:48:f2:19:1b:60:19:49:8d:a3:
        1b:6b:98:17:fd:46:38:26:5f:2a:b3:db:75:d8:c4:23:
        2c:19:3c:b4:1f:ef:29:08:0b:87:ff:35:a7:08:4a:5f:
        55:f0:9b:cf:5e:42:25:3c:6a:df:64:c4:30:f3:1c:f9
    Fingerprint (SHA-256):
        0D:FA:9E:87:74:24:F0:11:53:5A:1A:96:74:50:E0:9F:CF:A5:9B:6F:C9:97:92:17:80:BD:F8:65:1F:4B:CB:3E
    Fingerprint (SHA1):
        6D:94:3C:B4:4B:23:5C:1F:E0:C0:76:2E:A1:19:ED:DE:97:E5:C4:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7353: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7354: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123430 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7355: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7356: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7357: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7358: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123431   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7359: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7360: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7361: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7362: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123432   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7363: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7364: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7365: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7366: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 823123433   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7367: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7368: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7369: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7370: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 823123434   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7371: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7372: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7373: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7374: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7375: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7376: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7377: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123430 (0x310fdde6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:14 2017
            Not After : Tue Aug 23 12:34:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:6d:ad:10:0e:9b:b4:63:77:72:54:06:d5:0f:b8:d8:
                    76:72:f6:6c:8b:e2:e0:ee:fe:e0:09:22:3a:80:48:4a:
                    76:b8:5f:bb:0d:ff:3e:a0:5c:c6:f7:eb:66:cd:d1:74:
                    44:fa:8e:54:97:b3:0b:01:a5:fe:73:53:61:db:89:19:
                    5b:be:40:3d:f4:38:bf:3c:80:9d:9d:81:f6:cc:d2:0a:
                    91:53:05:a2:47:92:88:c6:0e:7c:23:62:c7:25:59:12:
                    63:8f:d0:c6:a9:51:7b:87:ab:cc:61:95:67:0f:b5:f2:
                    53:0f:f8:e7:6a:4d:c0:9e:2f:77:bc:38:81:6b:46:cd:
                    27:11:e7:da:f5:26:49:0e:40:83:de:9d:49:f3:81:14:
                    96:4a:9d:93:36:ae:a4:b0:07:31:a1:3d:7e:9b:76:52:
                    04:d0:51:20:c2:89:a8:65:8b:34:4b:10:01:33:35:b1:
                    30:85:8c:82:9e:c4:ee:fb:9b:2c:42:84:e6:6d:38:71:
                    5b:79:15:e0:ff:fd:7d:30:f3:10:ff:fb:de:6f:82:41:
                    32:7e:45:34:af:2b:01:ef:e0:69:7d:be:64:f2:6d:c1:
                    5b:21:72:df:f4:c6:e5:4d:ad:3c:26:53:29:00:b2:b4:
                    3e:ed:65:f4:c3:f0:3a:86:5a:62:1b:22:7b:37:53:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:20:5b:86:c3:ce:3b:99:ed:db:15:1f:93:64:ae:96:
        66:5d:df:d8:ec:de:37:c4:e2:85:0d:e9:d0:3c:93:03:
        82:37:d7:6a:0e:f8:18:fa:a4:42:29:64:2d:d0:c4:25:
        bf:61:fe:01:1f:82:0c:da:bd:f3:ce:85:fa:64:aa:19:
        9b:85:c8:25:bc:e2:ae:cc:dc:66:a5:a6:ca:a6:5b:af:
        76:e2:d8:56:53:ed:88:de:b7:5a:61:5d:ee:2a:14:91:
        45:f8:1d:0b:18:28:84:9b:f8:29:37:c6:40:0f:d5:09:
        e4:f4:2c:cf:ec:91:04:10:55:2d:c3:a8:d1:e9:2d:48:
        09:77:1e:75:7a:b4:01:47:9b:99:d2:e7:53:fd:f1:ca:
        90:d8:fd:62:e4:c7:39:21:9c:8e:24:ce:33:8a:90:4f:
        53:aa:88:8c:d3:08:9c:a5:56:c1:00:45:2d:7a:bb:1e:
        f5:a8:f1:73:ad:b8:84:06:a7:34:32:75:31:0c:4c:e8:
        53:10:9d:12:79:4f:64:55:fc:44:5d:cb:e2:98:d8:ef:
        c1:88:69:dd:4c:44:0e:d8:09:4e:84:9b:50:4a:1e:51:
        53:55:43:3c:54:aa:e2:e0:b2:3e:f5:d1:2c:bf:54:5f:
        b9:1d:35:fe:fa:eb:f4:3c:4f:e7:9c:0a:a5:5b:a2:b1
    Fingerprint (SHA-256):
        90:F9:18:73:A9:22:57:70:AE:B4:4D:FF:94:7F:3E:88:A5:A3:C1:DB:EA:19:70:9D:BF:C2:F0:48:F0:02:21:F0
    Fingerprint (SHA1):
        6D:12:A1:44:E1:06:44:F5:C9:EF:C3:4E:C6:BC:C2:1C:98:B7:9F:87
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7378: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7379: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123431 (0x310fdde7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:14 2017
            Not After : Tue Aug 23 12:34:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:26:c2:ad:c8:39:3e:a7:e4:d3:a6:0a:d1:9c:42:38:
                    48:5e:e4:a3:1c:3d:d8:77:a1:d3:32:09:cc:12:0b:e8:
                    1f:57:a3:c1:bb:5d:46:90:6a:7b:b1:07:a2:44:1a:f5:
                    fe:4e:d4:de:ed:c0:c0:ef:f1:b7:f8:64:3d:17:8c:4a:
                    22:ab:d9:9f:6c:c2:eb:57:dc:3f:b4:94:42:ee:9a:e8:
                    4d:b8:de:d9:59:a3:9d:71:5c:d9:11:da:b3:e8:bb:08:
                    9b:89:3e:c6:c1:38:e4:5d:15:83:fb:7e:96:6f:4e:46:
                    ba:02:9d:69:9c:fe:cb:d4:b1:0a:c4:2a:c8:b0:05:46:
                    f5:74:21:f0:7c:4f:38:e4:13:61:8c:60:86:d4:e5:93:
                    f5:db:a7:82:79:95:54:cd:72:5f:f0:72:35:59:ec:27:
                    da:0d:99:00:9d:b6:e1:54:98:66:aa:95:32:a6:f0:1f:
                    ce:5d:dc:2b:c5:9e:5c:b9:1f:23:23:82:d7:87:74:c7:
                    e7:85:97:78:92:22:17:7c:61:9e:31:f3:0a:9d:c7:1f:
                    b0:36:d1:bc:f0:97:42:2f:58:6b:b5:99:31:9c:f2:a3:
                    50:e6:39:3a:66:ee:33:e2:74:a1:a4:cc:b5:20:a3:62:
                    c8:55:60:9a:7a:ee:51:5a:43:5e:3e:91:c1:c2:68:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:a8:1e:4c:7d:6c:58:aa:43:b7:2f:4f:8b:5a:c8:31:
        2c:8c:73:dd:0f:83:d9:83:37:dd:28:64:c4:fa:2d:d8:
        08:45:99:95:2d:b2:b9:55:47:3e:90:d5:76:49:f7:9b:
        ea:40:94:4c:79:eb:ac:50:bc:c6:05:a2:27:e9:6c:81:
        0a:e5:29:80:71:33:80:31:4b:69:af:b5:ea:3f:ac:d7:
        71:ff:c2:bf:fd:39:b2:34:1b:ad:63:61:53:9b:30:f0:
        34:59:37:e1:80:c8:83:fd:17:cf:29:fe:0c:ef:bb:83:
        b4:f3:6d:f7:d5:f4:60:b8:f4:8a:ba:a7:23:34:8a:15:
        b9:99:65:cc:a7:05:aa:22:c7:29:82:2a:6c:ef:15:fb:
        28:b1:33:58:22:42:51:28:fd:ee:39:a0:09:ed:2c:9c:
        7a:d1:d6:6d:60:89:d0:6d:aa:7b:40:1d:48:e1:fa:c8:
        96:65:40:46:70:0a:4c:bd:e4:09:7a:d5:91:d4:35:60:
        00:74:48:ea:12:f0:47:87:8e:c4:f0:7f:9f:84:2c:85:
        68:1c:05:69:73:88:43:9c:a7:0b:1a:53:eb:3c:cc:c3:
        f2:36:36:18:b0:1e:72:35:68:8a:6d:32:ba:db:6c:86:
        45:7e:6d:a3:e3:bc:49:b2:94:d0:47:08:2d:af:89:39
    Fingerprint (SHA-256):
        52:1A:01:9A:9B:1F:36:FB:E6:A1:D7:04:67:E2:9C:0C:1F:74:91:25:4D:E5:72:8E:3F:0C:19:92:6B:BA:A2:1E
    Fingerprint (SHA1):
        77:D3:A6:7E:6D:DF:6C:62:4B:C4:44:21:D7:34:29:81:E2:2C:79:C6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7380: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7381: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7382: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123432 (0x310fdde8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:15 2017
            Not After : Tue Aug 23 12:34:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:5f:bf:5f:54:1f:a4:c3:02:9f:d8:bb:e3:e6:73:00:
                    98:43:05:84:c2:a9:bf:6e:9a:92:a1:4f:af:bc:67:9e:
                    74:cd:b5:42:68:4b:38:63:81:a2:95:a9:af:2f:53:41:
                    ba:bf:b3:c9:b6:41:56:e4:30:4d:1c:5f:e0:18:db:51:
                    28:3b:bf:4c:15:2b:30:06:62:de:5c:75:91:1f:42:cb:
                    e1:ca:6a:78:37:f5:5e:26:f6:39:23:92:dc:ab:be:d9:
                    8f:ab:de:ae:24:66:06:f2:2c:b0:f5:cc:ce:7c:73:89:
                    e4:3f:75:8e:d4:19:09:be:ab:b0:98:8b:18:75:da:e8:
                    47:a8:0c:b7:02:a0:00:91:61:8d:01:c4:81:d5:fa:a9:
                    88:15:bf:ae:9d:4e:5a:80:d0:59:fc:f6:4b:85:6e:83:
                    53:5b:dc:57:e8:33:d2:89:50:ff:ad:65:9b:08:9c:5f:
                    f1:fc:cb:97:e3:bc:de:a2:f6:c5:4a:a1:82:ca:22:22:
                    7a:dd:04:85:a5:40:b4:d1:ab:84:bc:63:1d:6d:73:fb:
                    ac:2b:80:51:6c:68:9d:b1:d1:0b:dc:e9:c0:46:58:d1:
                    bc:05:a2:a6:85:44:84:98:cb:81:3e:c9:7a:54:88:78:
                    ee:0f:b5:b2:ee:a0:43:0b:5c:43:fc:bf:ed:4a:f9:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:c9:45:d3:9e:55:8f:02:bb:93:9a:b0:f5:fe:13:74:
        94:6a:be:32:53:1e:2d:fa:09:6b:a1:87:f9:54:f1:f1:
        f1:44:43:4e:93:fb:e9:83:8e:f2:ab:57:ef:61:e0:11:
        1c:e0:56:25:6b:8e:b8:98:e0:2b:ed:71:c2:9a:fe:61:
        c7:e4:f5:cc:bc:b4:ae:50:d9:10:18:9e:90:22:e6:2b:
        02:0f:6e:aa:36:3c:d8:66:93:74:e3:2a:3f:eb:7e:cd:
        82:86:d0:72:c3:81:86:d4:34:52:c8:1e:b3:e8:98:e3:
        0a:fc:c9:05:b6:6c:29:05:5d:b2:01:9c:de:a7:9e:73:
        d4:f4:8a:ae:01:a3:28:07:02:ee:e9:04:24:57:c8:ad:
        18:d5:14:95:d3:c6:31:30:88:fa:03:b3:5e:1b:93:ae:
        15:a1:b1:97:43:55:dc:cd:b0:a8:4e:86:1d:11:34:28:
        60:30:41:b5:9b:f0:b8:f3:b0:72:5b:7f:c6:22:3a:9c:
        db:74:79:52:ee:4a:82:4c:d4:c9:69:ce:a7:94:f2:8c:
        16:a7:6b:89:1a:47:f2:d8:f1:38:d6:bf:9e:fa:59:20:
        8c:3f:70:cb:b9:03:7f:75:80:19:eb:b7:6f:84:bd:cf:
        0a:2e:fe:46:88:73:72:0c:9c:d6:0d:d0:57:7a:34:ea
    Fingerprint (SHA-256):
        F6:25:C8:05:C9:A8:6F:52:6C:B9:79:C9:76:C9:74:62:71:80:F8:6E:C7:33:35:64:00:C3:1E:3E:2E:17:1A:69
    Fingerprint (SHA1):
        B5:02:F6:54:E2:AA:D2:8C:87:8E:73:34:89:4E:2E:7F:DA:B0:C1:A7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7383: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7384: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123435 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7385: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7386: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7387: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7388: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123436   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7389: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7390: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7391: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7392: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123437   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA1Root-823123344.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7393: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7394: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7395: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7396: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123438   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7397: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7398: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7399: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123435 (0x310fddeb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:15 2017
            Not After : Tue Aug 23 12:34:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:4f:87:81:bb:e7:c6:b2:5b:6a:a5:ed:0e:c1:41:63:
                    6d:ac:68:cb:f0:c5:c1:ba:7e:c7:d7:50:b7:90:7d:ef:
                    b1:b6:9b:94:66:d4:cb:1e:9b:2c:6e:42:33:4b:bc:24:
                    75:7b:8e:14:31:43:9e:7d:fb:bf:49:be:1d:55:8e:65:
                    57:f8:43:86:35:f6:d2:cb:4d:c8:aa:c1:44:59:31:8d:
                    70:e2:29:2a:36:83:41:26:c4:84:be:fc:5b:62:59:08:
                    1c:9f:f9:4c:d2:ba:01:df:e5:6a:cf:ff:98:63:75:28:
                    d1:09:84:22:ff:a3:c0:e1:d3:b0:0f:58:30:fb:41:79:
                    b5:d4:af:46:f4:35:bb:8a:c9:2d:d5:ec:ca:3f:47:df:
                    71:61:b1:98:76:8d:ee:24:ea:a3:a9:41:96:f8:c1:a1:
                    0a:82:ac:ae:4e:5a:09:93:d6:2c:0f:a0:eb:da:69:d7:
                    d7:d1:28:82:dd:1f:11:6d:08:8f:80:e1:12:ba:44:43:
                    43:9d:b3:0b:4a:89:09:d5:07:a3:0f:f8:7c:8b:f7:fc:
                    25:8e:74:cb:0b:79:87:fb:de:b7:fc:39:a2:30:3a:95:
                    e9:22:56:e5:34:4c:65:45:ba:3b:ce:f7:25:85:13:53:
                    de:d5:f4:b8:35:48:c6:1d:cb:d0:5e:58:cf:d9:49:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:e3:c0:1e:54:a7:a9:fe:75:99:d6:c2:22:64:06:bd:
        4a:ee:9d:47:9a:81:77:b0:66:dd:b8:06:95:4e:c8:1f:
        cc:aa:eb:df:de:f0:45:a8:cc:f3:d7:7a:2a:ed:e8:0b:
        1a:74:49:0b:0a:a1:32:4f:2e:7f:ab:12:f8:04:f4:cc:
        d8:29:5e:43:45:46:f9:1f:7a:2b:2d:ce:69:d6:77:10:
        38:34:07:42:79:c1:e4:bb:09:22:d4:c3:38:be:5a:9d:
        c3:55:5c:20:f5:f6:aa:34:5e:b1:d4:34:1f:2d:0e:06:
        bf:2f:20:6e:87:54:27:d1:2a:18:0d:22:a4:bf:3e:a9:
        a6:b0:cc:79:30:a6:12:e3:78:e2:c2:6d:b5:61:7d:69:
        1a:cf:62:e8:db:0a:a8:cb:61:22:04:17:bf:86:13:3d:
        bf:5a:d1:de:2b:df:9c:a6:b7:28:d9:16:0b:7e:0b:1b:
        ad:8c:97:1e:78:f5:84:cb:a6:c5:87:ed:9a:4d:e9:44:
        ac:f5:43:b2:5f:1e:28:ed:43:4d:16:9d:29:ec:29:f1:
        ff:5e:d0:cf:9a:15:4a:ec:19:38:d1:29:7f:e9:cc:b5:
        0e:49:26:30:d1:c6:44:c4:ed:a1:3e:44:ac:64:a6:4a:
        7e:4f:21:2d:72:15:ab:c8:0c:bb:69:12:49:58:94:70
    Fingerprint (SHA-256):
        3B:DD:BC:95:44:00:0A:B5:2A:70:1C:09:F4:30:B6:C1:2C:7A:95:CF:B7:A7:CB:F6:C1:8C:95:95:13:E7:BB:24
    Fingerprint (SHA1):
        A6:64:9B:9D:78:E7:AE:CC:59:4E:B9:BB:A0:95:D4:C3:80:10:68:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7400: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7401: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123439 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7402: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7403: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7404: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123440 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7405: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7406: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7407: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7408: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123441 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7409: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7410: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123442 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7411: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7412: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7413: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7414: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7415: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123443   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123345.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7416: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7417: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7418: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7419: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123444   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7420: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7421: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7422: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7423: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123440 (0x310fddf0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:16 2017
            Not After : Tue Aug 23 12:34:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:b5:2e:3d:17:49:3f:ec:5e:ed:33:a8:8c:cb:ba:93:
                    e6:50:19:54:db:8b:62:a4:91:96:8b:9b:6b:74:0f:ec:
                    8a:51:96:6c:56:42:0d:79:91:95:e4:45:c1:37:09:b9:
                    47:10:4a:43:fc:55:71:bf:f2:03:2b:70:05:bc:96:54:
                    00:f9:e9:7b:5e:0c:77:e6:a0:8a:0f:1d:c8:90:52:b1:
                    3e:f2:c1:25:79:04:cb:c3:fd:e0:6d:65:e0:65:15:08:
                    f9:ab:4d:b6:1b:4a:90:5d:f1:98:20:7e:e2:6f:11:47:
                    2d:6a:02:fa:79:de:4c:74:f9:0d:d5:a0:45:fe:42:e8:
                    1a:02:1d:ba:89:fb:85:9a:fc:f3:f1:84:1e:cd:e6:28:
                    ba:26:16:94:ab:7e:54:40:02:46:10:ad:e9:52:48:20:
                    14:e0:d4:c4:9c:5b:9f:0c:a1:7a:61:7d:e9:01:1e:ba:
                    9c:f5:63:06:c1:ba:d8:28:b0:ad:28:18:db:e6:9f:6f:
                    56:07:2a:09:49:c7:63:cd:59:e8:6b:5c:17:d6:62:1e:
                    66:d9:6f:d7:63:42:45:6b:24:cc:4a:65:2c:ab:6e:e5:
                    dc:46:7f:7f:b2:f5:10:90:6e:5e:66:72:4d:00:9f:fb:
                    1b:43:bd:d5:80:b9:e2:17:0e:ac:4a:54:e6:17:bb:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:6f:1f:d8:e7:9d:b5:15:2d:c5:f2:18:b2:55:e5:44:
        4c:e9:c3:f5:b3:2f:a2:9f:65:96:4b:f7:c3:1a:2c:65:
        42:98:67:ad:5d:b0:be:c4:18:a1:64:13:73:bb:e2:ef:
        5d:26:55:75:5f:80:a8:f5:27:3f:4b:88:b4:7e:8e:b6:
        7c:d4:6e:76:85:3b:2a:f0:9c:1e:03:31:f6:9f:8b:d6:
        95:e1:ab:8c:02:c3:12:8b:2f:b8:cf:b9:ca:a6:08:ba:
        74:31:1a:b4:47:40:91:cb:ab:c6:9c:5b:88:c0:29:9f:
        c9:18:ff:36:22:ea:c6:4c:74:71:33:f6:7b:bf:9d:c4:
        96:22:b8:59:7d:67:6c:9c:07:74:00:4b:e2:84:58:5a:
        85:22:b6:99:aa:b2:09:e8:ea:83:3c:0e:e8:5c:95:a5:
        48:7a:eb:b7:d4:9d:84:a1:1d:f5:0d:ad:f8:8a:dd:f5:
        63:e7:3e:e1:07:51:97:1b:bc:0e:0b:90:9b:dd:42:cc:
        d5:8f:f8:ec:13:72:2d:23:aa:ea:d6:3e:e0:f0:42:00:
        75:01:e4:39:72:7c:e2:28:4b:3f:82:a4:d1:dc:50:81:
        3f:9d:0e:69:fb:d3:c4:78:46:4d:67:8f:6b:b3:e6:e3:
        95:b6:52:43:30:a7:65:d8:b2:88:82:6c:71:66:b5:cb
    Fingerprint (SHA-256):
        C2:91:CD:4D:37:8B:B8:6C:4D:6D:90:84:5C:90:0C:6F:4E:43:83:22:C6:02:93:5F:C6:82:09:71:59:79:00:F9
    Fingerprint (SHA1):
        2E:03:F6:94:5A:AC:E0:90:56:F5:27:6E:34:57:E7:95:F4:8D:00:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7424: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123440 (0x310fddf0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:16 2017
            Not After : Tue Aug 23 12:34:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:b5:2e:3d:17:49:3f:ec:5e:ed:33:a8:8c:cb:ba:93:
                    e6:50:19:54:db:8b:62:a4:91:96:8b:9b:6b:74:0f:ec:
                    8a:51:96:6c:56:42:0d:79:91:95:e4:45:c1:37:09:b9:
                    47:10:4a:43:fc:55:71:bf:f2:03:2b:70:05:bc:96:54:
                    00:f9:e9:7b:5e:0c:77:e6:a0:8a:0f:1d:c8:90:52:b1:
                    3e:f2:c1:25:79:04:cb:c3:fd:e0:6d:65:e0:65:15:08:
                    f9:ab:4d:b6:1b:4a:90:5d:f1:98:20:7e:e2:6f:11:47:
                    2d:6a:02:fa:79:de:4c:74:f9:0d:d5:a0:45:fe:42:e8:
                    1a:02:1d:ba:89:fb:85:9a:fc:f3:f1:84:1e:cd:e6:28:
                    ba:26:16:94:ab:7e:54:40:02:46:10:ad:e9:52:48:20:
                    14:e0:d4:c4:9c:5b:9f:0c:a1:7a:61:7d:e9:01:1e:ba:
                    9c:f5:63:06:c1:ba:d8:28:b0:ad:28:18:db:e6:9f:6f:
                    56:07:2a:09:49:c7:63:cd:59:e8:6b:5c:17:d6:62:1e:
                    66:d9:6f:d7:63:42:45:6b:24:cc:4a:65:2c:ab:6e:e5:
                    dc:46:7f:7f:b2:f5:10:90:6e:5e:66:72:4d:00:9f:fb:
                    1b:43:bd:d5:80:b9:e2:17:0e:ac:4a:54:e6:17:bb:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:6f:1f:d8:e7:9d:b5:15:2d:c5:f2:18:b2:55:e5:44:
        4c:e9:c3:f5:b3:2f:a2:9f:65:96:4b:f7:c3:1a:2c:65:
        42:98:67:ad:5d:b0:be:c4:18:a1:64:13:73:bb:e2:ef:
        5d:26:55:75:5f:80:a8:f5:27:3f:4b:88:b4:7e:8e:b6:
        7c:d4:6e:76:85:3b:2a:f0:9c:1e:03:31:f6:9f:8b:d6:
        95:e1:ab:8c:02:c3:12:8b:2f:b8:cf:b9:ca:a6:08:ba:
        74:31:1a:b4:47:40:91:cb:ab:c6:9c:5b:88:c0:29:9f:
        c9:18:ff:36:22:ea:c6:4c:74:71:33:f6:7b:bf:9d:c4:
        96:22:b8:59:7d:67:6c:9c:07:74:00:4b:e2:84:58:5a:
        85:22:b6:99:aa:b2:09:e8:ea:83:3c:0e:e8:5c:95:a5:
        48:7a:eb:b7:d4:9d:84:a1:1d:f5:0d:ad:f8:8a:dd:f5:
        63:e7:3e:e1:07:51:97:1b:bc:0e:0b:90:9b:dd:42:cc:
        d5:8f:f8:ec:13:72:2d:23:aa:ea:d6:3e:e0:f0:42:00:
        75:01:e4:39:72:7c:e2:28:4b:3f:82:a4:d1:dc:50:81:
        3f:9d:0e:69:fb:d3:c4:78:46:4d:67:8f:6b:b3:e6:e3:
        95:b6:52:43:30:a7:65:d8:b2:88:82:6c:71:66:b5:cb
    Fingerprint (SHA-256):
        C2:91:CD:4D:37:8B:B8:6C:4D:6D:90:84:5C:90:0C:6F:4E:43:83:22:C6:02:93:5F:C6:82:09:71:59:79:00:F9
    Fingerprint (SHA1):
        2E:03:F6:94:5A:AC:E0:90:56:F5:27:6E:34:57:E7:95:F4:8D:00:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7425: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7426: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123445 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7427: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7428: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7429: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123446 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7430: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7431: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7432: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7433: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123447 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7434: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7435: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123448 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7436: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7437: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7438: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7439: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7440: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123449   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123346.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7441: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7442: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7443: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7444: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123450   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7445: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7446: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7447: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7448: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123451   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-BridgeNavy-823123347.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7449: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7450: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7451: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7452: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123452   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7453: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7454: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7455: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7456: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123446 (0x310fddf6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:18 2017
            Not After : Tue Aug 23 12:34:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:58:72:70:60:b5:8d:4b:b4:90:10:77:8f:bb:d8:a7:
                    a7:cb:e3:0c:2c:ef:7b:4c:a8:d5:1b:e9:97:f5:cc:c3:
                    52:5c:5f:78:11:d6:14:ea:d3:ce:90:18:c0:cd:60:d7:
                    22:ea:a4:47:be:f9:82:26:5e:0b:05:ad:40:06:a2:e5:
                    9e:f7:e0:df:57:a3:74:a3:f2:f3:99:70:e9:6d:96:37:
                    27:b5:f3:99:ca:7b:d0:0d:6a:a1:48:cb:9c:ef:0f:10:
                    20:88:3e:a8:ae:36:6f:d3:8e:d1:30:11:77:4a:d6:ad:
                    2a:f1:f4:87:2f:2a:fc:07:77:23:4c:07:47:77:61:5c:
                    c7:ca:12:bc:bf:ed:b7:64:e7:97:87:4c:16:3f:33:fe:
                    8f:53:cd:76:5b:93:46:db:66:f3:15:20:2b:c0:20:35:
                    3d:d0:9b:f1:e9:25:ab:5a:92:82:05:b8:22:91:d8:b4:
                    20:b3:b1:27:30:58:94:68:c7:5a:78:c2:a3:b2:61:74:
                    86:c5:71:f0:0d:88:d5:9e:ed:5e:2a:af:d5:9c:e2:82:
                    70:8d:99:d5:28:a8:57:d1:8b:9d:b9:78:24:6d:5e:17:
                    00:a1:cc:3a:70:1c:60:4e:7e:51:b5:10:0d:b6:fb:cc:
                    15:97:ee:82:bb:1f:24:77:8d:1d:78:4e:a6:6a:3c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:26:59:9f:82:bf:82:37:14:7a:bb:34:b1:e8:54:38:
        8e:2e:27:1e:7a:d6:df:c5:8f:13:4f:c5:78:1a:87:95:
        f3:7e:19:f3:6d:9a:92:7b:10:10:39:af:c8:84:02:3c:
        37:3b:f9:93:77:b8:42:92:91:7e:a8:53:5c:1d:f7:00:
        51:c6:2e:2c:ef:0b:28:44:76:c1:c2:6e:37:7f:51:fd:
        83:9a:ac:8b:e0:d5:14:66:fa:99:85:45:89:c8:09:50:
        b7:7e:2d:fd:67:98:0b:20:d0:07:38:1f:ce:55:88:f7:
        ec:19:17:90:52:6d:df:52:9b:ea:1e:b1:a5:6c:4a:bf:
        75:c5:a3:27:53:3a:5e:5e:b6:ba:bd:5e:83:7c:08:9d:
        c1:43:97:eb:7b:9b:88:b8:ec:05:eb:55:06:7b:da:b2:
        6f:75:21:42:5d:e0:bc:a2:00:cc:3b:94:03:e7:7d:0d:
        c2:30:72:49:18:63:9f:07:16:7d:79:03:eb:ee:77:a3:
        ec:d0:18:e2:12:f6:40:1f:a9:43:2e:cc:d3:5e:54:a8:
        3a:48:16:a8:c8:43:ea:ba:19:e3:d6:49:ed:a7:a6:f3:
        1f:c7:73:ac:ad:b0:ae:72:74:1c:a0:4b:10:32:2b:b9:
        40:0b:9e:d9:a0:7a:70:da:fa:ce:8a:85:47:b8:5d:53
    Fingerprint (SHA-256):
        4B:D8:C9:B7:25:2B:53:28:B2:E5:4A:DE:5D:BB:99:1D:4F:27:29:21:63:27:7D:E9:60:94:F8:F1:94:25:DF:A6
    Fingerprint (SHA1):
        11:D7:1C:41:19:CC:83:68:E8:CC:36:E6:17:29:07:78:CB:9F:D5:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7457: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123446 (0x310fddf6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:18 2017
            Not After : Tue Aug 23 12:34:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:58:72:70:60:b5:8d:4b:b4:90:10:77:8f:bb:d8:a7:
                    a7:cb:e3:0c:2c:ef:7b:4c:a8:d5:1b:e9:97:f5:cc:c3:
                    52:5c:5f:78:11:d6:14:ea:d3:ce:90:18:c0:cd:60:d7:
                    22:ea:a4:47:be:f9:82:26:5e:0b:05:ad:40:06:a2:e5:
                    9e:f7:e0:df:57:a3:74:a3:f2:f3:99:70:e9:6d:96:37:
                    27:b5:f3:99:ca:7b:d0:0d:6a:a1:48:cb:9c:ef:0f:10:
                    20:88:3e:a8:ae:36:6f:d3:8e:d1:30:11:77:4a:d6:ad:
                    2a:f1:f4:87:2f:2a:fc:07:77:23:4c:07:47:77:61:5c:
                    c7:ca:12:bc:bf:ed:b7:64:e7:97:87:4c:16:3f:33:fe:
                    8f:53:cd:76:5b:93:46:db:66:f3:15:20:2b:c0:20:35:
                    3d:d0:9b:f1:e9:25:ab:5a:92:82:05:b8:22:91:d8:b4:
                    20:b3:b1:27:30:58:94:68:c7:5a:78:c2:a3:b2:61:74:
                    86:c5:71:f0:0d:88:d5:9e:ed:5e:2a:af:d5:9c:e2:82:
                    70:8d:99:d5:28:a8:57:d1:8b:9d:b9:78:24:6d:5e:17:
                    00:a1:cc:3a:70:1c:60:4e:7e:51:b5:10:0d:b6:fb:cc:
                    15:97:ee:82:bb:1f:24:77:8d:1d:78:4e:a6:6a:3c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:26:59:9f:82:bf:82:37:14:7a:bb:34:b1:e8:54:38:
        8e:2e:27:1e:7a:d6:df:c5:8f:13:4f:c5:78:1a:87:95:
        f3:7e:19:f3:6d:9a:92:7b:10:10:39:af:c8:84:02:3c:
        37:3b:f9:93:77:b8:42:92:91:7e:a8:53:5c:1d:f7:00:
        51:c6:2e:2c:ef:0b:28:44:76:c1:c2:6e:37:7f:51:fd:
        83:9a:ac:8b:e0:d5:14:66:fa:99:85:45:89:c8:09:50:
        b7:7e:2d:fd:67:98:0b:20:d0:07:38:1f:ce:55:88:f7:
        ec:19:17:90:52:6d:df:52:9b:ea:1e:b1:a5:6c:4a:bf:
        75:c5:a3:27:53:3a:5e:5e:b6:ba:bd:5e:83:7c:08:9d:
        c1:43:97:eb:7b:9b:88:b8:ec:05:eb:55:06:7b:da:b2:
        6f:75:21:42:5d:e0:bc:a2:00:cc:3b:94:03:e7:7d:0d:
        c2:30:72:49:18:63:9f:07:16:7d:79:03:eb:ee:77:a3:
        ec:d0:18:e2:12:f6:40:1f:a9:43:2e:cc:d3:5e:54:a8:
        3a:48:16:a8:c8:43:ea:ba:19:e3:d6:49:ed:a7:a6:f3:
        1f:c7:73:ac:ad:b0:ae:72:74:1c:a0:4b:10:32:2b:b9:
        40:0b:9e:d9:a0:7a:70:da:fa:ce:8a:85:47:b8:5d:53
    Fingerprint (SHA-256):
        4B:D8:C9:B7:25:2B:53:28:B2:E5:4A:DE:5D:BB:99:1D:4F:27:29:21:63:27:7D:E9:60:94:F8:F1:94:25:DF:A6
    Fingerprint (SHA1):
        11:D7:1C:41:19:CC:83:68:E8:CC:36:E6:17:29:07:78:CB:9F:D5:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7458: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7459: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123445 (0x310fddf5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:17 2017
            Not After : Tue Aug 23 12:34:17 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:42:4a:f0:65:b3:8e:f6:68:fc:62:75:77:69:96:44:
                    83:f0:5e:ea:94:5a:42:07:ab:8d:88:5b:0c:29:b0:6b:
                    8f:b0:8b:3a:db:62:89:e4:d4:d6:96:be:a9:fd:32:f4:
                    65:31:b1:4d:8a:7e:63:8e:40:5e:dc:2c:a4:f2:6e:9d:
                    69:a5:02:8a:c6:b7:a9:69:a5:99:2a:a8:72:40:4a:86:
                    81:95:ed:a8:6f:a1:09:0c:bd:37:cc:9b:e6:4c:4b:0e:
                    b9:cc:a3:9d:61:bc:4f:c9:74:3d:10:14:93:bb:76:69:
                    bb:0c:73:d6:30:8c:5b:98:bb:46:86:76:7d:3f:c1:5e:
                    b7:47:ab:04:3d:67:d5:69:fb:86:ab:a7:ac:2b:12:d9:
                    b6:6c:43:b5:16:b5:d2:70:e6:f3:11:0f:cd:3d:1b:f2:
                    5f:f6:c0:92:60:c9:72:7d:c1:01:3d:05:d0:dc:80:d2:
                    bb:4e:92:2c:42:a0:4c:7b:ee:bd:8a:fe:73:16:7d:bc:
                    af:a4:f9:71:cb:e8:73:9a:18:e3:f7:c7:86:f1:89:d2:
                    e1:df:eb:d4:38:8c:35:a4:56:35:f3:26:33:d3:09:54:
                    43:c1:fb:52:5b:c2:bc:14:ca:cd:d4:9f:fa:ec:e7:ee:
                    de:e8:aa:71:a6:43:e2:f3:f9:bf:f2:c8:b9:5f:c8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:2a:d6:01:3e:d7:ca:58:e7:1e:f4:e5:31:11:b8:e0:
        f4:b6:6c:df:0d:7e:d1:88:b4:3a:87:f7:3b:5c:46:36:
        0b:2a:af:e9:d8:35:4e:92:d4:84:48:c6:9e:8c:93:55:
        3b:93:bf:fd:e3:38:38:12:61:35:b3:b1:5b:47:1d:c9:
        b6:73:95:8f:35:b7:9d:c2:46:43:8c:fd:da:d9:d0:23:
        8f:4f:71:29:66:cf:a9:ae:ca:fd:ca:b7:e0:3a:c5:59:
        00:d4:7c:b1:7d:8b:05:27:2b:ca:d4:72:6a:b7:ba:25:
        21:dc:fc:6a:1d:eb:37:87:09:39:0a:36:c0:cf:f2:15:
        8f:b1:18:cf:19:d4:46:44:77:f0:7f:2c:5f:c3:42:f2:
        e5:b2:b4:8d:b8:e8:2a:5e:26:39:3a:34:2c:d6:cb:33:
        90:9a:68:7a:da:2b:d7:c4:b5:d4:10:1f:5e:9f:5a:01:
        62:18:56:48:1b:1f:a6:53:b3:48:c9:35:92:e7:98:69:
        0b:9e:0d:80:e4:79:c3:55:a0:0c:1a:a8:66:21:3f:68:
        ec:f5:9e:8e:b7:40:85:07:87:5a:fe:b5:37:e0:ba:3c:
        61:00:7c:37:7a:e3:97:ba:ff:0d:63:59:96:f8:2d:23:
        23:16:c1:02:6b:28:20:c2:41:93:9a:79:63:40:b5:2c
    Fingerprint (SHA-256):
        24:FE:7B:F2:77:96:28:B0:1E:76:7A:74:5E:1F:EA:1F:69:46:71:CE:DD:51:A7:08:48:86:D8:B7:61:CF:77:CB
    Fingerprint (SHA1):
        40:EE:8F:0F:AB:B8:FA:57:A0:12:AD:31:57:18:73:84:4A:DB:28:78
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7460: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123446 (0x310fddf6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:18 2017
            Not After : Tue Aug 23 12:34:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:58:72:70:60:b5:8d:4b:b4:90:10:77:8f:bb:d8:a7:
                    a7:cb:e3:0c:2c:ef:7b:4c:a8:d5:1b:e9:97:f5:cc:c3:
                    52:5c:5f:78:11:d6:14:ea:d3:ce:90:18:c0:cd:60:d7:
                    22:ea:a4:47:be:f9:82:26:5e:0b:05:ad:40:06:a2:e5:
                    9e:f7:e0:df:57:a3:74:a3:f2:f3:99:70:e9:6d:96:37:
                    27:b5:f3:99:ca:7b:d0:0d:6a:a1:48:cb:9c:ef:0f:10:
                    20:88:3e:a8:ae:36:6f:d3:8e:d1:30:11:77:4a:d6:ad:
                    2a:f1:f4:87:2f:2a:fc:07:77:23:4c:07:47:77:61:5c:
                    c7:ca:12:bc:bf:ed:b7:64:e7:97:87:4c:16:3f:33:fe:
                    8f:53:cd:76:5b:93:46:db:66:f3:15:20:2b:c0:20:35:
                    3d:d0:9b:f1:e9:25:ab:5a:92:82:05:b8:22:91:d8:b4:
                    20:b3:b1:27:30:58:94:68:c7:5a:78:c2:a3:b2:61:74:
                    86:c5:71:f0:0d:88:d5:9e:ed:5e:2a:af:d5:9c:e2:82:
                    70:8d:99:d5:28:a8:57:d1:8b:9d:b9:78:24:6d:5e:17:
                    00:a1:cc:3a:70:1c:60:4e:7e:51:b5:10:0d:b6:fb:cc:
                    15:97:ee:82:bb:1f:24:77:8d:1d:78:4e:a6:6a:3c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:26:59:9f:82:bf:82:37:14:7a:bb:34:b1:e8:54:38:
        8e:2e:27:1e:7a:d6:df:c5:8f:13:4f:c5:78:1a:87:95:
        f3:7e:19:f3:6d:9a:92:7b:10:10:39:af:c8:84:02:3c:
        37:3b:f9:93:77:b8:42:92:91:7e:a8:53:5c:1d:f7:00:
        51:c6:2e:2c:ef:0b:28:44:76:c1:c2:6e:37:7f:51:fd:
        83:9a:ac:8b:e0:d5:14:66:fa:99:85:45:89:c8:09:50:
        b7:7e:2d:fd:67:98:0b:20:d0:07:38:1f:ce:55:88:f7:
        ec:19:17:90:52:6d:df:52:9b:ea:1e:b1:a5:6c:4a:bf:
        75:c5:a3:27:53:3a:5e:5e:b6:ba:bd:5e:83:7c:08:9d:
        c1:43:97:eb:7b:9b:88:b8:ec:05:eb:55:06:7b:da:b2:
        6f:75:21:42:5d:e0:bc:a2:00:cc:3b:94:03:e7:7d:0d:
        c2:30:72:49:18:63:9f:07:16:7d:79:03:eb:ee:77:a3:
        ec:d0:18:e2:12:f6:40:1f:a9:43:2e:cc:d3:5e:54:a8:
        3a:48:16:a8:c8:43:ea:ba:19:e3:d6:49:ed:a7:a6:f3:
        1f:c7:73:ac:ad:b0:ae:72:74:1c:a0:4b:10:32:2b:b9:
        40:0b:9e:d9:a0:7a:70:da:fa:ce:8a:85:47:b8:5d:53
    Fingerprint (SHA-256):
        4B:D8:C9:B7:25:2B:53:28:B2:E5:4A:DE:5D:BB:99:1D:4F:27:29:21:63:27:7D:E9:60:94:F8:F1:94:25:DF:A6
    Fingerprint (SHA1):
        11:D7:1C:41:19:CC:83:68:E8:CC:36:E6:17:29:07:78:CB:9F:D5:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7461: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123446 (0x310fddf6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:18 2017
            Not After : Tue Aug 23 12:34:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:58:72:70:60:b5:8d:4b:b4:90:10:77:8f:bb:d8:a7:
                    a7:cb:e3:0c:2c:ef:7b:4c:a8:d5:1b:e9:97:f5:cc:c3:
                    52:5c:5f:78:11:d6:14:ea:d3:ce:90:18:c0:cd:60:d7:
                    22:ea:a4:47:be:f9:82:26:5e:0b:05:ad:40:06:a2:e5:
                    9e:f7:e0:df:57:a3:74:a3:f2:f3:99:70:e9:6d:96:37:
                    27:b5:f3:99:ca:7b:d0:0d:6a:a1:48:cb:9c:ef:0f:10:
                    20:88:3e:a8:ae:36:6f:d3:8e:d1:30:11:77:4a:d6:ad:
                    2a:f1:f4:87:2f:2a:fc:07:77:23:4c:07:47:77:61:5c:
                    c7:ca:12:bc:bf:ed:b7:64:e7:97:87:4c:16:3f:33:fe:
                    8f:53:cd:76:5b:93:46:db:66:f3:15:20:2b:c0:20:35:
                    3d:d0:9b:f1:e9:25:ab:5a:92:82:05:b8:22:91:d8:b4:
                    20:b3:b1:27:30:58:94:68:c7:5a:78:c2:a3:b2:61:74:
                    86:c5:71:f0:0d:88:d5:9e:ed:5e:2a:af:d5:9c:e2:82:
                    70:8d:99:d5:28:a8:57:d1:8b:9d:b9:78:24:6d:5e:17:
                    00:a1:cc:3a:70:1c:60:4e:7e:51:b5:10:0d:b6:fb:cc:
                    15:97:ee:82:bb:1f:24:77:8d:1d:78:4e:a6:6a:3c:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:26:59:9f:82:bf:82:37:14:7a:bb:34:b1:e8:54:38:
        8e:2e:27:1e:7a:d6:df:c5:8f:13:4f:c5:78:1a:87:95:
        f3:7e:19:f3:6d:9a:92:7b:10:10:39:af:c8:84:02:3c:
        37:3b:f9:93:77:b8:42:92:91:7e:a8:53:5c:1d:f7:00:
        51:c6:2e:2c:ef:0b:28:44:76:c1:c2:6e:37:7f:51:fd:
        83:9a:ac:8b:e0:d5:14:66:fa:99:85:45:89:c8:09:50:
        b7:7e:2d:fd:67:98:0b:20:d0:07:38:1f:ce:55:88:f7:
        ec:19:17:90:52:6d:df:52:9b:ea:1e:b1:a5:6c:4a:bf:
        75:c5:a3:27:53:3a:5e:5e:b6:ba:bd:5e:83:7c:08:9d:
        c1:43:97:eb:7b:9b:88:b8:ec:05:eb:55:06:7b:da:b2:
        6f:75:21:42:5d:e0:bc:a2:00:cc:3b:94:03:e7:7d:0d:
        c2:30:72:49:18:63:9f:07:16:7d:79:03:eb:ee:77:a3:
        ec:d0:18:e2:12:f6:40:1f:a9:43:2e:cc:d3:5e:54:a8:
        3a:48:16:a8:c8:43:ea:ba:19:e3:d6:49:ed:a7:a6:f3:
        1f:c7:73:ac:ad:b0:ae:72:74:1c:a0:4b:10:32:2b:b9:
        40:0b:9e:d9:a0:7a:70:da:fa:ce:8a:85:47:b8:5d:53
    Fingerprint (SHA-256):
        4B:D8:C9:B7:25:2B:53:28:B2:E5:4A:DE:5D:BB:99:1D:4F:27:29:21:63:27:7D:E9:60:94:F8:F1:94:25:DF:A6
    Fingerprint (SHA1):
        11:D7:1C:41:19:CC:83:68:E8:CC:36:E6:17:29:07:78:CB:9F:D5:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7462: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7463: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123453 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7464: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7465: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7466: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123454 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7467: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7468: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7469: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7470: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 823123455   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7471: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7472: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7473: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7474: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 823123456   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7475: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7476: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7477: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7478: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 823123457 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7479: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7480: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 823123458 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7481: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7482: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7483: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7484: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7485: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123459   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7486: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7487: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7488: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7489: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123460   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7490: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7491: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7492: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7493: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123461   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7494: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7495: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7496: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7497: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123462   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7498: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7499: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7500: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123453 (0x310fddfd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:19 2017
            Not After : Tue Aug 23 12:34:19 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:0e:3a:25:47:20:a7:09:64:77:21:97:e7:f9:44:db:
                    74:bb:9d:21:f8:58:9f:e2:6d:4d:f4:bc:a7:4a:db:e3:
                    91:1d:74:d0:d7:10:79:5d:e4:f1:b7:4c:d6:11:b9:1d:
                    48:96:b8:5b:8d:87:33:cc:b3:2b:cc:9e:bd:9c:43:1a:
                    fd:4b:6c:76:fe:92:6a:ac:c6:1f:63:23:84:b1:d2:22:
                    0d:48:76:81:24:f5:9a:31:5b:ea:af:f3:08:57:eb:79:
                    86:50:c1:b0:17:1c:61:92:83:19:df:e2:a3:fb:31:db:
                    ca:e0:07:35:98:52:42:14:67:9f:d8:56:d2:98:1b:88:
                    a1:b2:56:f6:02:c1:ad:62:2e:3a:6f:b5:91:bf:fd:77:
                    ba:3c:dc:84:a4:71:11:52:10:a6:66:e5:d9:3b:3e:42:
                    05:b5:41:a0:63:4a:4f:90:ae:33:08:5a:6d:9e:61:e4:
                    7c:9d:bb:f5:ba:b4:74:80:ed:d1:4a:fa:2b:ae:0f:aa:
                    0a:6b:69:4c:e8:7a:a7:7b:e9:af:bd:6f:f0:1b:f2:93:
                    81:3f:a9:a6:e8:ee:7e:aa:ac:6a:63:3d:b3:d1:0a:c9:
                    6b:c4:ba:aa:3c:14:c6:80:cc:bf:21:72:ce:1c:bf:41:
                    1f:11:51:42:7a:55:7b:1a:c6:b5:72:b9:3a:97:ff:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:7f:32:d9:b7:4e:41:4f:34:88:6c:de:22:d9:fd:66:
        39:8f:b7:f4:7e:bd:6b:13:90:4f:cf:0b:01:2b:3e:74:
        fe:9f:df:54:be:9f:cc:bc:fa:d5:14:9a:b2:7d:d3:fb:
        be:ab:34:53:86:8e:67:5e:b2:c2:52:1f:6c:f2:b6:84:
        81:6b:4d:59:aa:ef:10:1a:37:d1:a2:2f:80:3a:bd:e0:
        75:f6:5b:1f:8c:ec:83:18:35:07:cc:b4:a9:54:93:26:
        cf:95:87:cf:27:ff:bb:73:aa:9c:51:6d:6b:42:a0:7f:
        20:07:3e:a2:a3:b4:aa:13:94:11:d3:ef:74:52:80:85:
        91:aa:66:a4:06:74:c8:32:65:98:bf:fb:4a:29:89:d4:
        01:7c:d8:e3:eb:eb:c5:fe:97:12:39:e4:4f:0d:c5:3a:
        30:58:a0:20:72:11:6f:bd:93:f0:02:99:f4:01:91:6f:
        5f:51:5c:91:1f:4b:aa:91:fb:fd:71:82:b8:b0:ca:97:
        ee:ec:b0:a5:b0:16:b1:69:f3:11:16:6c:61:58:52:75:
        ee:05:d8:3b:dd:ca:85:10:6a:51:fd:e0:4a:5c:24:bf:
        4d:c6:41:9c:56:fa:b7:c9:51:90:3a:18:bd:b6:5f:65:
        79:78:48:65:ff:77:65:1a:6f:ad:a9:d8:ad:4b:07:d9
    Fingerprint (SHA-256):
        23:35:E4:4B:B2:34:18:6A:18:B2:4C:B0:1F:D2:4F:24:21:5E:F7:1A:FA:35:3C:4E:73:A6:B9:D5:A2:D8:88:DA
    Fingerprint (SHA1):
        EB:5D:85:E5:5F:00:06:B3:87:5A:57:D7:E6:98:88:30:DB:AD:8A:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7501: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7502: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7503: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7504: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7505: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7506: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7507: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7508: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7509: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123454 (0x310fddfe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:19 2017
            Not After : Tue Aug 23 12:34:19 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:ef:f3:40:2f:0e:21:00:40:52:ed:78:f4:64:de:bd:
                    4d:bf:61:44:12:b2:88:b4:64:27:d8:85:f7:94:e9:40:
                    55:4b:bf:92:70:7e:92:0a:5a:97:22:d4:41:67:65:81:
                    cb:6c:7f:03:5d:19:b9:34:ff:b6:36:a5:ed:ed:4f:37:
                    01:7a:62:23:7b:fe:24:a8:4d:77:f7:f4:85:8b:dd:6c:
                    d9:30:f1:d6:e4:ca:6f:88:e5:30:47:c8:46:8b:f2:c8:
                    89:03:02:fd:91:c4:b1:23:4a:e9:d6:b0:e6:0f:f8:c8:
                    0f:c5:65:b8:0b:d6:96:17:7c:3c:43:37:dd:9a:0b:55:
                    72:1c:ad:a6:e9:ec:70:7a:a8:31:19:0b:1e:64:f3:f3:
                    a7:48:81:6e:6a:11:fb:00:97:39:6d:0f:88:63:6e:6f:
                    88:5a:8c:1c:65:4f:81:56:d6:1e:c7:86:91:bc:cf:da:
                    66:fc:d6:a9:be:51:2c:32:47:e3:39:b1:f0:ce:d0:44:
                    76:5f:74:a5:bc:d8:00:c7:33:2d:dd:99:19:1b:4d:fb:
                    77:aa:4c:0b:da:c4:15:0b:d3:05:38:9c:fe:13:b1:58:
                    43:79:df:4b:36:1c:92:30:40:11:57:c6:a1:a8:fb:4d:
                    59:79:93:ae:cc:6a:11:ec:8a:fc:76:8e:dc:03:26:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:17:4e:fe:04:8e:a1:80:a6:33:aa:63:d4:59:76:c6:
        34:95:62:49:23:b9:9e:04:0b:e4:0d:a1:74:27:d1:39:
        ba:70:b0:1f:e2:3f:79:b9:1c:f5:e5:f4:5c:7b:50:3f:
        ef:a3:9d:d4:57:ea:80:83:52:f1:8d:53:7b:cf:6a:52:
        4e:51:40:0e:44:b9:e8:78:d5:06:fc:59:15:2a:0d:a1:
        fc:84:39:c1:c7:57:5c:db:31:0f:a9:0e:69:ab:fd:3c:
        1b:84:40:52:42:92:a1:a7:46:c8:07:17:7f:f8:ec:34:
        d6:b7:c0:7b:ed:f2:0e:eb:f7:9c:4d:bb:80:7e:b5:7e:
        52:a0:05:7b:e0:be:cf:66:4d:62:92:f8:e9:84:8e:71:
        ef:31:5a:b7:b7:14:ae:61:4c:de:67:e3:70:8d:2e:fb:
        d8:47:a2:0e:0b:4d:46:65:75:1b:86:dc:06:9d:60:ba:
        de:91:27:8b:b0:59:7c:a2:db:4d:e5:7b:65:c1:7b:13:
        73:4d:f3:e6:c6:3c:0d:ad:c6:bf:3a:25:9f:80:e7:fd:
        af:d2:43:bf:e9:4b:e8:8c:d5:f4:50:a8:e7:20:0a:97:
        2a:90:3c:1c:e3:df:9e:df:45:b5:c7:21:aa:0c:6b:f4:
        5f:6a:e4:8d:6b:3f:1e:4b:0f:a3:8c:c9:2a:bf:19:09
    Fingerprint (SHA-256):
        38:C8:4E:A2:7D:F4:D5:0A:B5:F1:87:50:3F:52:C9:8B:D0:DE:1D:04:E9:81:0E:9E:95:C3:F2:6D:16:C1:49:D4
    Fingerprint (SHA1):
        41:3E:C6:3F:B3:50:EB:4E:4D:81:5C:1C:4F:AC:7C:98:B9:C8:EB:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7510: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7511: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7512: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7513: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7514: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7515: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7516: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7517: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7518: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7519: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7520: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7521: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7522: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7523: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7524: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7525: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7526: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7527: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7528: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123463 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7529: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7530: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7531: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7532: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123464   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7533: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7534: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7535: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7536: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123465   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7537: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7538: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7539: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7540: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 823123466   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7541: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7542: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7543: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7544: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123467   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7545: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7546: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7547: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7548: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 823123468   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7549: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7550: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7551: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7552: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 823123469   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7553: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7554: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7555: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7556: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 823123470   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7557: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7558: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7559: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7560: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 823123471   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7561: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7562: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7563: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123463 (0x310fde07)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:22 2017
            Not After : Tue Aug 23 12:34:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    05:2e:77:7c:f6:1f:31:fa:1a:c7:2c:76:b2:cb:b3:4a:
                    c6:04:d9:87:eb:2b:d6:33:7e:be:31:8c:4a:b2:cb:89:
                    75:86:25:36:bf:31:d1:d4:8d:a7:7c:0c:a3:27:6d:36:
                    b2:dd:3c:29:05:c2:43:8f:cb:55:a7:51:ce:3f:df:1a:
                    cb:a9:6c:89:47:41:64:dd:d1:85:c1:a8:dc:4c:8f:e4:
                    19:15:10:11:17:e2:33:af:9b:18:93:20:65:d3:5a:ce:
                    f8:d1:b1:2f:9b:aa:a6:6d:02:50:40:08:09:5a:37:49:
                    86:81:50:e9:48:e4:f1:1d:09:63:aa:a4:df:b6:b1:79:
                    e9:ae:c2:71:ca:d1:a8:93:22:22:9a:e2:4c:fd:db:9a:
                    7a:7e:f2:35:5d:1e:b3:b2:92:d3:50:86:6b:62:4d:d6:
                    e1:e8:a6:47:99:53:51:e2:31:4d:a2:f9:f6:98:6c:d5:
                    f8:69:39:79:d7:92:39:e0:4e:66:76:ac:22:d2:e1:60:
                    f0:3a:c0:8d:b1:92:b9:a5:a3:2b:ca:a6:23:02:a1:76:
                    05:66:36:24:7b:21:0d:cb:c3:a6:72:33:4a:d1:a9:80:
                    83:32:ce:01:01:2e:1e:98:05:f9:d2:2e:32:27:c1:ca:
                    13:ae:c6:1f:d2:26:6f:d7:a6:c3:8e:e2:67:59:d8:0b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:8c:c7:b7:be:1a:0c:a4:9e:3b:86:e0:
        5b:2f:3e:11:e3:64:34:e2:14:3b:0c:53:74:d0:78:8c:
        bf:02:1c:50:a0:e6:45:76:3c:fb:a7:76:c9:a4:cb:83:
        d2:cf:20:1e:32:58:fb:9a:e5:55:fc:3b:24:cf:82
    Fingerprint (SHA-256):
        04:BC:D3:53:5B:07:1C:88:11:75:C7:EE:A4:0B:80:6E:F1:11:48:25:0D:DC:03:86:EF:6F:D4:F6:2A:22:89:BA
    Fingerprint (SHA1):
        40:F1:F3:7E:6A:EF:00:EA:99:42:CC:FB:24:FA:43:D4:8A:6E:10:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7564: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123463 (0x310fde07)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:22 2017
            Not After : Tue Aug 23 12:34:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    05:2e:77:7c:f6:1f:31:fa:1a:c7:2c:76:b2:cb:b3:4a:
                    c6:04:d9:87:eb:2b:d6:33:7e:be:31:8c:4a:b2:cb:89:
                    75:86:25:36:bf:31:d1:d4:8d:a7:7c:0c:a3:27:6d:36:
                    b2:dd:3c:29:05:c2:43:8f:cb:55:a7:51:ce:3f:df:1a:
                    cb:a9:6c:89:47:41:64:dd:d1:85:c1:a8:dc:4c:8f:e4:
                    19:15:10:11:17:e2:33:af:9b:18:93:20:65:d3:5a:ce:
                    f8:d1:b1:2f:9b:aa:a6:6d:02:50:40:08:09:5a:37:49:
                    86:81:50:e9:48:e4:f1:1d:09:63:aa:a4:df:b6:b1:79:
                    e9:ae:c2:71:ca:d1:a8:93:22:22:9a:e2:4c:fd:db:9a:
                    7a:7e:f2:35:5d:1e:b3:b2:92:d3:50:86:6b:62:4d:d6:
                    e1:e8:a6:47:99:53:51:e2:31:4d:a2:f9:f6:98:6c:d5:
                    f8:69:39:79:d7:92:39:e0:4e:66:76:ac:22:d2:e1:60:
                    f0:3a:c0:8d:b1:92:b9:a5:a3:2b:ca:a6:23:02:a1:76:
                    05:66:36:24:7b:21:0d:cb:c3:a6:72:33:4a:d1:a9:80:
                    83:32:ce:01:01:2e:1e:98:05:f9:d2:2e:32:27:c1:ca:
                    13:ae:c6:1f:d2:26:6f:d7:a6:c3:8e:e2:67:59:d8:0b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:8c:c7:b7:be:1a:0c:a4:9e:3b:86:e0:
        5b:2f:3e:11:e3:64:34:e2:14:3b:0c:53:74:d0:78:8c:
        bf:02:1c:50:a0:e6:45:76:3c:fb:a7:76:c9:a4:cb:83:
        d2:cf:20:1e:32:58:fb:9a:e5:55:fc:3b:24:cf:82
    Fingerprint (SHA-256):
        04:BC:D3:53:5B:07:1C:88:11:75:C7:EE:A4:0B:80:6E:F1:11:48:25:0D:DC:03:86:EF:6F:D4:F6:2A:22:89:BA
    Fingerprint (SHA1):
        40:F1:F3:7E:6A:EF:00:EA:99:42:CC:FB:24:FA:43:D4:8A:6E:10:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7565: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123463 (0x310fde07)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:22 2017
            Not After : Tue Aug 23 12:34:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    05:2e:77:7c:f6:1f:31:fa:1a:c7:2c:76:b2:cb:b3:4a:
                    c6:04:d9:87:eb:2b:d6:33:7e:be:31:8c:4a:b2:cb:89:
                    75:86:25:36:bf:31:d1:d4:8d:a7:7c:0c:a3:27:6d:36:
                    b2:dd:3c:29:05:c2:43:8f:cb:55:a7:51:ce:3f:df:1a:
                    cb:a9:6c:89:47:41:64:dd:d1:85:c1:a8:dc:4c:8f:e4:
                    19:15:10:11:17:e2:33:af:9b:18:93:20:65:d3:5a:ce:
                    f8:d1:b1:2f:9b:aa:a6:6d:02:50:40:08:09:5a:37:49:
                    86:81:50:e9:48:e4:f1:1d:09:63:aa:a4:df:b6:b1:79:
                    e9:ae:c2:71:ca:d1:a8:93:22:22:9a:e2:4c:fd:db:9a:
                    7a:7e:f2:35:5d:1e:b3:b2:92:d3:50:86:6b:62:4d:d6:
                    e1:e8:a6:47:99:53:51:e2:31:4d:a2:f9:f6:98:6c:d5:
                    f8:69:39:79:d7:92:39:e0:4e:66:76:ac:22:d2:e1:60:
                    f0:3a:c0:8d:b1:92:b9:a5:a3:2b:ca:a6:23:02:a1:76:
                    05:66:36:24:7b:21:0d:cb:c3:a6:72:33:4a:d1:a9:80:
                    83:32:ce:01:01:2e:1e:98:05:f9:d2:2e:32:27:c1:ca:
                    13:ae:c6:1f:d2:26:6f:d7:a6:c3:8e:e2:67:59:d8:0b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:8c:c7:b7:be:1a:0c:a4:9e:3b:86:e0:
        5b:2f:3e:11:e3:64:34:e2:14:3b:0c:53:74:d0:78:8c:
        bf:02:1c:50:a0:e6:45:76:3c:fb:a7:76:c9:a4:cb:83:
        d2:cf:20:1e:32:58:fb:9a:e5:55:fc:3b:24:cf:82
    Fingerprint (SHA-256):
        04:BC:D3:53:5B:07:1C:88:11:75:C7:EE:A4:0B:80:6E:F1:11:48:25:0D:DC:03:86:EF:6F:D4:F6:2A:22:89:BA
    Fingerprint (SHA1):
        40:F1:F3:7E:6A:EF:00:EA:99:42:CC:FB:24:FA:43:D4:8A:6E:10:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7566: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123463 (0x310fde07)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:22 2017
            Not After : Tue Aug 23 12:34:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    05:2e:77:7c:f6:1f:31:fa:1a:c7:2c:76:b2:cb:b3:4a:
                    c6:04:d9:87:eb:2b:d6:33:7e:be:31:8c:4a:b2:cb:89:
                    75:86:25:36:bf:31:d1:d4:8d:a7:7c:0c:a3:27:6d:36:
                    b2:dd:3c:29:05:c2:43:8f:cb:55:a7:51:ce:3f:df:1a:
                    cb:a9:6c:89:47:41:64:dd:d1:85:c1:a8:dc:4c:8f:e4:
                    19:15:10:11:17:e2:33:af:9b:18:93:20:65:d3:5a:ce:
                    f8:d1:b1:2f:9b:aa:a6:6d:02:50:40:08:09:5a:37:49:
                    86:81:50:e9:48:e4:f1:1d:09:63:aa:a4:df:b6:b1:79:
                    e9:ae:c2:71:ca:d1:a8:93:22:22:9a:e2:4c:fd:db:9a:
                    7a:7e:f2:35:5d:1e:b3:b2:92:d3:50:86:6b:62:4d:d6:
                    e1:e8:a6:47:99:53:51:e2:31:4d:a2:f9:f6:98:6c:d5:
                    f8:69:39:79:d7:92:39:e0:4e:66:76:ac:22:d2:e1:60:
                    f0:3a:c0:8d:b1:92:b9:a5:a3:2b:ca:a6:23:02:a1:76:
                    05:66:36:24:7b:21:0d:cb:c3:a6:72:33:4a:d1:a9:80:
                    83:32:ce:01:01:2e:1e:98:05:f9:d2:2e:32:27:c1:ca:
                    13:ae:c6:1f:d2:26:6f:d7:a6:c3:8e:e2:67:59:d8:0b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:8c:c7:b7:be:1a:0c:a4:9e:3b:86:e0:
        5b:2f:3e:11:e3:64:34:e2:14:3b:0c:53:74:d0:78:8c:
        bf:02:1c:50:a0:e6:45:76:3c:fb:a7:76:c9:a4:cb:83:
        d2:cf:20:1e:32:58:fb:9a:e5:55:fc:3b:24:cf:82
    Fingerprint (SHA-256):
        04:BC:D3:53:5B:07:1C:88:11:75:C7:EE:A4:0B:80:6E:F1:11:48:25:0D:DC:03:86:EF:6F:D4:F6:2A:22:89:BA
    Fingerprint (SHA1):
        40:F1:F3:7E:6A:EF:00:EA:99:42:CC:FB:24:FA:43:D4:8A:6E:10:9A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7567: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7568: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7569: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7570: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7571: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7572: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7573: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7574: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7575: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7576: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7577: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7578: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7579: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7580: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7581: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7582: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7583: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7584: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7585: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7586: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7587: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7588: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7589: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7590: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7591: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7592: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7593: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7594: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123425Z
nextupdate=20180823123425Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:34:25 2017
    Next Update: Thu Aug 23 12:34:25 2018
    CRL Extensions:
chains.sh: #7595: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123425Z
nextupdate=20180823123425Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:34:25 2017
    Next Update: Thu Aug 23 12:34:25 2018
    CRL Extensions:
chains.sh: #7596: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123425Z
nextupdate=20180823123425Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:34:25 2017
    Next Update: Thu Aug 23 12:34:25 2018
    CRL Extensions:
chains.sh: #7597: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123425Z
nextupdate=20180823123425Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:34:25 2017
    Next Update: Thu Aug 23 12:34:25 2018
    CRL Extensions:
chains.sh: #7598: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123426Z
addcert 14 20170823123426Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:34:26 2017
    Next Update: Thu Aug 23 12:34:25 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed Aug 23 12:34:26 2017
    CRL Extensions:
chains.sh: #7599: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123427Z
addcert 15 20170823123427Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:34:27 2017
    Next Update: Thu Aug 23 12:34:25 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed Aug 23 12:34:27 2017
    CRL Extensions:
chains.sh: #7600: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7601: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7602: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7603: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7604: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7605: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7606: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7607: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7608: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7609: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:23 2017
            Not After : Tue Aug 23 12:34:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:23:8e:d1:dc:f1:d3:2a:d4:7a:66:a1:c9:34:c0:5c:
                    02:a2:c7:7f:7d:4a:1d:3b:39:0f:87:fb:d3:46:df:82:
                    b7:22:f5:4a:be:57:c5:ca:b4:55:5e:29:f9:61:4a:e6:
                    5d:7f:ba:a2:ac:2b:32:77:e1:90:e2:35:7f:c7:b6:c8:
                    1d:65:c2:b3:4f:7d:59:8c:4b:99:03:29:5b:f0:bc:6a:
                    34:f0:98:79:92:28:d7:bf:c8:27:eb:57:3a:4e:1f:ba:
                    6b:db:c9:2a:54:4c:3c:36:3b:02:3e:0d:71:06:ad:52:
                    42:cc:1f:94:fe:bb:a8:8a:a5:cc:0b:40:f1:9d:02:63:
                    52:7e:07:de:b2:08:b0:d4:52:ed:31:11:14:cb:84:40:
                    2d:3e:70:02:ee:34:5d:fe:7f:7d:27:b2:ec:bc:37:a3:
                    db:f3:e7:8c:bc:e0:a7:df:66:0b:98:98:38:47:49:b1:
                    13:f2:7c:35:bf:99:99:31:ac:31:14:ca:8d:71:c1:63:
                    fd:66:a0:2e:07:e8:f1:42:0c:a5:b1:ab:92:14:33:bf:
                    4a:45:42:45:0c:53:92:86:ef:c0:eb:b3:f4:3f:6a:66:
                    b7:00:77:fb:06:1e:f4:a0:b6:b7:31:53:f6:1e:93:31:
                    fd:74:5f:13:fb:d3:1d:9e:36:07:74:45:a1:ed:04:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:60:58:e0:36:b8:6d:08:c0:12:51:d1:e5:6f:0e:f3:
        c2:07:43:89:5c:92:c5:24:5d:c9:3c:17:f0:ed:d5:99:
        7a:2d:78:20:0d:2e:86:d5:84:b2:4d:ac:04:39:34:72:
        f5:0c:fa:be:c7:71:02:88:cc:04:46:d2:69:02:d2:c4:
        41:0e:12:24:04:9e:a7:22:9c:50:7d:29:a7:c5:a9:62:
        49:34:20:b0:9e:e1:23:f7:25:b7:cd:6c:c0:79:73:ed:
        b7:83:8f:bf:c7:15:6c:45:d2:5d:11:a0:1a:9d:df:ec:
        32:29:33:e8:2f:e1:09:06:f8:f0:09:0e:1b:9f:dc:7a:
        f5:0f:ab:0f:3a:57:87:79:39:21:ff:37:0f:fe:83:a5:
        f6:8a:3d:b7:9f:c4:ef:2a:06:ff:22:18:c7:89:05:63:
        43:fb:67:71:81:b6:8a:b7:1c:77:12:3e:97:04:90:f0:
        8a:2f:8d:b5:19:e2:c8:c2:3a:10:44:a4:d8:b3:04:4d:
        fa:cd:46:b8:a0:78:19:40:70:2a:a6:27:84:47:3b:f3:
        c7:58:89:d8:9e:da:8c:8f:a4:82:30:f1:e4:3a:30:64:
        e0:40:6e:1e:97:69:7e:89:91:71:4e:d9:08:3e:df:e0:
        c9:5b:da:27:8d:17:a3:6e:95:8a:b2:e3:3d:72:c8:c0
    Fingerprint (SHA-256):
        73:34:E4:3C:FF:60:A1:C5:49:B4:9F:3E:13:55:7D:DD:A5:BD:9B:E0:23:BC:DF:D1:52:79:25:B0:CD:9F:D3:0E
    Fingerprint (SHA1):
        D4:5D:A0:C9:97:5C:F6:F3:A4:75:22:2D:96:63:94:B5:4F:DB:D9:F6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7610: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7611: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:23 2017
            Not After : Tue Aug 23 12:34:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:23:8e:d1:dc:f1:d3:2a:d4:7a:66:a1:c9:34:c0:5c:
                    02:a2:c7:7f:7d:4a:1d:3b:39:0f:87:fb:d3:46:df:82:
                    b7:22:f5:4a:be:57:c5:ca:b4:55:5e:29:f9:61:4a:e6:
                    5d:7f:ba:a2:ac:2b:32:77:e1:90:e2:35:7f:c7:b6:c8:
                    1d:65:c2:b3:4f:7d:59:8c:4b:99:03:29:5b:f0:bc:6a:
                    34:f0:98:79:92:28:d7:bf:c8:27:eb:57:3a:4e:1f:ba:
                    6b:db:c9:2a:54:4c:3c:36:3b:02:3e:0d:71:06:ad:52:
                    42:cc:1f:94:fe:bb:a8:8a:a5:cc:0b:40:f1:9d:02:63:
                    52:7e:07:de:b2:08:b0:d4:52:ed:31:11:14:cb:84:40:
                    2d:3e:70:02:ee:34:5d:fe:7f:7d:27:b2:ec:bc:37:a3:
                    db:f3:e7:8c:bc:e0:a7:df:66:0b:98:98:38:47:49:b1:
                    13:f2:7c:35:bf:99:99:31:ac:31:14:ca:8d:71:c1:63:
                    fd:66:a0:2e:07:e8:f1:42:0c:a5:b1:ab:92:14:33:bf:
                    4a:45:42:45:0c:53:92:86:ef:c0:eb:b3:f4:3f:6a:66:
                    b7:00:77:fb:06:1e:f4:a0:b6:b7:31:53:f6:1e:93:31:
                    fd:74:5f:13:fb:d3:1d:9e:36:07:74:45:a1:ed:04:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:60:58:e0:36:b8:6d:08:c0:12:51:d1:e5:6f:0e:f3:
        c2:07:43:89:5c:92:c5:24:5d:c9:3c:17:f0:ed:d5:99:
        7a:2d:78:20:0d:2e:86:d5:84:b2:4d:ac:04:39:34:72:
        f5:0c:fa:be:c7:71:02:88:cc:04:46:d2:69:02:d2:c4:
        41:0e:12:24:04:9e:a7:22:9c:50:7d:29:a7:c5:a9:62:
        49:34:20:b0:9e:e1:23:f7:25:b7:cd:6c:c0:79:73:ed:
        b7:83:8f:bf:c7:15:6c:45:d2:5d:11:a0:1a:9d:df:ec:
        32:29:33:e8:2f:e1:09:06:f8:f0:09:0e:1b:9f:dc:7a:
        f5:0f:ab:0f:3a:57:87:79:39:21:ff:37:0f:fe:83:a5:
        f6:8a:3d:b7:9f:c4:ef:2a:06:ff:22:18:c7:89:05:63:
        43:fb:67:71:81:b6:8a:b7:1c:77:12:3e:97:04:90:f0:
        8a:2f:8d:b5:19:e2:c8:c2:3a:10:44:a4:d8:b3:04:4d:
        fa:cd:46:b8:a0:78:19:40:70:2a:a6:27:84:47:3b:f3:
        c7:58:89:d8:9e:da:8c:8f:a4:82:30:f1:e4:3a:30:64:
        e0:40:6e:1e:97:69:7e:89:91:71:4e:d9:08:3e:df:e0:
        c9:5b:da:27:8d:17:a3:6e:95:8a:b2:e3:3d:72:c8:c0
    Fingerprint (SHA-256):
        73:34:E4:3C:FF:60:A1:C5:49:B4:9F:3E:13:55:7D:DD:A5:BD:9B:E0:23:BC:DF:D1:52:79:25:B0:CD:9F:D3:0E
    Fingerprint (SHA1):
        D4:5D:A0:C9:97:5C:F6:F3:A4:75:22:2D:96:63:94:B5:4F:DB:D9:F6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7612: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7613: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7614: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123472 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7615: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7616: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7617: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7618: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 823123473   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7619: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7620: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7621: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7622: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123348.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7623: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7624: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7625: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7626: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 823123474   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7627: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7628: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7629: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7630: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123349.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7631: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7632: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7633: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7634: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 823123475   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7635: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7636: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7637: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7638: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123350.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7639: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7640: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7641: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123363.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7642: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123351.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7643: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7644: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123429Z
nextupdate=20180823123429Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:34:29 2017
    Next Update: Thu Aug 23 12:34:29 2018
    CRL Extensions:
chains.sh: #7645: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123429Z
nextupdate=20180823123429Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:34:29 2017
    Next Update: Thu Aug 23 12:34:29 2018
    CRL Extensions:
chains.sh: #7646: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123429Z
nextupdate=20180823123429Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:34:29 2017
    Next Update: Thu Aug 23 12:34:29 2018
    CRL Extensions:
chains.sh: #7647: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123429Z
nextupdate=20180823123429Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:34:29 2017
    Next Update: Thu Aug 23 12:34:29 2018
    CRL Extensions:
chains.sh: #7648: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123430Z
addcert 20 20170823123430Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:34:30 2017
    Next Update: Thu Aug 23 12:34:29 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:34:30 2017
    CRL Extensions:
chains.sh: #7649: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123431Z
addcert 40 20170823123431Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:34:31 2017
    Next Update: Thu Aug 23 12:34:29 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:34:30 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:34:31 2017
    CRL Extensions:
chains.sh: #7650: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7651: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7652: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7653: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123472 (0x310fde10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:27 2017
            Not After : Tue Aug 23 12:34:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:7e:73:91:5c:70:fb:23:65:9f:e1:61:29:e7:b3:cd:
                    a9:80:08:a0:d9:56:20:db:d9:6b:ad:63:ac:35:53:4c:
                    4a:73:1b:38:d1:20:40:40:81:9d:99:ec:5c:dc:30:ec:
                    66:b7:a4:93:00:32:92:3a:40:04:68:15:40:bd:b8:ef:
                    51:a6:59:e7:c4:cd:77:6f:8b:b8:b3:db:a1:f1:5f:37:
                    49:67:b3:76:ff:f0:af:29:b0:32:f6:9e:47:26:40:4e:
                    81:97:c2:b3:8a:f4:23:5c:a6:50:59:d9:91:47:47:db:
                    38:eb:b0:36:6c:68:34:af:b7:d0:97:81:b6:78:4c:67:
                    f4:f3:f1:03:49:4f:dd:bd:ec:60:98:da:6e:c7:15:9c:
                    c9:19:6c:87:41:45:d4:cd:00:64:51:0d:e4:42:67:06:
                    10:36:52:db:35:dd:95:40:44:a4:37:67:c6:32:da:4e:
                    62:e9:2e:95:70:16:ae:06:53:7a:40:61:e3:f4:86:44:
                    a3:46:90:4d:65:ba:da:4f:da:90:34:66:62:b3:a2:8a:
                    06:d9:37:7a:cf:96:74:f8:67:31:e3:5b:cd:32:ed:4b:
                    1a:1e:3f:18:92:a1:6f:e1:27:29:85:fc:a5:c3:bf:47:
                    e7:e5:ad:cd:f7:30:7d:83:b0:0e:9d:72:a7:fe:a1:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:3b:ac:79:30:7b:14:92:0f:2a:f4:c1:5d:3f:93:e7:
        91:a8:3f:69:3c:b7:f1:fd:65:d2:b1:99:a9:92:e4:dc:
        f6:b4:fa:2a:78:0f:1f:15:eb:f9:5d:61:45:25:ac:15:
        6a:e5:b9:41:87:94:80:60:15:b8:cd:93:c9:13:c9:b5:
        f1:ef:96:46:2d:21:8d:53:36:30:0f:c6:07:db:05:24:
        60:e8:68:57:c3:03:86:16:57:b2:c1:5b:f5:cd:24:0b:
        bf:ca:a4:4e:81:4f:cd:34:8c:71:be:a8:45:e9:b8:cd:
        0c:6f:e7:d0:e5:d9:bf:ca:1f:92:8c:c2:4d:81:eb:7f:
        64:d5:37:04:88:50:77:50:29:44:ae:70:92:6a:32:27:
        f6:25:43:ce:46:bb:fa:ae:84:bc:d8:80:24:1f:91:ab:
        8c:c8:16:c6:6c:d7:f9:8a:6b:2a:2e:05:46:04:0d:3f:
        56:dc:3b:47:12:dc:47:9e:45:bc:f4:b5:75:86:a3:38:
        e5:4b:65:3f:0a:2c:72:6d:d5:0b:7c:4e:04:7f:75:9d:
        7f:b2:56:59:59:a0:75:3e:99:4f:a6:5e:5e:b1:30:69:
        86:56:4d:4e:6a:16:6b:aa:c9:e0:62:75:bb:47:a8:26:
        fe:e8:76:de:38:8d:ff:f8:89:13:9e:91:b9:b7:1d:af
    Fingerprint (SHA-256):
        23:96:EA:FE:A1:C8:F0:BE:AC:23:0A:17:9F:E1:92:79:0B:46:D4:97:51:B6:5F:04:EE:7F:C3:54:1E:AD:DB:54
    Fingerprint (SHA1):
        05:17:F9:04:FA:A2:FC:44:50:AC:E2:4E:51:34:3F:5A:A6:41:95:2B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7654: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7655: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123472 (0x310fde10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:27 2017
            Not After : Tue Aug 23 12:34:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:7e:73:91:5c:70:fb:23:65:9f:e1:61:29:e7:b3:cd:
                    a9:80:08:a0:d9:56:20:db:d9:6b:ad:63:ac:35:53:4c:
                    4a:73:1b:38:d1:20:40:40:81:9d:99:ec:5c:dc:30:ec:
                    66:b7:a4:93:00:32:92:3a:40:04:68:15:40:bd:b8:ef:
                    51:a6:59:e7:c4:cd:77:6f:8b:b8:b3:db:a1:f1:5f:37:
                    49:67:b3:76:ff:f0:af:29:b0:32:f6:9e:47:26:40:4e:
                    81:97:c2:b3:8a:f4:23:5c:a6:50:59:d9:91:47:47:db:
                    38:eb:b0:36:6c:68:34:af:b7:d0:97:81:b6:78:4c:67:
                    f4:f3:f1:03:49:4f:dd:bd:ec:60:98:da:6e:c7:15:9c:
                    c9:19:6c:87:41:45:d4:cd:00:64:51:0d:e4:42:67:06:
                    10:36:52:db:35:dd:95:40:44:a4:37:67:c6:32:da:4e:
                    62:e9:2e:95:70:16:ae:06:53:7a:40:61:e3:f4:86:44:
                    a3:46:90:4d:65:ba:da:4f:da:90:34:66:62:b3:a2:8a:
                    06:d9:37:7a:cf:96:74:f8:67:31:e3:5b:cd:32:ed:4b:
                    1a:1e:3f:18:92:a1:6f:e1:27:29:85:fc:a5:c3:bf:47:
                    e7:e5:ad:cd:f7:30:7d:83:b0:0e:9d:72:a7:fe:a1:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:3b:ac:79:30:7b:14:92:0f:2a:f4:c1:5d:3f:93:e7:
        91:a8:3f:69:3c:b7:f1:fd:65:d2:b1:99:a9:92:e4:dc:
        f6:b4:fa:2a:78:0f:1f:15:eb:f9:5d:61:45:25:ac:15:
        6a:e5:b9:41:87:94:80:60:15:b8:cd:93:c9:13:c9:b5:
        f1:ef:96:46:2d:21:8d:53:36:30:0f:c6:07:db:05:24:
        60:e8:68:57:c3:03:86:16:57:b2:c1:5b:f5:cd:24:0b:
        bf:ca:a4:4e:81:4f:cd:34:8c:71:be:a8:45:e9:b8:cd:
        0c:6f:e7:d0:e5:d9:bf:ca:1f:92:8c:c2:4d:81:eb:7f:
        64:d5:37:04:88:50:77:50:29:44:ae:70:92:6a:32:27:
        f6:25:43:ce:46:bb:fa:ae:84:bc:d8:80:24:1f:91:ab:
        8c:c8:16:c6:6c:d7:f9:8a:6b:2a:2e:05:46:04:0d:3f:
        56:dc:3b:47:12:dc:47:9e:45:bc:f4:b5:75:86:a3:38:
        e5:4b:65:3f:0a:2c:72:6d:d5:0b:7c:4e:04:7f:75:9d:
        7f:b2:56:59:59:a0:75:3e:99:4f:a6:5e:5e:b1:30:69:
        86:56:4d:4e:6a:16:6b:aa:c9:e0:62:75:bb:47:a8:26:
        fe:e8:76:de:38:8d:ff:f8:89:13:9e:91:b9:b7:1d:af
    Fingerprint (SHA-256):
        23:96:EA:FE:A1:C8:F0:BE:AC:23:0A:17:9F:E1:92:79:0B:46:D4:97:51:B6:5F:04:EE:7F:C3:54:1E:AD:DB:54
    Fingerprint (SHA1):
        05:17:F9:04:FA:A2:FC:44:50:AC:E2:4E:51:34:3F:5A:A6:41:95:2B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7656: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7657: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7658: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123476 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7659: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7660: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7661: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7662: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123477   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7663: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7664: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7665: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7666: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123478   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7667: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7668: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7669: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7670: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 823123479   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7671: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7672: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7673: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123480 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7674: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7675: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7676: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7677: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 823123481   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7678: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7679: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7680: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7681: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 823123482   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7682: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7683: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7684: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7685: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7686: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123476 (0x310fde14)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:31 2017
            Not After : Tue Aug 23 12:34:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:2c:70:b2:1d:2f:49:75:af:72:8a:5b:d4:a2:52:08:
                    77:e6:c1:26:cd:4b:ad:d1:0d:5a:96:08:a1:87:0f:af:
                    f0:46:b3:f5:8a:d6:ab:81:67:5f:60:f1:19:7f:50:8e:
                    d9:e2:df:2a:bc:44:90:44:fe:ed:e4:b3:8a:38:ac:58:
                    3a:5c:d9:03:2a:ad:0f:c1:81:f6:29:c9:17:32:a0:c5:
                    62:41:57:63:d2:01:fc:00:b2:5b:87:65:40:ca:0e:03:
                    b7:67:a7:7d:37:17:b6:45:2b:6e:1e:45:7d:d2:50:85:
                    c0:6a:e1:e5:7e:f0:4a:a9:cb:52:89:9e:4b:fd:2b:3b:
                    24:74:43:8f:42:4a:d3:ef:e5:66:33:48:b4:27:6b:e2:
                    30:44:90:4b:33:d9:14:ca:96:3e:17:ca:93:48:e5:40:
                    c8:16:61:88:7d:7c:eb:45:6d:ff:97:96:48:51:a1:12:
                    c1:db:a0:7a:ba:29:d5:cb:17:ab:86:55:9a:c1:df:4c:
                    6d:4f:25:f1:c1:5a:02:c9:45:77:bd:18:3a:ec:28:c7:
                    4d:3c:dc:9a:ce:94:ae:70:fc:21:95:c9:30:5d:3c:6d:
                    6d:31:38:3c:0e:f4:56:bd:10:dd:a0:81:4e:42:6f:33:
                    10:04:42:3a:6a:f2:16:06:78:39:9a:67:c7:00:d4:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:82:93:9e:0c:11:fd:bb:18:72:e0:bf:35:5a:e5:cb:
        21:15:b5:a1:a3:fc:a1:2b:8f:53:e7:e7:52:c8:6e:be:
        f1:6c:6e:e2:b3:53:e8:07:80:5e:35:8d:65:8a:4d:49:
        c5:e1:84:5a:51:3f:59:88:fa:94:a2:ff:77:28:38:bf:
        1b:df:df:a6:03:e7:2d:6c:ab:34:47:36:60:42:13:8f:
        35:07:f1:ba:e9:d2:b5:0e:23:70:9f:b6:c9:f5:5f:54:
        08:3f:4d:cb:86:38:a9:21:6f:8e:b1:f6:a5:2c:d7:50:
        8e:70:64:53:28:ed:84:d8:36:6c:87:05:84:f8:72:dc:
        c4:07:5a:54:5e:90:50:42:ec:12:67:3e:df:8b:9d:2e:
        5e:b5:b9:5b:b2:50:5c:b3:21:22:28:29:a1:4b:29:c7:
        eb:b9:2c:c6:13:5a:07:f2:46:8c:30:ac:43:51:65:60:
        9c:7e:c3:47:f1:82:0f:7d:93:63:1f:f5:5f:5d:b6:af:
        55:eb:01:3b:a9:74:46:3a:4b:b1:77:9b:cf:04:e3:2a:
        a9:7a:b9:04:23:d7:88:d7:b1:c2:72:14:80:d7:8b:7d:
        f6:f3:55:7d:39:05:4b:84:b1:48:80:a8:a0:77:e1:59:
        9e:1b:19:69:2e:c9:7d:5b:56:13:0f:9f:a5:1e:f3:8c
    Fingerprint (SHA-256):
        00:18:37:E6:21:9B:92:CB:92:02:EC:E1:76:28:91:54:03:97:4B:3E:8E:34:A4:6E:EA:0C:4D:08:D7:1A:C9:85
    Fingerprint (SHA1):
        FE:D7:75:9C:BD:FF:EF:0D:9D:2B:9B:5B:4B:84:F0:03:FC:0C:8F:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7687: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123478 (0x310fde16)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:32 2017
            Not After : Tue Aug 23 12:34:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:e0:3e:ef:df:53:0b:93:a7:4e:b3:ff:b1:e6:10:53:
                    59:d9:80:d5:4c:71:f8:4c:7f:99:c1:00:43:5d:bf:85:
                    ff:16:1d:22:1c:c2:eb:12:8b:17:73:fe:a3:36:b6:ab:
                    e4:5b:22:c2:ba:02:a2:52:e1:0c:ff:ae:cc:de:57:5e:
                    53:aa:54:4d:0c:24:3d:32:96:8e:61:dc:9c:68:25:40:
                    fd:c4:ba:a5:8d:1e:91:eb:18:23:45:29:b0:ff:cb:e0:
                    51:e9:f9:d5:af:71:cb:c4:ac:15:c7:a4:72:27:05:7f:
                    9b:80:39:7d:46:d3:77:2a:62:97:9e:14:0c:78:4f:ea:
                    24:bb:ca:35:1c:91:a1:ce:ef:75:32:8a:e9:41:1e:91:
                    3e:6d:1a:de:f4:8b:4c:df:d9:ec:e3:4a:db:7e:e0:84:
                    52:1a:4f:10:6a:22:a0:92:e0:2b:7f:76:2e:2b:5d:83:
                    89:6f:c9:19:7d:91:05:d2:1f:82:13:65:e3:19:b2:22:
                    35:25:aa:9a:4b:ff:b3:b4:09:df:85:61:72:65:61:4f:
                    53:6e:4d:29:e4:25:97:b3:06:8f:c9:39:0d:32:f2:66:
                    a9:ad:d2:00:9e:fc:b5:7e:35:90:fd:f7:55:ca:56:e9:
                    7b:62:66:ff:ec:d9:ff:cb:5f:ff:7d:03:62:b0:d8:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:76:20:7c:14:d8:7d:31:6c:93:c3:71:3f:a8:55:d3:
        81:e1:55:6d:92:18:e6:fb:ff:f3:cf:05:e2:74:05:da:
        9d:ae:ca:99:7e:3e:4c:c9:41:29:44:30:30:22:c4:1e:
        50:4e:21:34:8c:53:c3:51:2f:a6:da:fb:63:91:d5:e9:
        aa:16:82:9c:4b:78:80:4a:cc:3d:d0:30:3e:14:03:b9:
        a2:b2:ee:ed:65:4b:a8:e5:d1:7b:b1:bc:7c:e8:5a:f4:
        12:87:07:bf:87:c6:e2:37:6f:3e:26:f2:4f:6f:73:3b:
        1a:d9:1f:66:0d:43:d4:3d:33:fe:49:db:32:63:03:de:
        b1:38:dc:bb:83:33:b1:34:17:6f:e6:b3:e9:b1:cf:10:
        5b:97:49:a7:d3:63:76:55:b8:7c:7f:5f:3d:e2:db:be:
        9e:d5:94:e6:e4:92:0b:30:01:d5:37:5d:c6:14:71:21:
        5b:64:ce:0b:45:97:4a:8e:05:6f:53:11:ae:f0:fb:ed:
        7e:01:ac:30:f8:06:28:51:83:69:45:e5:2a:e3:6f:b9:
        5c:d2:0c:f9:6a:64:6e:7a:e1:c7:07:08:da:16:a8:b5:
        a7:d4:45:5a:31:82:12:80:71:9f:fc:5d:d7:64:24:3e:
        7c:37:80:67:01:b1:a2:a8:ab:c0:2f:b6:c3:1e:8a:ec
    Fingerprint (SHA-256):
        0B:12:0F:A2:85:9E:A5:51:BE:5F:2F:03:A1:5F:01:4B:D4:2A:FA:6A:79:0D:C4:A1:5D:02:10:37:42:BC:C9:5E
    Fingerprint (SHA1):
        FF:27:BD:E8:9B:68:FC:7E:31:29:A1:C4:59:56:93:AF:D6:21:3B:96
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7688: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123476 (0x310fde14)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:31 2017
            Not After : Tue Aug 23 12:34:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:2c:70:b2:1d:2f:49:75:af:72:8a:5b:d4:a2:52:08:
                    77:e6:c1:26:cd:4b:ad:d1:0d:5a:96:08:a1:87:0f:af:
                    f0:46:b3:f5:8a:d6:ab:81:67:5f:60:f1:19:7f:50:8e:
                    d9:e2:df:2a:bc:44:90:44:fe:ed:e4:b3:8a:38:ac:58:
                    3a:5c:d9:03:2a:ad:0f:c1:81:f6:29:c9:17:32:a0:c5:
                    62:41:57:63:d2:01:fc:00:b2:5b:87:65:40:ca:0e:03:
                    b7:67:a7:7d:37:17:b6:45:2b:6e:1e:45:7d:d2:50:85:
                    c0:6a:e1:e5:7e:f0:4a:a9:cb:52:89:9e:4b:fd:2b:3b:
                    24:74:43:8f:42:4a:d3:ef:e5:66:33:48:b4:27:6b:e2:
                    30:44:90:4b:33:d9:14:ca:96:3e:17:ca:93:48:e5:40:
                    c8:16:61:88:7d:7c:eb:45:6d:ff:97:96:48:51:a1:12:
                    c1:db:a0:7a:ba:29:d5:cb:17:ab:86:55:9a:c1:df:4c:
                    6d:4f:25:f1:c1:5a:02:c9:45:77:bd:18:3a:ec:28:c7:
                    4d:3c:dc:9a:ce:94:ae:70:fc:21:95:c9:30:5d:3c:6d:
                    6d:31:38:3c:0e:f4:56:bd:10:dd:a0:81:4e:42:6f:33:
                    10:04:42:3a:6a:f2:16:06:78:39:9a:67:c7:00:d4:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:82:93:9e:0c:11:fd:bb:18:72:e0:bf:35:5a:e5:cb:
        21:15:b5:a1:a3:fc:a1:2b:8f:53:e7:e7:52:c8:6e:be:
        f1:6c:6e:e2:b3:53:e8:07:80:5e:35:8d:65:8a:4d:49:
        c5:e1:84:5a:51:3f:59:88:fa:94:a2:ff:77:28:38:bf:
        1b:df:df:a6:03:e7:2d:6c:ab:34:47:36:60:42:13:8f:
        35:07:f1:ba:e9:d2:b5:0e:23:70:9f:b6:c9:f5:5f:54:
        08:3f:4d:cb:86:38:a9:21:6f:8e:b1:f6:a5:2c:d7:50:
        8e:70:64:53:28:ed:84:d8:36:6c:87:05:84:f8:72:dc:
        c4:07:5a:54:5e:90:50:42:ec:12:67:3e:df:8b:9d:2e:
        5e:b5:b9:5b:b2:50:5c:b3:21:22:28:29:a1:4b:29:c7:
        eb:b9:2c:c6:13:5a:07:f2:46:8c:30:ac:43:51:65:60:
        9c:7e:c3:47:f1:82:0f:7d:93:63:1f:f5:5f:5d:b6:af:
        55:eb:01:3b:a9:74:46:3a:4b:b1:77:9b:cf:04:e3:2a:
        a9:7a:b9:04:23:d7:88:d7:b1:c2:72:14:80:d7:8b:7d:
        f6:f3:55:7d:39:05:4b:84:b1:48:80:a8:a0:77:e1:59:
        9e:1b:19:69:2e:c9:7d:5b:56:13:0f:9f:a5:1e:f3:8c
    Fingerprint (SHA-256):
        00:18:37:E6:21:9B:92:CB:92:02:EC:E1:76:28:91:54:03:97:4B:3E:8E:34:A4:6E:EA:0C:4D:08:D7:1A:C9:85
    Fingerprint (SHA1):
        FE:D7:75:9C:BD:FF:EF:0D:9D:2B:9B:5B:4B:84:F0:03:FC:0C:8F:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7689: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7690: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123476 (0x310fde14)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:31 2017
            Not After : Tue Aug 23 12:34:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:2c:70:b2:1d:2f:49:75:af:72:8a:5b:d4:a2:52:08:
                    77:e6:c1:26:cd:4b:ad:d1:0d:5a:96:08:a1:87:0f:af:
                    f0:46:b3:f5:8a:d6:ab:81:67:5f:60:f1:19:7f:50:8e:
                    d9:e2:df:2a:bc:44:90:44:fe:ed:e4:b3:8a:38:ac:58:
                    3a:5c:d9:03:2a:ad:0f:c1:81:f6:29:c9:17:32:a0:c5:
                    62:41:57:63:d2:01:fc:00:b2:5b:87:65:40:ca:0e:03:
                    b7:67:a7:7d:37:17:b6:45:2b:6e:1e:45:7d:d2:50:85:
                    c0:6a:e1:e5:7e:f0:4a:a9:cb:52:89:9e:4b:fd:2b:3b:
                    24:74:43:8f:42:4a:d3:ef:e5:66:33:48:b4:27:6b:e2:
                    30:44:90:4b:33:d9:14:ca:96:3e:17:ca:93:48:e5:40:
                    c8:16:61:88:7d:7c:eb:45:6d:ff:97:96:48:51:a1:12:
                    c1:db:a0:7a:ba:29:d5:cb:17:ab:86:55:9a:c1:df:4c:
                    6d:4f:25:f1:c1:5a:02:c9:45:77:bd:18:3a:ec:28:c7:
                    4d:3c:dc:9a:ce:94:ae:70:fc:21:95:c9:30:5d:3c:6d:
                    6d:31:38:3c:0e:f4:56:bd:10:dd:a0:81:4e:42:6f:33:
                    10:04:42:3a:6a:f2:16:06:78:39:9a:67:c7:00:d4:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:82:93:9e:0c:11:fd:bb:18:72:e0:bf:35:5a:e5:cb:
        21:15:b5:a1:a3:fc:a1:2b:8f:53:e7:e7:52:c8:6e:be:
        f1:6c:6e:e2:b3:53:e8:07:80:5e:35:8d:65:8a:4d:49:
        c5:e1:84:5a:51:3f:59:88:fa:94:a2:ff:77:28:38:bf:
        1b:df:df:a6:03:e7:2d:6c:ab:34:47:36:60:42:13:8f:
        35:07:f1:ba:e9:d2:b5:0e:23:70:9f:b6:c9:f5:5f:54:
        08:3f:4d:cb:86:38:a9:21:6f:8e:b1:f6:a5:2c:d7:50:
        8e:70:64:53:28:ed:84:d8:36:6c:87:05:84:f8:72:dc:
        c4:07:5a:54:5e:90:50:42:ec:12:67:3e:df:8b:9d:2e:
        5e:b5:b9:5b:b2:50:5c:b3:21:22:28:29:a1:4b:29:c7:
        eb:b9:2c:c6:13:5a:07:f2:46:8c:30:ac:43:51:65:60:
        9c:7e:c3:47:f1:82:0f:7d:93:63:1f:f5:5f:5d:b6:af:
        55:eb:01:3b:a9:74:46:3a:4b:b1:77:9b:cf:04:e3:2a:
        a9:7a:b9:04:23:d7:88:d7:b1:c2:72:14:80:d7:8b:7d:
        f6:f3:55:7d:39:05:4b:84:b1:48:80:a8:a0:77:e1:59:
        9e:1b:19:69:2e:c9:7d:5b:56:13:0f:9f:a5:1e:f3:8c
    Fingerprint (SHA-256):
        00:18:37:E6:21:9B:92:CB:92:02:EC:E1:76:28:91:54:03:97:4B:3E:8E:34:A4:6E:EA:0C:4D:08:D7:1A:C9:85
    Fingerprint (SHA1):
        FE:D7:75:9C:BD:FF:EF:0D:9D:2B:9B:5B:4B:84:F0:03:FC:0C:8F:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7691: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123478 (0x310fde16)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:32 2017
            Not After : Tue Aug 23 12:34:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:e0:3e:ef:df:53:0b:93:a7:4e:b3:ff:b1:e6:10:53:
                    59:d9:80:d5:4c:71:f8:4c:7f:99:c1:00:43:5d:bf:85:
                    ff:16:1d:22:1c:c2:eb:12:8b:17:73:fe:a3:36:b6:ab:
                    e4:5b:22:c2:ba:02:a2:52:e1:0c:ff:ae:cc:de:57:5e:
                    53:aa:54:4d:0c:24:3d:32:96:8e:61:dc:9c:68:25:40:
                    fd:c4:ba:a5:8d:1e:91:eb:18:23:45:29:b0:ff:cb:e0:
                    51:e9:f9:d5:af:71:cb:c4:ac:15:c7:a4:72:27:05:7f:
                    9b:80:39:7d:46:d3:77:2a:62:97:9e:14:0c:78:4f:ea:
                    24:bb:ca:35:1c:91:a1:ce:ef:75:32:8a:e9:41:1e:91:
                    3e:6d:1a:de:f4:8b:4c:df:d9:ec:e3:4a:db:7e:e0:84:
                    52:1a:4f:10:6a:22:a0:92:e0:2b:7f:76:2e:2b:5d:83:
                    89:6f:c9:19:7d:91:05:d2:1f:82:13:65:e3:19:b2:22:
                    35:25:aa:9a:4b:ff:b3:b4:09:df:85:61:72:65:61:4f:
                    53:6e:4d:29:e4:25:97:b3:06:8f:c9:39:0d:32:f2:66:
                    a9:ad:d2:00:9e:fc:b5:7e:35:90:fd:f7:55:ca:56:e9:
                    7b:62:66:ff:ec:d9:ff:cb:5f:ff:7d:03:62:b0:d8:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:76:20:7c:14:d8:7d:31:6c:93:c3:71:3f:a8:55:d3:
        81:e1:55:6d:92:18:e6:fb:ff:f3:cf:05:e2:74:05:da:
        9d:ae:ca:99:7e:3e:4c:c9:41:29:44:30:30:22:c4:1e:
        50:4e:21:34:8c:53:c3:51:2f:a6:da:fb:63:91:d5:e9:
        aa:16:82:9c:4b:78:80:4a:cc:3d:d0:30:3e:14:03:b9:
        a2:b2:ee:ed:65:4b:a8:e5:d1:7b:b1:bc:7c:e8:5a:f4:
        12:87:07:bf:87:c6:e2:37:6f:3e:26:f2:4f:6f:73:3b:
        1a:d9:1f:66:0d:43:d4:3d:33:fe:49:db:32:63:03:de:
        b1:38:dc:bb:83:33:b1:34:17:6f:e6:b3:e9:b1:cf:10:
        5b:97:49:a7:d3:63:76:55:b8:7c:7f:5f:3d:e2:db:be:
        9e:d5:94:e6:e4:92:0b:30:01:d5:37:5d:c6:14:71:21:
        5b:64:ce:0b:45:97:4a:8e:05:6f:53:11:ae:f0:fb:ed:
        7e:01:ac:30:f8:06:28:51:83:69:45:e5:2a:e3:6f:b9:
        5c:d2:0c:f9:6a:64:6e:7a:e1:c7:07:08:da:16:a8:b5:
        a7:d4:45:5a:31:82:12:80:71:9f:fc:5d:d7:64:24:3e:
        7c:37:80:67:01:b1:a2:a8:ab:c0:2f:b6:c3:1e:8a:ec
    Fingerprint (SHA-256):
        0B:12:0F:A2:85:9E:A5:51:BE:5F:2F:03:A1:5F:01:4B:D4:2A:FA:6A:79:0D:C4:A1:5D:02:10:37:42:BC:C9:5E
    Fingerprint (SHA1):
        FF:27:BD:E8:9B:68:FC:7E:31:29:A1:C4:59:56:93:AF:D6:21:3B:96
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7692: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7693: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7694: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7695: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123476 (0x310fde14)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:31 2017
            Not After : Tue Aug 23 12:34:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:2c:70:b2:1d:2f:49:75:af:72:8a:5b:d4:a2:52:08:
                    77:e6:c1:26:cd:4b:ad:d1:0d:5a:96:08:a1:87:0f:af:
                    f0:46:b3:f5:8a:d6:ab:81:67:5f:60:f1:19:7f:50:8e:
                    d9:e2:df:2a:bc:44:90:44:fe:ed:e4:b3:8a:38:ac:58:
                    3a:5c:d9:03:2a:ad:0f:c1:81:f6:29:c9:17:32:a0:c5:
                    62:41:57:63:d2:01:fc:00:b2:5b:87:65:40:ca:0e:03:
                    b7:67:a7:7d:37:17:b6:45:2b:6e:1e:45:7d:d2:50:85:
                    c0:6a:e1:e5:7e:f0:4a:a9:cb:52:89:9e:4b:fd:2b:3b:
                    24:74:43:8f:42:4a:d3:ef:e5:66:33:48:b4:27:6b:e2:
                    30:44:90:4b:33:d9:14:ca:96:3e:17:ca:93:48:e5:40:
                    c8:16:61:88:7d:7c:eb:45:6d:ff:97:96:48:51:a1:12:
                    c1:db:a0:7a:ba:29:d5:cb:17:ab:86:55:9a:c1:df:4c:
                    6d:4f:25:f1:c1:5a:02:c9:45:77:bd:18:3a:ec:28:c7:
                    4d:3c:dc:9a:ce:94:ae:70:fc:21:95:c9:30:5d:3c:6d:
                    6d:31:38:3c:0e:f4:56:bd:10:dd:a0:81:4e:42:6f:33:
                    10:04:42:3a:6a:f2:16:06:78:39:9a:67:c7:00:d4:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:82:93:9e:0c:11:fd:bb:18:72:e0:bf:35:5a:e5:cb:
        21:15:b5:a1:a3:fc:a1:2b:8f:53:e7:e7:52:c8:6e:be:
        f1:6c:6e:e2:b3:53:e8:07:80:5e:35:8d:65:8a:4d:49:
        c5:e1:84:5a:51:3f:59:88:fa:94:a2:ff:77:28:38:bf:
        1b:df:df:a6:03:e7:2d:6c:ab:34:47:36:60:42:13:8f:
        35:07:f1:ba:e9:d2:b5:0e:23:70:9f:b6:c9:f5:5f:54:
        08:3f:4d:cb:86:38:a9:21:6f:8e:b1:f6:a5:2c:d7:50:
        8e:70:64:53:28:ed:84:d8:36:6c:87:05:84:f8:72:dc:
        c4:07:5a:54:5e:90:50:42:ec:12:67:3e:df:8b:9d:2e:
        5e:b5:b9:5b:b2:50:5c:b3:21:22:28:29:a1:4b:29:c7:
        eb:b9:2c:c6:13:5a:07:f2:46:8c:30:ac:43:51:65:60:
        9c:7e:c3:47:f1:82:0f:7d:93:63:1f:f5:5f:5d:b6:af:
        55:eb:01:3b:a9:74:46:3a:4b:b1:77:9b:cf:04:e3:2a:
        a9:7a:b9:04:23:d7:88:d7:b1:c2:72:14:80:d7:8b:7d:
        f6:f3:55:7d:39:05:4b:84:b1:48:80:a8:a0:77:e1:59:
        9e:1b:19:69:2e:c9:7d:5b:56:13:0f:9f:a5:1e:f3:8c
    Fingerprint (SHA-256):
        00:18:37:E6:21:9B:92:CB:92:02:EC:E1:76:28:91:54:03:97:4B:3E:8E:34:A4:6E:EA:0C:4D:08:D7:1A:C9:85
    Fingerprint (SHA1):
        FE:D7:75:9C:BD:FF:EF:0D:9D:2B:9B:5B:4B:84:F0:03:FC:0C:8F:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7696: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123480 (0x310fde18)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:33 2017
            Not After : Tue Aug 23 12:34:33 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:fe:78:a6:8e:17:23:86:26:3f:f4:fb:a8:10:f9:e7:
                    11:b4:ec:37:3b:8e:82:af:4e:6d:f8:6a:76:11:47:79:
                    82:60:ac:7a:2f:35:95:16:49:30:4f:8d:e5:56:37:fc:
                    dd:4f:46:e5:54:48:b5:34:bc:a9:b9:4b:dd:38:d0:2b:
                    ff:fd:32:f3:9c:e5:78:11:b7:a0:30:23:49:c2:48:29:
                    a9:05:97:b1:2c:97:87:11:d9:12:33:c7:99:ee:74:02:
                    3c:ba:d1:79:a0:c8:a1:e3:31:bd:5a:a8:88:50:de:bf:
                    50:fd:87:d0:50:9f:3b:9d:84:9f:a3:8f:99:02:d8:79:
                    28:de:3f:9f:fa:57:88:82:47:85:a2:89:02:c8:da:c8:
                    de:ed:6a:fd:e9:75:e1:28:a4:76:8c:f5:25:e8:ec:9a:
                    f9:90:3b:0d:cb:36:1e:a7:d1:dc:d1:c5:65:c7:92:dc:
                    e4:fd:7f:2d:11:e1:80:be:e2:31:21:f5:07:5f:81:b5:
                    1e:8a:47:09:49:81:7b:cf:ef:0a:de:9b:57:e3:e4:b3:
                    78:57:9a:58:31:a9:fc:1e:f1:b8:09:2a:32:33:4b:45:
                    fa:97:44:24:c5:95:a8:a8:a5:8a:40:43:a1:c5:e5:1f:
                    5b:86:03:75:27:4e:fd:03:b0:1c:7e:f9:5b:eb:99:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:8b:02:1a:0e:9f:65:04:a5:ba:0a:55:d2:c1:7b:a3:
        c8:5c:d0:e2:c2:03:03:59:b7:9e:41:62:d3:9b:af:b9:
        85:f7:f4:01:a1:d7:9f:79:30:2f:8b:9a:22:1a:8e:29:
        ca:d7:3f:2d:31:c7:99:49:04:2c:51:51:8e:77:e4:dc:
        99:e1:26:6c:2f:b8:20:66:44:ec:db:d3:b6:46:b1:19:
        f5:13:98:6b:29:10:ac:fb:2a:d2:4d:f5:6c:d6:34:d8:
        30:77:e6:e4:43:8d:71:a1:0f:ed:57:c8:ed:80:bb:8f:
        cd:ed:f1:91:b6:6a:8a:3e:e5:a1:59:41:51:fc:85:1c:
        33:7d:82:98:5b:ea:7a:69:f3:a9:2f:c5:42:26:93:4a:
        9c:94:6e:6d:c6:4b:d2:85:cd:3b:4a:89:f5:51:4c:f5:
        ee:ac:4d:64:81:93:42:53:66:ff:d5:1e:3e:9d:51:99:
        e2:37:28:1f:b9:8b:f4:90:d3:b4:2f:1d:9e:5c:50:03:
        c1:a0:e4:5d:f8:72:a2:f8:54:26:3f:0d:e1:97:a2:a7:
        d5:30:9d:76:d4:95:25:0e:9f:9e:fd:76:3e:5f:6d:06:
        fa:95:ff:d0:2d:14:5a:84:07:e3:46:96:26:d8:d8:fc:
        01:df:a9:df:d5:9d:78:c5:9d:36:e2:ff:d5:39:2e:b3
    Fingerprint (SHA-256):
        10:23:13:F4:E9:29:8A:C2:1B:D6:01:36:0F:DC:7C:D6:36:11:6E:10:D5:DA:3D:8E:01:0B:E8:17:E9:5A:6D:3E
    Fingerprint (SHA1):
        DE:68:B6:8E:64:40:37:F5:DF:C6:F5:E6:A8:9F:56:26:6E:6F:FE:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7697: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123476 (0x310fde14)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:31 2017
            Not After : Tue Aug 23 12:34:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:2c:70:b2:1d:2f:49:75:af:72:8a:5b:d4:a2:52:08:
                    77:e6:c1:26:cd:4b:ad:d1:0d:5a:96:08:a1:87:0f:af:
                    f0:46:b3:f5:8a:d6:ab:81:67:5f:60:f1:19:7f:50:8e:
                    d9:e2:df:2a:bc:44:90:44:fe:ed:e4:b3:8a:38:ac:58:
                    3a:5c:d9:03:2a:ad:0f:c1:81:f6:29:c9:17:32:a0:c5:
                    62:41:57:63:d2:01:fc:00:b2:5b:87:65:40:ca:0e:03:
                    b7:67:a7:7d:37:17:b6:45:2b:6e:1e:45:7d:d2:50:85:
                    c0:6a:e1:e5:7e:f0:4a:a9:cb:52:89:9e:4b:fd:2b:3b:
                    24:74:43:8f:42:4a:d3:ef:e5:66:33:48:b4:27:6b:e2:
                    30:44:90:4b:33:d9:14:ca:96:3e:17:ca:93:48:e5:40:
                    c8:16:61:88:7d:7c:eb:45:6d:ff:97:96:48:51:a1:12:
                    c1:db:a0:7a:ba:29:d5:cb:17:ab:86:55:9a:c1:df:4c:
                    6d:4f:25:f1:c1:5a:02:c9:45:77:bd:18:3a:ec:28:c7:
                    4d:3c:dc:9a:ce:94:ae:70:fc:21:95:c9:30:5d:3c:6d:
                    6d:31:38:3c:0e:f4:56:bd:10:dd:a0:81:4e:42:6f:33:
                    10:04:42:3a:6a:f2:16:06:78:39:9a:67:c7:00:d4:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:82:93:9e:0c:11:fd:bb:18:72:e0:bf:35:5a:e5:cb:
        21:15:b5:a1:a3:fc:a1:2b:8f:53:e7:e7:52:c8:6e:be:
        f1:6c:6e:e2:b3:53:e8:07:80:5e:35:8d:65:8a:4d:49:
        c5:e1:84:5a:51:3f:59:88:fa:94:a2:ff:77:28:38:bf:
        1b:df:df:a6:03:e7:2d:6c:ab:34:47:36:60:42:13:8f:
        35:07:f1:ba:e9:d2:b5:0e:23:70:9f:b6:c9:f5:5f:54:
        08:3f:4d:cb:86:38:a9:21:6f:8e:b1:f6:a5:2c:d7:50:
        8e:70:64:53:28:ed:84:d8:36:6c:87:05:84:f8:72:dc:
        c4:07:5a:54:5e:90:50:42:ec:12:67:3e:df:8b:9d:2e:
        5e:b5:b9:5b:b2:50:5c:b3:21:22:28:29:a1:4b:29:c7:
        eb:b9:2c:c6:13:5a:07:f2:46:8c:30:ac:43:51:65:60:
        9c:7e:c3:47:f1:82:0f:7d:93:63:1f:f5:5f:5d:b6:af:
        55:eb:01:3b:a9:74:46:3a:4b:b1:77:9b:cf:04:e3:2a:
        a9:7a:b9:04:23:d7:88:d7:b1:c2:72:14:80:d7:8b:7d:
        f6:f3:55:7d:39:05:4b:84:b1:48:80:a8:a0:77:e1:59:
        9e:1b:19:69:2e:c9:7d:5b:56:13:0f:9f:a5:1e:f3:8c
    Fingerprint (SHA-256):
        00:18:37:E6:21:9B:92:CB:92:02:EC:E1:76:28:91:54:03:97:4B:3E:8E:34:A4:6E:EA:0C:4D:08:D7:1A:C9:85
    Fingerprint (SHA1):
        FE:D7:75:9C:BD:FF:EF:0D:9D:2B:9B:5B:4B:84:F0:03:FC:0C:8F:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7698: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7699: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7700: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7701: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7702: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7703: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123481 (0x310fde19)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:33 2017
            Not After : Tue Aug 23 12:34:33 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:9d:b0:da:7d:86:c1:bb:57:36:68:19:cb:f0:9e:7d:
                    01:e1:20:a8:cb:17:0c:9f:1a:db:bc:ac:0e:3a:3b:56:
                    e0:00:e3:06:5e:ac:7f:69:49:1c:90:06:57:5b:bb:8d:
                    3a:5c:62:92:b4:63:0b:f3:ff:a0:41:8d:98:a7:50:25:
                    56:bc:e7:29:01:97:3e:b8:d8:3e:d2:91:3d:42:1f:9d:
                    68:7b:90:12:5b:7c:23:f5:70:00:d8:71:f7:e7:ba:b9:
                    16:6a:4f:c6:8f:9a:af:3a:96:f2:d3:a2:f1:09:4e:cb:
                    a2:2e:7f:4e:73:97:ee:40:82:0d:d6:76:b6:50:c1:88:
                    91:29:f4:e5:49:52:99:24:97:df:ef:0f:c5:d2:dc:fb:
                    89:c0:75:51:07:89:63:cd:46:29:1d:64:10:01:bc:55:
                    6d:8c:4e:7f:94:e7:ce:90:0c:a2:0b:14:f4:06:af:31:
                    40:cd:a1:4f:5f:25:81:36:45:20:1f:cd:d8:5d:7d:d6:
                    ac:d5:0c:a1:a5:60:fa:b8:7d:7a:56:c8:8f:4b:77:ea:
                    8a:cb:bb:45:e9:92:ec:77:6b:de:85:e2:dd:37:4c:b4:
                    f7:43:92:4c:fa:6c:a6:7b:38:c0:6f:14:ab:8a:c4:ca:
                    89:a8:84:8a:f6:92:fa:02:00:ae:55:67:8a:ef:94:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:c5:fb:88:c6:88:45:9e:0b:45:b8:0b:9c:e8:07:08:
        02:1e:dc:35:0b:67:d1:db:14:67:69:62:c6:10:04:4e:
        c5:fb:01:e1:b8:f6:60:50:4b:4e:55:43:d4:b1:62:ad:
        30:d5:d2:ff:ef:26:dd:af:12:d4:27:62:5c:4f:df:30:
        d4:e5:44:e0:79:fc:1c:68:2b:b2:4a:46:59:90:f9:fc:
        ba:3c:71:36:37:55:de:1f:77:54:b1:5f:b7:da:00:b2:
        4e:0f:53:90:77:fc:b5:c3:c8:4e:6e:b3:97:8f:ca:9a:
        38:db:02:7f:60:6a:0e:cd:17:cc:82:32:16:b2:20:23:
        59:8e:50:5b:bc:5f:c1:77:07:ce:26:7f:74:8f:aa:09:
        a1:d3:c3:85:b3:0c:43:3f:2d:1f:74:ba:f1:3c:7a:b6:
        4b:cf:1b:db:54:e6:84:85:15:81:b3:6b:92:51:d7:03:
        24:e2:b2:08:1f:73:f9:48:34:08:70:ff:7a:13:e1:3a:
        56:91:2c:f3:d2:1e:e8:99:c4:23:f9:f1:64:e9:ca:f4:
        c4:bc:52:89:4c:ae:1e:3c:f5:64:6c:74:22:e9:30:e1:
        39:40:53:9a:1c:27:c9:df:ef:d1:25:c2:30:fa:73:c5:
        2f:d0:06:a0:fb:b2:26:62:57:f2:1b:af:1c:d4:ca:0b
    Fingerprint (SHA-256):
        AB:95:63:F3:71:10:E9:78:70:82:E1:C4:B4:89:89:96:0C:1F:C5:9E:46:D7:BD:0D:CE:2E:30:B0:B0:A0:7F:D3
    Fingerprint (SHA1):
        14:89:B2:36:05:D3:0F:F1:2C:BB:51:31:06:BE:B4:77:52:55:21:EA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7704: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7705: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7706: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7707: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7708: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7709: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7710: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7711: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7712: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7713: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7714: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7715: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7716: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7717: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7718: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7719: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7720: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7721: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7722: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7723: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7724: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7725: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7726: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7727: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 19980 at Wed Aug 23 12:34:34 UTC 2017
kill -USR1 19980
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 19980 killed at Wed Aug 23 12:34:34 UTC 2017
httpserv starting at Wed Aug 23 12:34:34 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:34:34 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 3102 >/dev/null 2>/dev/null
httpserv with PID 3102 found at Wed Aug 23 12:34:34 UTC 2017
httpserv with PID 3102 started at Wed Aug 23 12:34:34 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7728: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123483 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7729: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7730: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7731: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123484 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7732: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7733: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7734: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7735: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123485 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7736: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7737: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123486 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7738: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7739: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7740: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7741: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7742: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 823123487   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7743: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7744: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7745: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #7746: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #7747: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123484 (0x310fde1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:35 2017
            Not After : Tue Aug 23 12:34:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:dd:1c:86:c9:4f:d1:c0:4c:73:ad:a7:73:6a:04:ba:
                    08:0a:37:6e:e6:c9:93:64:48:7c:76:42:7f:64:e5:3c:
                    9f:14:02:af:79:ef:0e:89:97:95:54:e2:e6:27:b4:36:
                    ac:15:02:cd:8f:a5:3b:63:15:a3:40:82:f8:d0:bb:18:
                    ba:47:f1:8e:4b:a7:93:ee:fe:bb:b7:cc:70:df:40:ec:
                    47:f7:22:3e:5a:8e:c4:bc:0e:c8:21:1b:de:a5:1f:63:
                    f8:d5:a6:fe:c9:04:a3:a1:88:48:06:51:c9:e4:f0:59:
                    4c:8b:02:70:3b:2b:96:b8:83:9d:a0:3f:05:eb:93:80:
                    83:8e:ab:84:b2:5a:cc:33:1a:13:6b:42:dd:29:ef:ec:
                    ed:c7:ba:74:c9:99:67:30:d2:cd:37:e0:a8:aa:bb:2e:
                    fb:9c:61:b7:ab:58:d4:b5:fa:14:fc:e4:e4:97:aa:86:
                    e9:13:fa:37:26:38:cb:92:68:c3:42:4b:ee:31:31:0d:
                    11:25:b3:2b:10:62:d1:2a:44:c9:03:c0:86:f5:28:95:
                    a3:fd:eb:d5:b6:ac:a2:f5:65:41:ed:eb:19:dc:ad:dc:
                    b2:6b:52:4b:6b:ad:d2:d8:21:0f:39:61:a7:4b:80:70:
                    f3:e4:41:f4:f9:6d:9b:60:8c:86:0c:d3:15:61:e7:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:12:b5:d0:1a:f6:fe:ff:62:3f:a0:b4:dd:59:ba:9c:
        06:cf:85:72:bc:39:ad:b1:7a:b8:53:57:a0:f5:74:54:
        93:26:fe:f8:db:2a:9b:24:dc:22:30:d1:6e:72:6f:1d:
        aa:d6:73:c1:00:f2:d9:25:9d:e7:7a:a4:07:90:3e:67:
        b2:d7:f1:9a:82:73:62:34:db:5a:b4:9a:85:65:c1:7f:
        48:d7:2b:2b:a7:82:8d:cb:76:5a:9e:e5:e9:e0:66:ed:
        17:7d:33:f9:92:f8:53:84:3e:ea:9b:a1:50:29:8e:91:
        a1:a2:9b:9f:82:02:4f:a1:d4:e9:88:5e:32:0f:c9:95:
        3d:95:0e:ce:a6:7b:f5:69:74:95:7c:45:f1:f5:3b:92:
        ff:1e:21:46:c8:1d:32:fc:8c:51:c8:72:42:6e:ff:cc:
        77:00:cf:e2:33:fc:ff:7e:2f:3e:d4:a6:a4:12:2c:42:
        74:f7:c0:fd:47:f7:61:32:9c:77:5b:28:e3:56:ef:23:
        18:96:e6:8b:13:ee:fe:9a:95:85:cb:87:34:35:d4:52:
        54:2a:a8:38:b9:00:22:9a:55:22:4e:84:63:ff:17:e4:
        b9:85:57:eb:9b:2f:08:ed:e9:91:54:5d:b3:7d:4d:e6:
        a4:6f:20:2d:f4:b3:b6:ab:c5:08:a8:d2:f0:66:3c:7d
    Fingerprint (SHA-256):
        D2:02:2B:CD:5E:84:A9:ED:AC:61:F5:39:55:EF:C5:62:56:C0:67:E0:EF:08:CB:EA:D4:3D:0C:38:2D:59:44:AA
    Fingerprint (SHA1):
        20:D4:11:DD:40:7E:42:B1:80:0B:CB:37:19:96:28:3A:7A:09:0D:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7748: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123483 (0x310fde1b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:34 2017
            Not After : Tue Aug 23 12:34:34 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:d5:08:80:26:70:52:f8:19:45:81:e8:8b:3c:8c:bb:
                    cf:55:00:ab:ec:6c:2d:a9:05:70:bd:7b:d4:f0:68:57:
                    04:12:00:7d:b6:7f:3e:2a:59:6e:88:cb:4d:68:45:2a:
                    07:3f:5b:40:d1:b0:82:b3:34:41:81:2e:b4:5e:a6:89:
                    2f:0c:47:3a:17:b1:84:e7:0f:96:b5:88:e1:b3:b9:de:
                    14:a1:8a:39:72:7c:c4:c7:55:f2:84:9b:68:af:dc:9e:
                    40:30:94:5a:59:44:3d:2b:40:84:2f:6d:aa:eb:58:59:
                    b8:dc:f4:ee:eb:3e:a0:5f:07:3a:d0:66:75:1a:56:ca:
                    7b:21:8d:47:fa:21:19:73:75:c9:4b:93:42:f9:12:d0:
                    83:57:41:88:45:fa:5d:46:d6:98:39:2a:e2:20:2b:e8:
                    39:af:af:bc:c1:67:53:e0:62:75:77:d4:6f:3f:e3:0d:
                    7a:95:00:de:a1:2a:b5:b9:e9:27:d2:73:b4:dc:10:55:
                    f4:d2:c1:d3:3d:95:82:ed:f0:4a:bf:42:ec:a2:e9:0f:
                    c4:ef:3c:b7:93:2f:cf:ba:5e:e7:74:db:e9:57:b2:74:
                    25:77:54:13:06:87:89:3e:10:0b:e2:e0:90:1e:3b:bd:
                    8c:a9:8e:16:b8:6e:58:d1:0c:2e:08:68:2c:21:7f:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:ff:23:c8:22:d0:da:7c:40:da:6f:52:b7:31:38:b9:
        05:d3:5f:ff:57:20:e3:bf:95:56:7c:7b:eb:d7:8e:08:
        90:5c:2f:29:5d:18:fd:96:87:df:cb:40:5a:ea:bc:45:
        d3:52:48:d9:a6:af:be:ed:7c:45:3a:2c:f1:6d:ff:7c:
        f1:72:61:1d:0d:be:a0:ed:79:c0:ef:d1:96:a0:78:f3:
        20:6b:25:50:b1:d0:67:14:b6:33:56:65:20:74:8c:79:
        c6:1e:5b:a0:32:fd:55:c9:c0:1f:27:9b:7b:06:3e:7a:
        5c:d9:cd:4e:40:9b:ae:3b:bb:ef:4e:05:10:23:5b:04:
        3f:f8:13:e4:6b:a8:69:a7:16:aa:f4:01:97:07:c6:0c:
        e5:9b:f3:5d:41:90:7a:fc:57:aa:1d:e3:4c:68:07:55:
        75:2b:d9:b4:74:da:0a:f6:67:ad:92:d9:db:7b:34:0e:
        64:2a:57:fc:e6:0f:de:7e:17:0b:97:15:5d:e6:f5:4f:
        cf:ea:a4:5e:f1:dc:8d:16:e9:b0:a0:8b:a8:bf:1f:9b:
        b4:93:56:e1:15:06:fa:6a:1c:3b:a1:4a:ea:0c:69:ab:
        d9:2c:9a:63:ca:04:5a:fa:99:f2:fa:a2:8a:f3:72:59:
        80:ef:91:18:ee:02:6c:83:de:7b:c8:a2:7d:c8:93:c3
    Fingerprint (SHA-256):
        0F:3A:74:F8:5E:65:53:25:29:92:D4:8D:57:92:98:41:18:4E:01:B0:D6:A9:EE:E8:FD:47:82:32:D8:20:40:3E
    Fingerprint (SHA1):
        49:D5:7A:42:40:28:B6:98:C8:3D:48:8F:AC:A6:74:97:05:C6:97:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7749: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7750: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #7751: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #7752: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123483 (0x310fde1b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:34 2017
            Not After : Tue Aug 23 12:34:34 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:d5:08:80:26:70:52:f8:19:45:81:e8:8b:3c:8c:bb:
                    cf:55:00:ab:ec:6c:2d:a9:05:70:bd:7b:d4:f0:68:57:
                    04:12:00:7d:b6:7f:3e:2a:59:6e:88:cb:4d:68:45:2a:
                    07:3f:5b:40:d1:b0:82:b3:34:41:81:2e:b4:5e:a6:89:
                    2f:0c:47:3a:17:b1:84:e7:0f:96:b5:88:e1:b3:b9:de:
                    14:a1:8a:39:72:7c:c4:c7:55:f2:84:9b:68:af:dc:9e:
                    40:30:94:5a:59:44:3d:2b:40:84:2f:6d:aa:eb:58:59:
                    b8:dc:f4:ee:eb:3e:a0:5f:07:3a:d0:66:75:1a:56:ca:
                    7b:21:8d:47:fa:21:19:73:75:c9:4b:93:42:f9:12:d0:
                    83:57:41:88:45:fa:5d:46:d6:98:39:2a:e2:20:2b:e8:
                    39:af:af:bc:c1:67:53:e0:62:75:77:d4:6f:3f:e3:0d:
                    7a:95:00:de:a1:2a:b5:b9:e9:27:d2:73:b4:dc:10:55:
                    f4:d2:c1:d3:3d:95:82:ed:f0:4a:bf:42:ec:a2:e9:0f:
                    c4:ef:3c:b7:93:2f:cf:ba:5e:e7:74:db:e9:57:b2:74:
                    25:77:54:13:06:87:89:3e:10:0b:e2:e0:90:1e:3b:bd:
                    8c:a9:8e:16:b8:6e:58:d1:0c:2e:08:68:2c:21:7f:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:ff:23:c8:22:d0:da:7c:40:da:6f:52:b7:31:38:b9:
        05:d3:5f:ff:57:20:e3:bf:95:56:7c:7b:eb:d7:8e:08:
        90:5c:2f:29:5d:18:fd:96:87:df:cb:40:5a:ea:bc:45:
        d3:52:48:d9:a6:af:be:ed:7c:45:3a:2c:f1:6d:ff:7c:
        f1:72:61:1d:0d:be:a0:ed:79:c0:ef:d1:96:a0:78:f3:
        20:6b:25:50:b1:d0:67:14:b6:33:56:65:20:74:8c:79:
        c6:1e:5b:a0:32:fd:55:c9:c0:1f:27:9b:7b:06:3e:7a:
        5c:d9:cd:4e:40:9b:ae:3b:bb:ef:4e:05:10:23:5b:04:
        3f:f8:13:e4:6b:a8:69:a7:16:aa:f4:01:97:07:c6:0c:
        e5:9b:f3:5d:41:90:7a:fc:57:aa:1d:e3:4c:68:07:55:
        75:2b:d9:b4:74:da:0a:f6:67:ad:92:d9:db:7b:34:0e:
        64:2a:57:fc:e6:0f:de:7e:17:0b:97:15:5d:e6:f5:4f:
        cf:ea:a4:5e:f1:dc:8d:16:e9:b0:a0:8b:a8:bf:1f:9b:
        b4:93:56:e1:15:06:fa:6a:1c:3b:a1:4a:ea:0c:69:ab:
        d9:2c:9a:63:ca:04:5a:fa:99:f2:fa:a2:8a:f3:72:59:
        80:ef:91:18:ee:02:6c:83:de:7b:c8:a2:7d:c8:93:c3
    Fingerprint (SHA-256):
        0F:3A:74:F8:5E:65:53:25:29:92:D4:8D:57:92:98:41:18:4E:01:B0:D6:A9:EE:E8:FD:47:82:32:D8:20:40:3E
    Fingerprint (SHA1):
        49:D5:7A:42:40:28:B6:98:C8:3D:48:8F:AC:A6:74:97:05:C6:97:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7753: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123484 (0x310fde1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:35 2017
            Not After : Tue Aug 23 12:34:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:dd:1c:86:c9:4f:d1:c0:4c:73:ad:a7:73:6a:04:ba:
                    08:0a:37:6e:e6:c9:93:64:48:7c:76:42:7f:64:e5:3c:
                    9f:14:02:af:79:ef:0e:89:97:95:54:e2:e6:27:b4:36:
                    ac:15:02:cd:8f:a5:3b:63:15:a3:40:82:f8:d0:bb:18:
                    ba:47:f1:8e:4b:a7:93:ee:fe:bb:b7:cc:70:df:40:ec:
                    47:f7:22:3e:5a:8e:c4:bc:0e:c8:21:1b:de:a5:1f:63:
                    f8:d5:a6:fe:c9:04:a3:a1:88:48:06:51:c9:e4:f0:59:
                    4c:8b:02:70:3b:2b:96:b8:83:9d:a0:3f:05:eb:93:80:
                    83:8e:ab:84:b2:5a:cc:33:1a:13:6b:42:dd:29:ef:ec:
                    ed:c7:ba:74:c9:99:67:30:d2:cd:37:e0:a8:aa:bb:2e:
                    fb:9c:61:b7:ab:58:d4:b5:fa:14:fc:e4:e4:97:aa:86:
                    e9:13:fa:37:26:38:cb:92:68:c3:42:4b:ee:31:31:0d:
                    11:25:b3:2b:10:62:d1:2a:44:c9:03:c0:86:f5:28:95:
                    a3:fd:eb:d5:b6:ac:a2:f5:65:41:ed:eb:19:dc:ad:dc:
                    b2:6b:52:4b:6b:ad:d2:d8:21:0f:39:61:a7:4b:80:70:
                    f3:e4:41:f4:f9:6d:9b:60:8c:86:0c:d3:15:61:e7:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:12:b5:d0:1a:f6:fe:ff:62:3f:a0:b4:dd:59:ba:9c:
        06:cf:85:72:bc:39:ad:b1:7a:b8:53:57:a0:f5:74:54:
        93:26:fe:f8:db:2a:9b:24:dc:22:30:d1:6e:72:6f:1d:
        aa:d6:73:c1:00:f2:d9:25:9d:e7:7a:a4:07:90:3e:67:
        b2:d7:f1:9a:82:73:62:34:db:5a:b4:9a:85:65:c1:7f:
        48:d7:2b:2b:a7:82:8d:cb:76:5a:9e:e5:e9:e0:66:ed:
        17:7d:33:f9:92:f8:53:84:3e:ea:9b:a1:50:29:8e:91:
        a1:a2:9b:9f:82:02:4f:a1:d4:e9:88:5e:32:0f:c9:95:
        3d:95:0e:ce:a6:7b:f5:69:74:95:7c:45:f1:f5:3b:92:
        ff:1e:21:46:c8:1d:32:fc:8c:51:c8:72:42:6e:ff:cc:
        77:00:cf:e2:33:fc:ff:7e:2f:3e:d4:a6:a4:12:2c:42:
        74:f7:c0:fd:47:f7:61:32:9c:77:5b:28:e3:56:ef:23:
        18:96:e6:8b:13:ee:fe:9a:95:85:cb:87:34:35:d4:52:
        54:2a:a8:38:b9:00:22:9a:55:22:4e:84:63:ff:17:e4:
        b9:85:57:eb:9b:2f:08:ed:e9:91:54:5d:b3:7d:4d:e6:
        a4:6f:20:2d:f4:b3:b6:ab:c5:08:a8:d2:f0:66:3c:7d
    Fingerprint (SHA-256):
        D2:02:2B:CD:5E:84:A9:ED:AC:61:F5:39:55:EF:C5:62:56:C0:67:E0:EF:08:CB:EA:D4:3D:0C:38:2D:59:44:AA
    Fingerprint (SHA1):
        20:D4:11:DD:40:7E:42:B1:80:0B:CB:37:19:96:28:3A:7A:09:0D:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7754: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #7755: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #7756: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7757: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7758: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7759: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123484 (0x310fde1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:35 2017
            Not After : Tue Aug 23 12:34:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:dd:1c:86:c9:4f:d1:c0:4c:73:ad:a7:73:6a:04:ba:
                    08:0a:37:6e:e6:c9:93:64:48:7c:76:42:7f:64:e5:3c:
                    9f:14:02:af:79:ef:0e:89:97:95:54:e2:e6:27:b4:36:
                    ac:15:02:cd:8f:a5:3b:63:15:a3:40:82:f8:d0:bb:18:
                    ba:47:f1:8e:4b:a7:93:ee:fe:bb:b7:cc:70:df:40:ec:
                    47:f7:22:3e:5a:8e:c4:bc:0e:c8:21:1b:de:a5:1f:63:
                    f8:d5:a6:fe:c9:04:a3:a1:88:48:06:51:c9:e4:f0:59:
                    4c:8b:02:70:3b:2b:96:b8:83:9d:a0:3f:05:eb:93:80:
                    83:8e:ab:84:b2:5a:cc:33:1a:13:6b:42:dd:29:ef:ec:
                    ed:c7:ba:74:c9:99:67:30:d2:cd:37:e0:a8:aa:bb:2e:
                    fb:9c:61:b7:ab:58:d4:b5:fa:14:fc:e4:e4:97:aa:86:
                    e9:13:fa:37:26:38:cb:92:68:c3:42:4b:ee:31:31:0d:
                    11:25:b3:2b:10:62:d1:2a:44:c9:03:c0:86:f5:28:95:
                    a3:fd:eb:d5:b6:ac:a2:f5:65:41:ed:eb:19:dc:ad:dc:
                    b2:6b:52:4b:6b:ad:d2:d8:21:0f:39:61:a7:4b:80:70:
                    f3:e4:41:f4:f9:6d:9b:60:8c:86:0c:d3:15:61:e7:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:12:b5:d0:1a:f6:fe:ff:62:3f:a0:b4:dd:59:ba:9c:
        06:cf:85:72:bc:39:ad:b1:7a:b8:53:57:a0:f5:74:54:
        93:26:fe:f8:db:2a:9b:24:dc:22:30:d1:6e:72:6f:1d:
        aa:d6:73:c1:00:f2:d9:25:9d:e7:7a:a4:07:90:3e:67:
        b2:d7:f1:9a:82:73:62:34:db:5a:b4:9a:85:65:c1:7f:
        48:d7:2b:2b:a7:82:8d:cb:76:5a:9e:e5:e9:e0:66:ed:
        17:7d:33:f9:92:f8:53:84:3e:ea:9b:a1:50:29:8e:91:
        a1:a2:9b:9f:82:02:4f:a1:d4:e9:88:5e:32:0f:c9:95:
        3d:95:0e:ce:a6:7b:f5:69:74:95:7c:45:f1:f5:3b:92:
        ff:1e:21:46:c8:1d:32:fc:8c:51:c8:72:42:6e:ff:cc:
        77:00:cf:e2:33:fc:ff:7e:2f:3e:d4:a6:a4:12:2c:42:
        74:f7:c0:fd:47:f7:61:32:9c:77:5b:28:e3:56:ef:23:
        18:96:e6:8b:13:ee:fe:9a:95:85:cb:87:34:35:d4:52:
        54:2a:a8:38:b9:00:22:9a:55:22:4e:84:63:ff:17:e4:
        b9:85:57:eb:9b:2f:08:ed:e9:91:54:5d:b3:7d:4d:e6:
        a4:6f:20:2d:f4:b3:b6:ab:c5:08:a8:d2:f0:66:3c:7d
    Fingerprint (SHA-256):
        D2:02:2B:CD:5E:84:A9:ED:AC:61:F5:39:55:EF:C5:62:56:C0:67:E0:EF:08:CB:EA:D4:3D:0C:38:2D:59:44:AA
    Fingerprint (SHA1):
        20:D4:11:DD:40:7E:42:B1:80:0B:CB:37:19:96:28:3A:7A:09:0D:B9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7760: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123484 (0x310fde1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:35 2017
            Not After : Tue Aug 23 12:34:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:dd:1c:86:c9:4f:d1:c0:4c:73:ad:a7:73:6a:04:ba:
                    08:0a:37:6e:e6:c9:93:64:48:7c:76:42:7f:64:e5:3c:
                    9f:14:02:af:79:ef:0e:89:97:95:54:e2:e6:27:b4:36:
                    ac:15:02:cd:8f:a5:3b:63:15:a3:40:82:f8:d0:bb:18:
                    ba:47:f1:8e:4b:a7:93:ee:fe:bb:b7:cc:70:df:40:ec:
                    47:f7:22:3e:5a:8e:c4:bc:0e:c8:21:1b:de:a5:1f:63:
                    f8:d5:a6:fe:c9:04:a3:a1:88:48:06:51:c9:e4:f0:59:
                    4c:8b:02:70:3b:2b:96:b8:83:9d:a0:3f:05:eb:93:80:
                    83:8e:ab:84:b2:5a:cc:33:1a:13:6b:42:dd:29:ef:ec:
                    ed:c7:ba:74:c9:99:67:30:d2:cd:37:e0:a8:aa:bb:2e:
                    fb:9c:61:b7:ab:58:d4:b5:fa:14:fc:e4:e4:97:aa:86:
                    e9:13:fa:37:26:38:cb:92:68:c3:42:4b:ee:31:31:0d:
                    11:25:b3:2b:10:62:d1:2a:44:c9:03:c0:86:f5:28:95:
                    a3:fd:eb:d5:b6:ac:a2:f5:65:41:ed:eb:19:dc:ad:dc:
                    b2:6b:52:4b:6b:ad:d2:d8:21:0f:39:61:a7:4b:80:70:
                    f3:e4:41:f4:f9:6d:9b:60:8c:86:0c:d3:15:61:e7:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:12:b5:d0:1a:f6:fe:ff:62:3f:a0:b4:dd:59:ba:9c:
        06:cf:85:72:bc:39:ad:b1:7a:b8:53:57:a0:f5:74:54:
        93:26:fe:f8:db:2a:9b:24:dc:22:30:d1:6e:72:6f:1d:
        aa:d6:73:c1:00:f2:d9:25:9d:e7:7a:a4:07:90:3e:67:
        b2:d7:f1:9a:82:73:62:34:db:5a:b4:9a:85:65:c1:7f:
        48:d7:2b:2b:a7:82:8d:cb:76:5a:9e:e5:e9:e0:66:ed:
        17:7d:33:f9:92:f8:53:84:3e:ea:9b:a1:50:29:8e:91:
        a1:a2:9b:9f:82:02:4f:a1:d4:e9:88:5e:32:0f:c9:95:
        3d:95:0e:ce:a6:7b:f5:69:74:95:7c:45:f1:f5:3b:92:
        ff:1e:21:46:c8:1d:32:fc:8c:51:c8:72:42:6e:ff:cc:
        77:00:cf:e2:33:fc:ff:7e:2f:3e:d4:a6:a4:12:2c:42:
        74:f7:c0:fd:47:f7:61:32:9c:77:5b:28:e3:56:ef:23:
        18:96:e6:8b:13:ee:fe:9a:95:85:cb:87:34:35:d4:52:
        54:2a:a8:38:b9:00:22:9a:55:22:4e:84:63:ff:17:e4:
        b9:85:57:eb:9b:2f:08:ed:e9:91:54:5d:b3:7d:4d:e6:
        a4:6f:20:2d:f4:b3:b6:ab:c5:08:a8:d2:f0:66:3c:7d
    Fingerprint (SHA-256):
        D2:02:2B:CD:5E:84:A9:ED:AC:61:F5:39:55:EF:C5:62:56:C0:67:E0:EF:08:CB:EA:D4:3D:0C:38:2D:59:44:AA
    Fingerprint (SHA1):
        20:D4:11:DD:40:7E:42:B1:80:0B:CB:37:19:96:28:3A:7A:09:0D:B9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7761: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #7762: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #7763: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7764: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #7765: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #7766: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123483 (0x310fde1b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:34 2017
            Not After : Tue Aug 23 12:34:34 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:d5:08:80:26:70:52:f8:19:45:81:e8:8b:3c:8c:bb:
                    cf:55:00:ab:ec:6c:2d:a9:05:70:bd:7b:d4:f0:68:57:
                    04:12:00:7d:b6:7f:3e:2a:59:6e:88:cb:4d:68:45:2a:
                    07:3f:5b:40:d1:b0:82:b3:34:41:81:2e:b4:5e:a6:89:
                    2f:0c:47:3a:17:b1:84:e7:0f:96:b5:88:e1:b3:b9:de:
                    14:a1:8a:39:72:7c:c4:c7:55:f2:84:9b:68:af:dc:9e:
                    40:30:94:5a:59:44:3d:2b:40:84:2f:6d:aa:eb:58:59:
                    b8:dc:f4:ee:eb:3e:a0:5f:07:3a:d0:66:75:1a:56:ca:
                    7b:21:8d:47:fa:21:19:73:75:c9:4b:93:42:f9:12:d0:
                    83:57:41:88:45:fa:5d:46:d6:98:39:2a:e2:20:2b:e8:
                    39:af:af:bc:c1:67:53:e0:62:75:77:d4:6f:3f:e3:0d:
                    7a:95:00:de:a1:2a:b5:b9:e9:27:d2:73:b4:dc:10:55:
                    f4:d2:c1:d3:3d:95:82:ed:f0:4a:bf:42:ec:a2:e9:0f:
                    c4:ef:3c:b7:93:2f:cf:ba:5e:e7:74:db:e9:57:b2:74:
                    25:77:54:13:06:87:89:3e:10:0b:e2:e0:90:1e:3b:bd:
                    8c:a9:8e:16:b8:6e:58:d1:0c:2e:08:68:2c:21:7f:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:ff:23:c8:22:d0:da:7c:40:da:6f:52:b7:31:38:b9:
        05:d3:5f:ff:57:20:e3:bf:95:56:7c:7b:eb:d7:8e:08:
        90:5c:2f:29:5d:18:fd:96:87:df:cb:40:5a:ea:bc:45:
        d3:52:48:d9:a6:af:be:ed:7c:45:3a:2c:f1:6d:ff:7c:
        f1:72:61:1d:0d:be:a0:ed:79:c0:ef:d1:96:a0:78:f3:
        20:6b:25:50:b1:d0:67:14:b6:33:56:65:20:74:8c:79:
        c6:1e:5b:a0:32:fd:55:c9:c0:1f:27:9b:7b:06:3e:7a:
        5c:d9:cd:4e:40:9b:ae:3b:bb:ef:4e:05:10:23:5b:04:
        3f:f8:13:e4:6b:a8:69:a7:16:aa:f4:01:97:07:c6:0c:
        e5:9b:f3:5d:41:90:7a:fc:57:aa:1d:e3:4c:68:07:55:
        75:2b:d9:b4:74:da:0a:f6:67:ad:92:d9:db:7b:34:0e:
        64:2a:57:fc:e6:0f:de:7e:17:0b:97:15:5d:e6:f5:4f:
        cf:ea:a4:5e:f1:dc:8d:16:e9:b0:a0:8b:a8:bf:1f:9b:
        b4:93:56:e1:15:06:fa:6a:1c:3b:a1:4a:ea:0c:69:ab:
        d9:2c:9a:63:ca:04:5a:fa:99:f2:fa:a2:8a:f3:72:59:
        80:ef:91:18:ee:02:6c:83:de:7b:c8:a2:7d:c8:93:c3
    Fingerprint (SHA-256):
        0F:3A:74:F8:5E:65:53:25:29:92:D4:8D:57:92:98:41:18:4E:01:B0:D6:A9:EE:E8:FD:47:82:32:D8:20:40:3E
    Fingerprint (SHA1):
        49:D5:7A:42:40:28:B6:98:C8:3D:48:8F:AC:A6:74:97:05:C6:97:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7767: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123483 (0x310fde1b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:34 2017
            Not After : Tue Aug 23 12:34:34 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:d5:08:80:26:70:52:f8:19:45:81:e8:8b:3c:8c:bb:
                    cf:55:00:ab:ec:6c:2d:a9:05:70:bd:7b:d4:f0:68:57:
                    04:12:00:7d:b6:7f:3e:2a:59:6e:88:cb:4d:68:45:2a:
                    07:3f:5b:40:d1:b0:82:b3:34:41:81:2e:b4:5e:a6:89:
                    2f:0c:47:3a:17:b1:84:e7:0f:96:b5:88:e1:b3:b9:de:
                    14:a1:8a:39:72:7c:c4:c7:55:f2:84:9b:68:af:dc:9e:
                    40:30:94:5a:59:44:3d:2b:40:84:2f:6d:aa:eb:58:59:
                    b8:dc:f4:ee:eb:3e:a0:5f:07:3a:d0:66:75:1a:56:ca:
                    7b:21:8d:47:fa:21:19:73:75:c9:4b:93:42:f9:12:d0:
                    83:57:41:88:45:fa:5d:46:d6:98:39:2a:e2:20:2b:e8:
                    39:af:af:bc:c1:67:53:e0:62:75:77:d4:6f:3f:e3:0d:
                    7a:95:00:de:a1:2a:b5:b9:e9:27:d2:73:b4:dc:10:55:
                    f4:d2:c1:d3:3d:95:82:ed:f0:4a:bf:42:ec:a2:e9:0f:
                    c4:ef:3c:b7:93:2f:cf:ba:5e:e7:74:db:e9:57:b2:74:
                    25:77:54:13:06:87:89:3e:10:0b:e2:e0:90:1e:3b:bd:
                    8c:a9:8e:16:b8:6e:58:d1:0c:2e:08:68:2c:21:7f:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:ff:23:c8:22:d0:da:7c:40:da:6f:52:b7:31:38:b9:
        05:d3:5f:ff:57:20:e3:bf:95:56:7c:7b:eb:d7:8e:08:
        90:5c:2f:29:5d:18:fd:96:87:df:cb:40:5a:ea:bc:45:
        d3:52:48:d9:a6:af:be:ed:7c:45:3a:2c:f1:6d:ff:7c:
        f1:72:61:1d:0d:be:a0:ed:79:c0:ef:d1:96:a0:78:f3:
        20:6b:25:50:b1:d0:67:14:b6:33:56:65:20:74:8c:79:
        c6:1e:5b:a0:32:fd:55:c9:c0:1f:27:9b:7b:06:3e:7a:
        5c:d9:cd:4e:40:9b:ae:3b:bb:ef:4e:05:10:23:5b:04:
        3f:f8:13:e4:6b:a8:69:a7:16:aa:f4:01:97:07:c6:0c:
        e5:9b:f3:5d:41:90:7a:fc:57:aa:1d:e3:4c:68:07:55:
        75:2b:d9:b4:74:da:0a:f6:67:ad:92:d9:db:7b:34:0e:
        64:2a:57:fc:e6:0f:de:7e:17:0b:97:15:5d:e6:f5:4f:
        cf:ea:a4:5e:f1:dc:8d:16:e9:b0:a0:8b:a8:bf:1f:9b:
        b4:93:56:e1:15:06:fa:6a:1c:3b:a1:4a:ea:0c:69:ab:
        d9:2c:9a:63:ca:04:5a:fa:99:f2:fa:a2:8a:f3:72:59:
        80:ef:91:18:ee:02:6c:83:de:7b:c8:a2:7d:c8:93:c3
    Fingerprint (SHA-256):
        0F:3A:74:F8:5E:65:53:25:29:92:D4:8D:57:92:98:41:18:4E:01:B0:D6:A9:EE:E8:FD:47:82:32:D8:20:40:3E
    Fingerprint (SHA1):
        49:D5:7A:42:40:28:B6:98:C8:3D:48:8F:AC:A6:74:97:05:C6:97:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7768: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #7769: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123488 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7770: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #7771: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #7772: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123489 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7773: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #7774: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #7775: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123490 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7776: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #7777: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #7778: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123491 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7779: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #7780: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #7781: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123492 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7782: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #7783: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #7784: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123493 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7785: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #7786: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #7787: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123494 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7788: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #7789: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #7790: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123495 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7791: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #7792: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #7793: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123496 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7794: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #7795: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #7796: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7797: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 823123497 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7798: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7799: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 823123498 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7800: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7801: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 823123499 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7802: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7803: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #7804: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #7805: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7806: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 823123500 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7807: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7808: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 823123501 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7809: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7810: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 823123502 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7811: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7812: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #7813: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #7814: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7815: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 823123503 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7816: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7817: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 823123504 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7818: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7819: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 823123505 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7820: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7821: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #7822: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #7823: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7824: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 823123506 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7825: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7826: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 823123507 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7827: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7828: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 823123508 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7829: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7830: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #7831: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7832: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7833: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 823123509   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7834: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7835: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7836: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7837: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123510   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7838: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7839: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123488 (0x310fde20)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:36 2017
            Not After : Tue Aug 23 12:34:36 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:7c:66:c0:04:1e:65:a7:83:c4:3b:97:e6:ee:64:af:
                    df:5c:a4:16:82:17:a1:81:3e:ed:2d:91:8c:74:8a:85:
                    cc:9f:89:d8:72:03:fb:8f:20:83:6e:e0:60:eb:67:31:
                    9f:a7:80:62:39:55:24:db:af:0b:ae:bb:ed:1c:4b:cc:
                    e7:1f:0b:be:8b:dd:7d:f8:c4:3a:f3:8d:c3:a2:98:d8:
                    9d:38:0c:e2:5f:ed:b3:7a:04:c9:a5:29:c3:27:d9:b1:
                    e7:73:d6:b6:53:8d:fe:f0:4c:79:e4:10:6e:ad:c1:6e:
                    13:84:a7:81:3d:37:b7:23:c6:c7:c9:6b:7d:9f:e3:82:
                    c3:ff:73:07:e0:f8:5c:11:32:d7:0e:aa:87:50:b6:82:
                    81:62:6d:fe:43:61:65:a2:eb:a9:d5:84:89:49:3b:b9:
                    88:70:cf:4f:fe:30:32:2a:f5:df:86:44:e9:99:f9:4d:
                    c9:4e:fb:45:2c:eb:ba:38:58:89:3b:09:fb:cd:b2:dc:
                    3e:9c:46:3d:9c:57:fa:26:74:af:9b:2a:03:c5:f5:c2:
                    b9:c3:87:c1:9f:1f:17:5e:a2:3a:d0:84:48:2b:62:6e:
                    a6:01:31:cb:ac:ca:8a:b2:1f:6a:55:20:7b:5f:ee:96:
                    15:fc:72:23:ac:79:52:c5:e5:8b:59:ee:ce:ca:e9:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:96:6e:6b:38:6f:df:94:61:8a:82:8e:18:c5:81:a1:
        f9:43:a9:33:9f:b5:e6:ad:5a:82:f7:58:77:8a:e0:53:
        8b:5e:53:67:9c:7d:19:70:6f:ad:63:67:0b:57:00:80:
        7a:67:cc:1d:26:51:4a:61:21:8a:93:6d:48:de:7d:a8:
        a0:91:98:51:d6:4c:db:fc:0a:10:74:06:9a:d3:c0:1e:
        82:dc:44:a4:78:4d:b5:11:43:e1:2e:31:ee:43:7e:17:
        11:86:6d:34:7b:74:f4:43:8c:67:c6:c6:29:f0:30:ae:
        8c:67:2f:29:16:b3:c2:ce:4a:3a:b1:0b:c5:a5:7a:e8:
        1b:3d:5c:a8:24:76:05:ad:6d:e0:07:16:ac:d8:3f:72:
        93:84:a7:35:cc:92:ef:f6:9b:99:2e:96:7d:d8:66:89:
        1e:b4:5f:bf:72:35:30:ab:5b:18:9c:03:d3:ec:3c:ed:
        eb:12:1c:7e:b3:70:19:58:e3:39:e2:b8:1c:84:9a:02:
        6f:50:07:cb:69:7b:28:a9:6d:6d:3f:e1:4c:4c:9e:82:
        44:d1:88:eb:69:3f:94:36:0a:f4:a4:4b:ba:b5:05:54:
        0b:69:58:7f:f0:f1:ee:57:a5:89:ef:8c:4a:4c:c6:cf:
        e2:fe:f2:e6:d5:ea:55:9e:6d:28:1a:83:68:c8:c2:c7
    Fingerprint (SHA-256):
        3D:E7:48:CF:C1:BE:C4:86:06:B7:87:B1:EB:43:A6:13:2C:3A:88:9E:F4:1B:D0:2E:12:09:37:8F:38:91:FC:1F
    Fingerprint (SHA1):
        2C:0C:3E:15:46:47:28:0B:5A:C0:10:99:62:CD:61:B3:7F:46:A5:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7840: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123489 (0x310fde21)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:36 2017
            Not After : Tue Aug 23 12:34:36 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:3f:91:89:75:c0:91:1a:57:25:38:35:8e:82:e6:e2:
                    76:15:93:87:2a:bb:38:7d:56:33:f2:17:2c:5e:fc:c8:
                    3b:d0:ed:6e:44:f7:5c:95:1f:90:ef:8f:72:c8:c9:e6:
                    b2:d8:2f:4f:41:64:90:e9:0b:ca:09:4b:d5:59:0b:dd:
                    71:cc:ed:fa:fa:69:a3:b5:b3:6e:26:ad:33:7a:34:df:
                    f5:67:99:a9:d8:f8:aa:9b:61:ab:4f:6c:81:f0:b3:c5:
                    68:1c:64:8f:28:bf:57:53:9b:ee:30:c3:e6:33:6a:31:
                    45:70:95:84:2a:a5:96:9f:a9:7e:d3:e3:fe:9d:02:29:
                    8a:4d:3c:4e:57:ac:6a:c0:1f:37:9a:6e:9d:61:31:49:
                    70:e7:55:e9:97:e2:2f:fa:c1:6f:06:4d:8c:f1:7b:fb:
                    8e:82:4f:b8:9c:df:7d:83:03:fd:90:a2:14:1f:9e:c0:
                    6b:49:91:c7:05:2b:ef:5d:3e:0c:b8:9f:c5:b6:42:f4:
                    9d:a0:48:c1:f6:b7:8b:ba:c4:c5:d1:05:44:06:67:83:
                    12:85:af:21:4a:78:dd:35:0a:c1:d0:09:9f:a7:72:50:
                    c3:33:e7:8c:c1:b7:9d:ac:0f:0e:20:ec:53:10:22:59:
                    5c:bf:c7:a1:d2:d7:36:79:4c:24:97:82:82:16:a2:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:45:6e:d4:c9:06:1c:f3:31:bc:34:44:91:05:a4:f7:
        d1:94:9f:b7:15:62:2a:b6:51:7b:76:a5:ab:db:d8:a7:
        48:f0:7e:b8:fc:cc:7b:28:e8:5c:13:53:f4:1c:7a:23:
        06:c1:83:cf:0e:fa:7a:3b:b2:6b:7a:79:e2:57:65:ac:
        a6:95:f6:55:23:dd:8b:7f:92:34:50:eb:7f:6e:0a:c1:
        a0:87:7e:df:16:ca:82:22:70:4e:3e:78:3e:0b:d3:29:
        32:b5:6c:9b:ef:40:71:45:c4:31:28:6e:32:a3:0a:dd:
        ce:0c:eb:77:dd:90:71:08:b9:27:79:9a:40:25:81:4b:
        76:75:04:3f:68:7d:72:76:15:24:b5:67:c8:56:54:a6:
        36:17:a1:71:c6:fe:31:3a:fd:e7:4b:d6:be:0a:48:75:
        5e:a4:1f:cb:47:5f:52:22:09:93:c8:34:cd:b7:dd:25:
        dc:38:c7:cd:5b:06:a3:9d:12:cc:d0:e3:9c:1f:32:5a:
        0b:40:af:53:34:8b:91:5a:60:43:3b:87:d8:34:76:b7:
        4c:3d:0a:9e:30:90:f6:f8:ea:e2:d1:89:ff:54:e2:a0:
        80:c9:79:e9:a9:ce:83:c2:0d:e1:8b:03:51:2b:78:6d:
        d8:bb:ef:7c:de:4a:32:9e:a6:4f:bd:0e:77:bd:e1:8f
    Fingerprint (SHA-256):
        07:CD:74:A0:34:19:3C:77:66:6D:AE:BE:62:50:A3:59:EF:86:FE:31:0D:A6:FF:94:B4:81:BA:34:3D:8D:AB:57
    Fingerprint (SHA1):
        7C:59:B7:88:B1:49:35:29:E6:B3:6A:89:6E:EB:98:5C:AA:82:7D:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7841: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123490 (0x310fde22)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:37 2017
            Not After : Tue Aug 23 12:34:37 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:48:da:8b:0d:b2:46:3d:36:43:52:9b:4b:8f:cb:72:
                    77:3f:95:a3:cb:36:8c:43:5b:6b:bd:8c:ca:45:6f:2a:
                    c1:ae:f7:eb:bc:77:07:95:84:83:81:16:1a:c5:72:34:
                    d8:14:a4:d3:21:04:56:fb:77:1a:82:e5:3a:f9:86:f8:
                    f7:89:21:ec:dd:59:ab:00:e2:3e:72:a2:88:a0:9c:89:
                    03:9a:6d:4a:13:bf:f9:58:45:27:91:b6:17:6e:72:a5:
                    eb:0a:de:63:29:5f:e0:84:02:ec:9e:46:96:68:7f:71:
                    a8:62:86:f0:22:a6:dc:6d:80:66:2d:1f:f7:cb:df:17:
                    45:32:68:72:a7:56:97:7b:44:34:c6:7d:cd:5c:0f:4d:
                    13:4a:48:f6:c4:bd:c8:18:97:2e:ae:d3:33:44:5a:17:
                    60:75:04:8a:6c:c6:2b:9c:cd:19:60:36:9b:88:7d:70:
                    1b:e9:09:17:99:8a:43:77:fc:74:bd:f0:54:ee:95:02:
                    37:2b:f7:dc:53:7a:5c:7e:7e:0b:55:0d:de:cd:05:75:
                    db:9f:78:da:6f:57:06:d6:9d:a1:9d:65:69:81:e6:d5:
                    ef:7f:0b:ea:87:0b:b8:7a:ed:63:56:d9:c4:1d:9b:0c:
                    5c:db:3f:9e:0f:f5:09:53:6f:1c:55:83:40:05:4a:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:e2:87:c4:bb:61:02:dd:fb:03:d7:e8:99:55:18:da:
        cc:49:a7:b1:4e:88:35:eb:68:af:71:21:48:e8:2d:fe:
        e8:dc:94:07:0c:d4:02:30:82:40:79:84:d4:91:89:b4:
        05:90:22:d9:e6:b8:0c:80:ba:8f:58:e9:91:19:8a:2f:
        6f:cc:8d:bf:09:d6:ce:be:75:79:a6:4a:d9:95:bb:2a:
        6a:72:de:99:4d:3c:ae:9f:f2:c8:09:6c:4f:79:3a:04:
        c9:9a:86:27:84:80:77:d8:73:d8:80:60:d9:5b:ab:d5:
        5f:cd:31:09:51:e1:b9:bb:04:3b:a9:b6:71:cf:38:77:
        a6:0e:8c:ec:fc:dd:96:50:1a:c9:1a:fe:4a:4b:d6:36:
        d4:e4:18:92:7c:f3:ef:aa:68:09:10:70:a9:f2:85:58:
        ce:ac:e2:9f:43:b2:31:ed:7b:38:53:ae:e5:ba:45:2d:
        8f:03:ab:82:c2:5a:53:14:10:9c:7b:9e:37:10:a5:dd:
        a6:4d:af:3c:5c:30:34:57:14:6d:f3:d2:50:c2:73:6a:
        9a:e4:1f:fc:82:eb:d2:1b:aa:6c:f4:74:dc:71:59:a1:
        61:9a:62:b8:0c:e8:06:42:8a:cb:42:50:12:86:99:82:
        65:64:2b:3e:ba:18:77:42:8e:a3:8c:2e:da:87:fd:36
    Fingerprint (SHA-256):
        E8:46:F5:0B:82:82:AE:96:2E:CC:21:02:AD:EF:FB:FC:61:47:2E:68:68:22:D7:E7:23:37:C7:FA:11:D7:83:24
    Fingerprint (SHA1):
        3A:DE:1A:BC:1A:A2:2C:AC:2C:DF:A6:BB:31:9C:4B:0E:C7:BC:33:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7842: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123491 (0x310fde23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:37 2017
            Not After : Tue Aug 23 12:34:37 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:02:82:c7:1d:d4:4e:f1:24:ab:43:49:1b:44:83:e2:
                    78:3b:06:e5:60:e5:f3:9e:49:54:c8:86:8b:23:ec:74:
                    45:79:09:e3:21:35:5a:3a:60:10:6e:7a:0c:3e:5c:72:
                    c0:38:05:08:8b:c5:cd:9b:00:e4:81:af:25:b9:0e:d7:
                    36:55:34:6e:dd:d7:d7:09:45:ae:a9:0f:87:5d:c1:37:
                    9e:9e:4c:21:60:38:83:6d:59:e6:d9:21:8c:cc:22:01:
                    cc:b3:9a:c0:b6:6b:1a:9c:00:0f:18:c1:48:18:34:52:
                    3c:b5:ac:d7:e1:56:c5:6a:1c:7c:6d:8f:50:be:1b:be:
                    7c:24:dd:be:d7:99:46:58:ce:9d:bb:fb:e4:86:e4:34:
                    bd:25:7f:93:f8:0f:76:a5:6e:a1:4d:b6:c8:37:2f:5d:
                    67:96:1f:7b:a3:cd:f4:76:bf:d8:22:8d:47:70:f9:b9:
                    95:f0:c1:e0:d1:ac:d0:8a:61:ab:d7:1d:c4:60:5a:fc:
                    ec:e8:55:85:5a:7d:bd:d7:4b:65:ba:a0:ef:cc:3f:13:
                    1f:8b:04:44:c2:52:52:44:3c:40:56:2f:02:5c:42:64:
                    7a:b5:a3:8f:06:ab:d1:28:f2:b9:bc:43:a9:6d:be:6a:
                    07:45:51:ba:53:5d:6a:db:a8:36:f2:d4:9c:55:56:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:06:3b:b8:28:d2:ca:76:ee:09:dd:bb:6f:27:31:fc:
        cb:75:b1:09:63:e7:c4:f0:ce:4a:31:d0:f3:59:99:19:
        60:ca:aa:41:45:14:85:c1:00:c8:8d:35:dd:6c:86:40:
        a8:ff:74:19:ff:59:e0:cc:e4:0f:4c:fd:a8:b2:2f:9e:
        1d:85:e6:cb:bf:93:ba:64:26:d4:e7:24:fc:e4:01:ad:
        5e:8b:2c:56:7f:4a:00:56:45:ad:db:76:6a:db:9c:76:
        63:bf:90:20:41:cb:0b:80:cb:d8:c1:25:20:76:7c:aa:
        20:59:23:ba:6b:18:a4:c9:f4:be:70:a6:16:dc:71:c9:
        23:f5:73:c2:e0:b6:92:1c:fe:00:c6:fe:f1:ae:37:d7:
        6b:db:64:c0:da:45:46:e6:7b:85:20:a2:3b:7d:49:6a:
        ea:2f:d8:6d:bf:a6:a1:ec:38:1b:da:e8:fe:1f:b6:68:
        9b:c8:0d:44:93:5c:e0:95:be:fe:42:35:e6:e7:21:cd:
        62:87:e1:de:62:e4:cb:ac:b6:76:94:b0:6b:2f:3c:32:
        3f:ab:c6:3e:5f:8b:7d:24:f5:e5:40:af:e9:a4:8f:1b:
        cb:15:4e:d1:f0:d6:8d:41:b2:0a:8f:a8:97:fe:28:85:
        93:c8:7b:34:bf:d8:c6:d1:2c:5b:0a:55:3e:8d:23:9a
    Fingerprint (SHA-256):
        D6:EF:FD:65:81:66:0A:10:FA:AD:37:24:FC:DA:A2:FA:9D:AA:CE:84:FA:CC:74:83:F5:13:25:F2:52:F3:B6:26
    Fingerprint (SHA1):
        EF:21:BB:4A:D4:8C:FD:28:F3:D6:B5:7F:17:74:55:9A:3C:2A:35:89
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7843: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123492 (0x310fde24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:37 2017
            Not After : Tue Aug 23 12:34:37 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:1d:ff:e4:08:53:eb:6e:53:be:74:71:7b:81:a0:00:
                    6d:1f:ee:8c:c2:a9:77:1d:10:6a:0f:7f:4c:22:07:6e:
                    6c:17:0f:67:ab:a3:cb:59:11:79:ba:1e:1d:c4:1c:5e:
                    f7:44:d1:2a:72:bb:68:11:60:a4:dd:eb:b9:10:34:d7:
                    39:b6:83:18:3e:3c:d8:fc:a9:6b:ef:6b:99:29:56:5b:
                    60:ee:f9:fe:2f:c9:8a:57:51:b5:0f:e1:2d:dc:19:6c:
                    4f:78:72:ef:f5:96:ea:f6:2f:8d:0a:a3:1a:8a:46:be:
                    4d:da:fa:7e:e5:a3:21:10:c8:68:fd:fe:5d:26:4c:24:
                    c2:69:12:95:69:db:0c:e1:ff:18:5c:15:3c:24:86:45:
                    35:e9:a2:58:d1:32:5c:df:a1:31:fb:b2:7b:c6:d8:f5:
                    e3:56:d1:c5:db:bc:1a:d2:17:bb:0d:59:82:fc:12:34:
                    d6:9f:8b:d6:75:4d:02:69:0e:48:29:be:a0:6a:56:d3:
                    36:37:9a:54:c2:ad:66:09:4e:bc:2e:8b:1f:14:91:fc:
                    b6:d4:07:7b:53:60:48:3a:64:c4:46:a9:e1:af:6e:7f:
                    99:0a:4c:db:fe:0b:b2:c8:76:ea:9f:c9:2f:89:e8:d9:
                    d3:83:e9:b0:42:c8:07:ce:cf:bd:3b:23:44:65:27:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f2:21:75:68:99:46:59:2f:c7:75:c2:2f:27:4b:84:
        98:47:9b:15:d0:73:b9:f6:e1:32:fd:f6:4a:18:8f:e3:
        c4:83:76:af:42:4a:36:52:c9:7d:a7:ea:ec:1f:d8:24:
        b1:8c:d4:86:ec:3c:e0:43:a0:c3:cd:70:37:cd:a1:0e:
        63:a2:62:0b:d6:b3:e7:74:4e:98:3b:8e:bc:6f:db:cf:
        31:71:5b:e5:b5:1e:bc:cf:97:26:5b:f5:13:7f:7e:3d:
        02:24:20:d2:b5:2d:89:59:30:1c:34:6e:0f:bc:ef:e6:
        ef:50:34:f1:a4:ba:0e:07:40:ef:4b:c8:0a:c0:1e:82:
        90:31:ea:d6:7e:27:58:6a:d6:d9:9d:0b:e7:ad:e3:66:
        5e:c1:28:b2:e8:63:9b:e9:b5:40:a5:c5:0e:2c:76:7c:
        f5:9e:24:5e:16:05:c6:60:c0:89:60:e7:a4:9f:bc:83:
        67:a2:ee:7c:ad:7a:f7:2b:9f:cd:20:74:ec:6e:09:c6:
        4f:ef:8c:e9:1d:f1:d3:95:1d:a6:9c:7c:56:31:4e:1c:
        3e:67:26:34:fc:f9:c8:39:f0:ae:63:9f:74:f2:d0:a1:
        92:84:23:8b:38:3b:e8:f5:b6:48:59:f7:8f:34:5f:93:
        5e:26:00:fc:ea:7d:0f:81:26:25:30:cd:8e:8d:b8:f7
    Fingerprint (SHA-256):
        22:CF:84:2D:03:87:E1:C7:38:EF:78:44:27:89:CE:9C:B6:F7:F4:C0:C5:1E:A8:8F:D1:AE:52:24:C5:27:CA:7C
    Fingerprint (SHA1):
        CC:F0:93:6B:CE:AF:0B:15:D4:6F:CA:FA:B3:C4:3E:04:E8:6A:FE:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7844: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123493 (0x310fde25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:37 2017
            Not After : Tue Aug 23 12:34:37 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:be:79:87:72:b0:99:eb:15:d4:e0:3a:94:54:df:7a:
                    c6:96:23:bd:fa:bd:8b:71:6b:6d:66:81:fb:33:61:d2:
                    bc:d9:9f:2a:dd:ef:eb:e7:82:bf:05:9c:43:24:21:0e:
                    20:c1:e1:8a:96:75:e7:93:a6:c4:1e:45:f2:5a:56:1b:
                    11:15:d4:71:a3:6c:d6:f7:83:2d:38:5b:6b:08:6e:03:
                    ac:36:7e:a4:79:47:a7:79:b2:4e:e2:f6:f1:8e:86:8c:
                    75:b2:9f:3e:d9:99:34:69:5c:05:18:63:00:55:e8:f4:
                    63:a8:e7:a3:d9:f7:4f:5a:5f:ad:94:55:b4:23:17:b4:
                    09:7c:a0:19:de:9f:56:c5:48:a9:c8:32:61:cb:35:d0:
                    19:ea:7f:75:00:4c:d4:a2:1f:00:a4:02:1a:6e:c3:e2:
                    cc:0e:e4:7d:60:4a:1e:78:67:7d:92:ed:92:a6:3f:47:
                    25:79:99:57:c8:3f:ea:f8:b0:02:c1:84:2d:b3:11:52:
                    a1:11:13:12:38:9d:be:c7:f8:d3:58:45:c0:c9:ec:8b:
                    d4:5f:db:ce:c9:11:99:da:af:bc:86:50:6d:9a:eb:fd:
                    26:a0:41:7a:21:9d:94:30:15:ae:e2:f0:ca:79:d2:1c:
                    24:be:d2:89:d7:f7:40:69:88:a1:f3:33:5f:f0:7e:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:ed:d6:58:f2:4f:66:ee:cd:5d:7b:23:3d:24:8c:68:
        f6:18:43:5d:ef:ea:93:01:a4:47:49:79:65:92:aa:76:
        e0:e3:60:02:08:a1:80:46:4f:05:98:ee:f2:51:72:f5:
        3c:0c:87:0f:93:b8:1d:d1:c2:86:9a:76:17:8b:54:50:
        6d:44:ae:0a:96:03:a9:26:fe:05:ab:8c:c8:e2:7b:09:
        b5:92:e2:65:a8:25:db:e7:1b:ad:64:cf:cb:8e:53:ab:
        cb:aa:66:04:e8:33:ab:f4:49:d6:e8:89:50:46:44:e3:
        9a:6f:57:2b:18:99:42:30:66:82:cb:53:39:5d:99:ef:
        27:a1:31:94:71:80:b0:71:4b:00:54:b7:36:ee:02:38:
        5c:10:58:69:00:20:c5:d8:03:ef:8e:1c:50:fc:25:89:
        8f:c5:e5:13:f8:9d:c1:d9:21:a4:ed:23:f2:9c:e3:b6:
        1c:c2:eb:88:d5:65:0a:6c:92:b0:8a:63:6c:fe:fb:66:
        41:2e:5e:02:42:de:98:dc:e6:4e:b1:e5:a3:94:b7:36:
        e8:52:86:6c:05:b7:4d:98:e2:a1:3c:f7:ea:5d:ce:95:
        87:9d:aa:b4:a6:8b:f7:18:f7:24:65:eb:92:50:2a:bd:
        da:b5:4e:be:f7:bc:a5:a6:b8:ef:45:dc:f0:c3:8a:70
    Fingerprint (SHA-256):
        CC:5F:DE:AB:11:F7:3A:E6:05:79:27:34:F4:E0:A8:55:A2:87:63:4F:02:D0:21:B6:C6:0E:76:D1:7C:08:B0:AC
    Fingerprint (SHA1):
        C1:37:79:52:D7:5C:60:59:FF:68:7A:EA:1E:01:77:0A:79:07:9A:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7845: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123494 (0x310fde26)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:37 2017
            Not After : Tue Aug 23 12:34:37 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:d9:74:a4:b7:8d:d4:f5:30:08:aa:c5:2e:65:c7:2b:
                    91:f9:58:ca:9d:e9:9b:8a:67:bb:52:58:b0:82:5a:c1:
                    90:f3:59:0b:dc:03:11:50:3a:c1:a8:6d:04:b7:13:65:
                    67:96:70:f8:bd:79:5a:0c:ed:3d:79:2f:e2:74:af:4e:
                    8e:f7:9c:52:a0:65:51:90:c1:52:8f:2c:d9:ad:1b:f7:
                    0a:79:fb:36:05:d9:e6:d9:10:4f:4b:bb:2f:a5:96:45:
                    eb:86:6a:04:3c:97:86:62:a0:1d:c9:98:91:e6:76:7d:
                    7b:6a:67:43:80:32:9f:2c:d1:73:44:3e:34:f1:23:05:
                    d0:59:87:c1:75:0f:62:16:4e:87:e3:c1:48:c4:62:51:
                    9f:d6:30:40:59:57:16:85:3c:09:8b:27:90:52:51:c8:
                    56:29:f9:59:84:1d:ea:0b:bd:c1:dd:48:42:26:3d:0d:
                    27:fe:56:dc:6a:77:82:a4:be:28:94:1e:0b:3a:62:30:
                    b6:a5:08:3a:f9:88:2d:68:ae:de:4a:c1:ee:13:8d:9b:
                    d2:fd:b8:92:7e:70:e8:1d:d6:69:6e:58:39:db:75:f0:
                    22:19:21:8b:d9:e6:27:6b:de:40:40:1e:f1:c9:a7:4b:
                    77:79:53:be:38:d1:dc:e3:85:8f:12:74:2e:7c:e7:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:c4:db:bb:2c:4d:49:15:5a:c3:5f:45:94:d5:55:a6:
        d4:01:1f:3c:72:e5:04:e1:64:61:b7:55:a5:b5:37:d5:
        32:73:89:9b:04:dd:c9:61:8b:2d:5d:b4:7c:16:3e:1e:
        e2:b7:3d:88:ae:fd:1c:97:cb:82:69:89:89:6c:1d:90:
        9d:3f:21:05:a5:49:0d:ac:fe:24:6b:a7:a1:02:f4:2b:
        93:c3:74:1c:1d:06:25:c1:b0:99:84:eb:ed:dc:ba:b4:
        3a:a7:dd:a1:34:bf:fc:8c:73:3c:e8:79:17:18:ce:2f:
        fa:94:c0:c3:bd:06:f8:30:32:f1:a3:3a:93:0d:9f:cc:
        76:a4:45:10:5b:8f:e2:db:55:e7:2f:3c:57:bf:66:92:
        09:41:4a:38:60:82:03:2f:fa:ee:95:f2:b1:c7:d0:2b:
        24:96:5e:f1:ed:04:27:3f:02:b7:c2:5a:50:d8:49:e5:
        fc:26:50:6e:dd:94:26:bf:52:1e:1d:45:cc:1a:ad:30:
        52:71:d1:a2:f3:5e:ce:c0:4e:7f:38:ef:f6:70:c8:20:
        3b:f2:68:bb:3a:91:43:4f:57:37:0d:c9:9a:8b:27:2d:
        89:9f:64:3f:00:5a:17:ae:96:df:e1:10:20:5b:e2:7d:
        c1:c6:9d:b1:e5:dc:1a:80:54:de:e9:d5:4b:44:25:50
    Fingerprint (SHA-256):
        C8:86:EA:3F:E2:55:02:A3:3E:6A:01:49:DE:52:D4:BF:78:94:80:56:3C:6C:4F:70:F0:4A:1B:5A:13:E4:27:2D
    Fingerprint (SHA1):
        4B:AF:52:C5:93:5B:59:C4:B2:9B:ED:8C:42:E5:EA:EC:44:87:E5:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7846: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123495 (0x310fde27)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:37 2017
            Not After : Tue Aug 23 12:34:37 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:f9:06:d9:39:ab:a5:96:42:c9:ac:6e:77:fa:8f:86:
                    ce:c0:08:59:da:91:19:7f:ad:5c:3f:24:c6:e0:ba:3d:
                    54:db:cd:34:bb:6c:5c:0a:42:d8:7b:89:34:ba:7e:a1:
                    91:12:a5:7f:97:77:1d:01:98:aa:ab:9e:c7:01:af:23:
                    a3:24:70:54:7f:31:e9:a9:7f:e1:51:b7:96:d4:08:87:
                    47:f7:df:e9:45:7b:b2:c0:94:3c:e5:6a:35:60:bc:f1:
                    1e:a1:b1:37:a4:ed:3b:90:2f:6e:c6:7c:d0:2d:97:4c:
                    a3:72:9e:1e:3a:59:e1:df:02:a0:b9:01:68:3a:4c:08:
                    c8:db:be:65:42:1e:76:cc:ed:0f:66:02:5f:d2:d4:fd:
                    09:29:b7:17:85:8e:a0:e2:f6:e9:bd:b8:a6:29:39:8f:
                    80:6b:8a:55:c6:59:51:36:8e:16:24:7f:d5:48:9a:da:
                    d7:e1:56:c2:af:38:f5:88:24:13:c2:82:e6:85:26:49:
                    9b:ef:08:ef:f7:b2:be:c9:03:fb:79:ad:f0:fe:17:c7:
                    5c:5b:cb:d5:ad:40:d1:28:5c:85:ca:44:87:d2:b3:3e:
                    f5:69:e8:6a:27:b0:c0:2e:99:b6:da:f9:42:92:78:a7:
                    42:5e:5a:a9:20:6c:c4:93:0e:eb:fb:ed:c9:2b:70:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:d1:d7:fe:f3:1c:77:f9:b3:32:81:88:5b:6b:8b:3a:
        de:77:12:b3:07:e5:06:b0:35:a5:fa:8a:01:76:43:3c:
        40:11:ba:da:44:92:0d:27:0e:23:87:c7:59:7d:dd:02:
        a5:32:55:c4:7c:ed:78:45:de:6b:6b:71:3c:68:01:75:
        38:53:88:75:d3:18:9c:2f:70:52:34:0e:8d:3f:6d:ef:
        98:da:82:e6:cb:4c:5c:aa:50:5c:24:d8:3f:c1:f5:c2:
        ac:f9:e7:74:e4:d5:48:14:cc:cb:ba:02:3a:c4:b6:60:
        2b:0e:bf:73:0e:58:af:12:25:b4:dd:dc:db:00:3e:e2:
        78:22:62:ce:b2:c1:6d:0b:6c:15:18:73:ff:88:cf:22:
        29:37:1f:c8:27:21:cc:2d:ba:fe:8c:a6:4d:5c:9d:e9:
        e7:de:24:07:be:97:6d:28:49:51:8d:b5:07:0d:e1:48:
        9f:53:ed:71:9f:c1:29:65:0c:ea:12:85:cc:0e:5d:37:
        56:ff:fc:6a:59:b1:65:a4:50:d9:1d:17:f0:9e:45:82:
        e9:11:6f:7f:2f:4b:25:0c:ae:d7:25:d9:6f:c9:46:85:
        a9:e8:30:c3:70:66:c2:73:fd:88:95:3a:51:c0:36:30:
        b2:92:b2:1c:af:94:b1:0d:6e:3e:9f:01:3d:16:3b:cb
    Fingerprint (SHA-256):
        70:F8:F4:33:4E:CF:96:DC:94:21:D4:3F:D5:68:E4:DE:E1:95:ED:6B:33:98:0B:6C:46:8F:6D:8B:DC:04:0A:89
    Fingerprint (SHA1):
        EF:9F:A3:BF:D1:C0:0E:6E:78:64:C6:7A:34:57:04:77:6B:A6:22:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7847: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123496 (0x310fde28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:38 2017
            Not After : Tue Aug 23 12:34:38 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:6f:03:24:f5:64:40:12:91:66:5c:a8:8b:b6:39:44:
                    5f:a5:b0:52:d1:10:80:7c:71:1b:d4:aa:d9:17:87:71:
                    59:90:1f:df:ed:47:1e:24:30:67:9d:a1:dd:d6:4d:aa:
                    f3:92:85:9d:d7:a2:26:d8:89:3a:63:ac:a7:b5:1b:42:
                    50:30:07:91:c1:4c:8c:ab:0c:eb:09:b2:47:2a:a8:8d:
                    88:04:c2:cd:7b:52:a8:78:43:ae:d3:dc:ea:13:65:db:
                    df:5a:bd:9a:66:89:e2:6c:f5:9e:c5:90:b2:a9:6a:90:
                    00:43:51:13:ec:88:89:00:5e:13:c3:3b:94:1b:de:32:
                    b9:63:cb:d0:59:20:d7:c7:24:20:fb:23:11:2c:6b:51:
                    16:09:b7:99:28:48:4e:56:a5:e3:2d:0d:9e:d7:76:54:
                    51:5a:5f:59:c1:3a:01:0b:44:98:eb:f7:9a:3c:4a:4c:
                    bc:bf:9d:41:bb:2e:17:50:3c:6a:a7:03:e0:c7:f3:40:
                    a5:63:83:59:89:3b:48:b3:7a:c7:3a:3f:54:f2:42:bd:
                    76:2c:04:bf:85:29:d4:11:8f:ba:ad:03:42:fd:2a:05:
                    37:e4:34:3b:3d:1a:c1:54:3d:34:78:c3:cb:07:e0:3d:
                    9d:c5:3f:61:54:e3:a9:94:0f:2c:56:97:36:ec:d7:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:5b:89:4d:f6:5d:1f:6b:e8:f4:f6:24:50:b3:73:08:
        33:e8:03:95:cc:b5:96:24:1a:61:31:d3:60:69:99:20:
        db:d3:0e:2f:c0:d8:c7:91:29:e8:20:77:9a:61:28:1a:
        37:32:9f:80:e0:4e:a9:eb:a2:85:93:6e:41:21:24:9c:
        7d:33:83:65:1f:35:10:63:97:c4:55:bf:40:d7:40:fc:
        a9:42:5b:d2:5b:a9:95:50:53:d7:e6:ca:58:1b:fa:6d:
        3e:c9:90:b2:05:1f:23:1f:62:5a:02:f1:77:9b:24:04:
        43:a1:5f:73:18:66:08:de:24:32:73:e9:da:3b:64:1e:
        4a:3e:4e:10:08:66:2c:cc:b0:a7:4d:2b:2b:6e:00:62:
        86:6b:2e:f2:b4:da:04:ed:1f:ed:70:14:06:1f:2b:29:
        fb:1e:ea:09:6b:d6:df:54:a0:08:e0:a9:df:75:7f:d7:
        a8:8a:2b:d2:94:e5:cd:b9:c3:d2:a2:bf:60:4f:f8:bd:
        c2:5f:fd:83:57:a5:41:6e:6f:27:02:0d:60:0e:4e:2a:
        a4:e7:17:50:08:c7:ac:83:0c:64:08:e8:31:57:21:a0:
        2f:78:46:ca:c9:e9:fb:0e:1d:33:76:1c:ac:92:f5:a5:
        5c:da:4c:81:26:89:ab:ce:91:a4:1d:7c:13:ed:31:8c
    Fingerprint (SHA-256):
        10:D1:C8:3C:5C:9C:C2:5C:32:12:40:17:C2:B6:F6:72:FB:31:8B:C0:80:B5:DD:08:00:3A:BC:5C:3C:66:4C:8B
    Fingerprint (SHA1):
        35:E0:B2:C2:24:0D:E1:D0:D6:B1:A6:76:A3:59:19:9B:04:BD:CF:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7848: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7849: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123511 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7850: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7851: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7852: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7853: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123512   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7854: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7855: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7856: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7857: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123513   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7858: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7859: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7860: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7861: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123514   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7862: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7863: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7864: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123511 (0x310fde37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:40 2017
            Not After : Tue Aug 23 12:34:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:2d:d5:eb:a0:e7:94:84:f7:e2:68:25:d9:d9:26:55:
                    40:e3:61:47:23:9a:6a:e1:8a:d9:83:0d:3c:d9:53:e8:
                    ec:e4:ab:41:46:f3:54:7b:52:ee:5b:ae:da:3d:1d:9c:
                    a1:95:9b:16:0f:58:f0:ba:f0:c1:d4:d2:bb:58:97:c3:
                    53:b0:70:77:5e:c8:e5:ec:bb:15:1e:a4:16:91:3e:8e:
                    b3:2e:1c:91:56:c0:f8:b7:e2:dd:d5:01:e0:d0:a8:dc:
                    82:8c:8e:67:e3:b3:7a:00:ab:70:ac:92:1e:03:17:ea:
                    00:6f:90:30:9c:57:3a:34:e2:16:1b:b9:29:4e:d3:f2:
                    0a:73:db:cc:d6:c1:21:6f:aa:9a:25:7a:d3:2d:6c:b3:
                    17:8d:43:b4:8f:99:cb:e3:5d:ce:9d:5a:1c:25:7d:81:
                    64:15:b9:1b:b3:40:20:c6:df:f2:f3:4a:d4:97:6f:bf:
                    c5:b9:3f:f6:db:ef:72:41:82:ff:55:fd:b0:00:ed:e5:
                    3d:ba:ef:e5:03:a6:13:fb:1b:ec:cc:ac:1e:57:af:2d:
                    ee:b7:1d:b8:67:cc:92:bb:34:18:1e:19:75:b9:10:d4:
                    b0:ed:fa:8b:69:9d:5d:27:4a:f8:70:b8:34:c7:4a:47:
                    c3:c6:d8:e8:d0:54:24:d8:a7:5a:46:68:c0:1c:e7:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:ce:e2:2b:e9:8d:7a:45:63:7c:34:40:02:f7:04:28:
        ae:41:a2:3b:c5:7c:3e:0b:3d:7a:7e:ef:25:10:a7:09:
        04:68:5d:14:db:4d:24:d6:4f:56:89:0b:58:fe:6f:cb:
        66:a8:2d:e8:55:38:f3:57:db:c6:90:75:ed:7b:6e:79:
        21:4a:a6:93:bc:96:50:db:83:f5:b2:26:53:4f:4e:16:
        7a:93:6c:aa:49:25:6d:f8:bc:3c:9b:86:95:08:2c:33:
        d4:77:2b:05:ee:90:8d:37:21:d1:f0:29:60:ee:7a:16:
        c6:36:cc:e9:a7:ec:72:1c:e5:f7:9e:92:f5:c3:63:ac:
        49:50:4a:d4:39:e1:f4:4e:ca:25:ea:d5:f2:2a:2b:89:
        80:52:71:f3:52:8b:22:04:d7:f7:8e:3e:36:ea:89:90:
        63:95:97:cc:35:6f:6f:0c:d3:85:4f:b1:88:ff:30:3a:
        26:3c:7d:43:ee:15:85:5e:64:ff:00:45:d3:90:5d:31:
        a9:08:a4:03:59:fc:7d:ad:49:13:b7:4f:54:22:17:41:
        e6:86:57:cd:1b:1d:34:0f:d0:2e:df:b0:47:95:81:ec:
        6a:d5:09:88:bc:ca:55:d6:22:93:84:dc:ef:44:53:68:
        bb:a8:f2:90:f7:e5:32:a6:e6:8f:8f:57:74:93:53:a3
    Fingerprint (SHA-256):
        43:14:C9:FA:4E:14:C2:78:A8:FB:65:CA:C6:58:99:7F:3A:27:EC:6D:1A:6C:19:4E:3E:F6:60:8B:FB:51:CA:3D
    Fingerprint (SHA1):
        64:5A:34:3B:7C:E7:42:E7:C8:10:62:72:37:4E:CF:87:FB:3E:C9:86
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7865: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7866: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123512 (0x310fde38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:40 2017
            Not After : Tue Aug 23 12:34:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:ff:e7:2f:d2:c7:84:41:09:67:4b:39:0c:bb:16:45:
                    bb:87:c6:20:6a:f9:38:4c:de:c7:23:3e:e2:d6:19:d6:
                    de:c7:eb:de:c6:b6:71:54:12:e1:e9:a4:53:ac:eb:0d:
                    73:0b:e1:1e:fa:58:64:ae:6e:aa:2c:b5:9b:33:11:42:
                    9e:ed:2d:43:01:d5:0e:13:0b:72:b0:2e:8f:f3:13:9a:
                    dc:4b:08:60:a8:45:2e:6d:25:71:b7:2b:f6:74:95:5f:
                    88:b4:97:e6:5f:3a:a7:17:2d:30:d9:13:69:05:1b:69:
                    c4:72:b2:69:62:c4:66:35:01:b4:0c:8e:c6:9c:87:93:
                    59:72:d3:09:fc:f7:7b:c4:4e:96:7b:d7:7d:0c:cf:ae:
                    c8:68:c1:64:d0:df:c0:de:15:3c:e2:6b:d6:f2:31:30:
                    23:0e:39:68:f6:ba:62:46:ef:3d:8a:cb:93:65:6d:a8:
                    ef:d9:60:16:5b:d1:12:b6:9b:3b:a8:fd:da:f9:38:e7:
                    3f:90:64:23:c5:a5:4c:d8:ef:e5:fc:bf:d1:6a:b7:0a:
                    32:2b:df:c4:65:76:6e:69:69:ea:fe:4a:6c:df:8a:c5:
                    ac:a1:48:62:95:f3:f1:73:b1:f5:57:4c:bd:30:da:fc:
                    ed:36:de:32:c6:3d:2b:c3:08:cd:45:7a:03:bb:dd:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:4b:03:27:85:0f:e5:9e:05:fa:0e:f8:c8:d6:14:55:
        38:f9:af:e4:87:6f:1a:60:58:50:3b:e7:a3:75:e9:46:
        ea:6b:25:11:75:91:b6:99:97:1e:e1:4b:9b:e6:6c:aa:
        d8:d9:e2:6d:b0:37:3d:be:f9:65:f4:c6:54:51:2f:d2:
        e6:9d:95:37:bd:2a:f7:af:26:92:ee:55:c7:dc:92:4e:
        e7:ed:7c:1f:5d:10:02:22:31:ef:f6:20:4b:c7:6d:d5:
        2e:55:a9:04:e3:2f:c6:e1:72:21:7c:88:b4:ff:e0:e2:
        80:49:fb:4a:6b:c5:40:01:e0:e8:06:0f:8f:6f:24:c4:
        64:f3:8c:ce:e1:55:5a:ae:07:b1:54:ce:51:af:bd:80:
        9c:b1:d8:f1:7e:21:8b:d4:77:4f:2f:b7:f0:c0:f4:ff:
        55:f4:5d:93:a9:84:eb:ad:a2:94:e7:8e:d2:73:5b:d9:
        40:6c:fa:89:af:29:f3:aa:97:50:81:bb:9d:e6:f0:0f:
        64:27:6c:f7:64:20:f1:c5:3a:9a:39:16:dd:85:87:5e:
        0d:50:71:7e:2d:ce:b2:ad:1d:10:91:2d:55:89:28:5c:
        5e:9b:bf:c9:1e:6c:e6:17:2b:97:56:52:49:6e:e4:71:
        92:85:1b:75:b2:f0:8c:03:a5:6a:e4:ed:68:a5:92:07
    Fingerprint (SHA-256):
        FC:10:3D:59:4D:F3:39:BB:68:27:A5:69:97:DE:C9:6A:7C:86:CD:C9:0D:1F:4A:4A:6D:0B:F9:46:E6:3C:E3:49
    Fingerprint (SHA1):
        D8:BE:72:A0:69:FA:9F:CA:BF:BD:22:FD:D3:92:D3:74:E7:C0:09:18
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7867: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7868: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123513 (0x310fde39)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:40 2017
            Not After : Tue Aug 23 12:34:40 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:10:98:7e:6c:13:20:e5:4a:39:9c:3d:27:06:9e:c4:
                    0a:c7:03:a9:91:27:b0:86:b5:7b:04:61:3c:98:4f:9b:
                    dd:a1:ea:0d:ab:6b:83:8a:8e:35:27:c0:0f:9a:a0:48:
                    17:7a:e9:f1:3e:ba:68:1d:0b:8a:3b:63:8c:30:7f:d2:
                    99:3c:64:c2:fe:a3:d8:6c:39:b4:fb:90:91:8c:25:b9:
                    24:f8:d9:ea:d6:11:8c:e9:ae:42:de:b3:4f:74:88:6d:
                    2e:89:80:1e:55:67:8e:5e:4f:e9:6f:d9:c7:4e:3c:8b:
                    50:1a:f6:7b:4c:a2:6c:08:93:e5:0a:be:ac:7f:fa:f6:
                    58:66:62:ad:39:1b:f9:dd:35:6d:c5:dc:61:77:21:60:
                    73:ba:97:2c:29:23:0b:cf:e6:dc:8f:31:9c:72:d7:7e:
                    6a:de:c3:6a:3c:a6:61:5c:9c:55:50:ee:c3:9c:10:25:
                    45:4b:74:74:7f:3a:84:37:15:93:35:38:d5:b8:3a:f2:
                    82:a8:0a:09:a2:9c:9e:1a:4e:2e:9f:f6:f6:0c:a3:b6:
                    76:91:02:fc:71:29:77:8c:e0:0f:4c:20:31:35:17:05:
                    d6:97:c3:18:0c:76:c2:a0:2d:03:b7:8d:93:3c:60:00:
                    47:3a:68:ce:d2:ed:b6:74:62:eb:58:d3:26:90:2e:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:22:e3:20:3a:be:10:0e:12:1b:5d:e9:8c:cb:03:8d:
        c5:fa:2e:a8:31:c3:9a:cb:a3:21:73:af:3c:25:6f:86:
        8c:e5:e0:70:79:5e:08:17:3b:d2:13:f4:f7:25:bd:f7:
        4d:ae:a6:d2:c7:d7:75:a4:0a:3a:c0:1b:bc:25:e6:5d:
        4d:a4:e3:cc:c5:cc:73:52:0a:38:00:69:7d:57:9d:33:
        f8:18:67:95:7a:77:08:18:a5:f5:67:ce:09:a1:cf:d3:
        de:8c:11:f9:95:4a:cb:48:53:96:44:25:4d:a3:3a:37:
        1b:df:ae:63:93:47:dc:6f:b6:cb:f6:b8:a3:5b:fc:9d:
        a4:fb:91:9a:09:0f:22:8b:63:af:b1:29:8e:50:3e:7d:
        17:6e:15:5f:b3:1a:b9:b3:c9:17:03:04:16:96:eb:6a:
        8d:d3:a7:e9:7f:30:b5:4a:f3:4c:f7:17:18:42:fa:47:
        d8:3c:3d:2e:03:bf:23:9f:d9:fa:31:7d:15:0d:31:63:
        84:09:80:c6:7c:af:0c:51:69:43:26:af:fb:f1:9f:2e:
        0e:7a:2d:2e:03:6c:46:be:d5:0f:51:cf:9b:34:35:d0:
        81:d7:9d:c6:e6:d9:a4:2f:6d:e8:59:37:98:7d:d0:c7:
        3a:d6:5a:89:63:e8:c6:c5:33:db:61:8f:59:75:c0:b1
    Fingerprint (SHA-256):
        45:EC:93:41:C5:60:BA:2C:DC:9B:69:9B:D8:0E:6C:EF:07:2F:A8:73:8C:8D:7F:D4:F4:96:1D:2E:B4:05:05:46
    Fingerprint (SHA1):
        A5:FA:8F:58:84:94:9C:20:7C:9B:72:DB:9F:E1:D0:90:DC:6B:5E:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7869: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7870: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7871: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7872: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7873: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123511 (0x310fde37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:40 2017
            Not After : Tue Aug 23 12:34:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:2d:d5:eb:a0:e7:94:84:f7:e2:68:25:d9:d9:26:55:
                    40:e3:61:47:23:9a:6a:e1:8a:d9:83:0d:3c:d9:53:e8:
                    ec:e4:ab:41:46:f3:54:7b:52:ee:5b:ae:da:3d:1d:9c:
                    a1:95:9b:16:0f:58:f0:ba:f0:c1:d4:d2:bb:58:97:c3:
                    53:b0:70:77:5e:c8:e5:ec:bb:15:1e:a4:16:91:3e:8e:
                    b3:2e:1c:91:56:c0:f8:b7:e2:dd:d5:01:e0:d0:a8:dc:
                    82:8c:8e:67:e3:b3:7a:00:ab:70:ac:92:1e:03:17:ea:
                    00:6f:90:30:9c:57:3a:34:e2:16:1b:b9:29:4e:d3:f2:
                    0a:73:db:cc:d6:c1:21:6f:aa:9a:25:7a:d3:2d:6c:b3:
                    17:8d:43:b4:8f:99:cb:e3:5d:ce:9d:5a:1c:25:7d:81:
                    64:15:b9:1b:b3:40:20:c6:df:f2:f3:4a:d4:97:6f:bf:
                    c5:b9:3f:f6:db:ef:72:41:82:ff:55:fd:b0:00:ed:e5:
                    3d:ba:ef:e5:03:a6:13:fb:1b:ec:cc:ac:1e:57:af:2d:
                    ee:b7:1d:b8:67:cc:92:bb:34:18:1e:19:75:b9:10:d4:
                    b0:ed:fa:8b:69:9d:5d:27:4a:f8:70:b8:34:c7:4a:47:
                    c3:c6:d8:e8:d0:54:24:d8:a7:5a:46:68:c0:1c:e7:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:ce:e2:2b:e9:8d:7a:45:63:7c:34:40:02:f7:04:28:
        ae:41:a2:3b:c5:7c:3e:0b:3d:7a:7e:ef:25:10:a7:09:
        04:68:5d:14:db:4d:24:d6:4f:56:89:0b:58:fe:6f:cb:
        66:a8:2d:e8:55:38:f3:57:db:c6:90:75:ed:7b:6e:79:
        21:4a:a6:93:bc:96:50:db:83:f5:b2:26:53:4f:4e:16:
        7a:93:6c:aa:49:25:6d:f8:bc:3c:9b:86:95:08:2c:33:
        d4:77:2b:05:ee:90:8d:37:21:d1:f0:29:60:ee:7a:16:
        c6:36:cc:e9:a7:ec:72:1c:e5:f7:9e:92:f5:c3:63:ac:
        49:50:4a:d4:39:e1:f4:4e:ca:25:ea:d5:f2:2a:2b:89:
        80:52:71:f3:52:8b:22:04:d7:f7:8e:3e:36:ea:89:90:
        63:95:97:cc:35:6f:6f:0c:d3:85:4f:b1:88:ff:30:3a:
        26:3c:7d:43:ee:15:85:5e:64:ff:00:45:d3:90:5d:31:
        a9:08:a4:03:59:fc:7d:ad:49:13:b7:4f:54:22:17:41:
        e6:86:57:cd:1b:1d:34:0f:d0:2e:df:b0:47:95:81:ec:
        6a:d5:09:88:bc:ca:55:d6:22:93:84:dc:ef:44:53:68:
        bb:a8:f2:90:f7:e5:32:a6:e6:8f:8f:57:74:93:53:a3
    Fingerprint (SHA-256):
        43:14:C9:FA:4E:14:C2:78:A8:FB:65:CA:C6:58:99:7F:3A:27:EC:6D:1A:6C:19:4E:3E:F6:60:8B:FB:51:CA:3D
    Fingerprint (SHA1):
        64:5A:34:3B:7C:E7:42:E7:C8:10:62:72:37:4E:CF:87:FB:3E:C9:86
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7874: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7875: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123512 (0x310fde38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:40 2017
            Not After : Tue Aug 23 12:34:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:ff:e7:2f:d2:c7:84:41:09:67:4b:39:0c:bb:16:45:
                    bb:87:c6:20:6a:f9:38:4c:de:c7:23:3e:e2:d6:19:d6:
                    de:c7:eb:de:c6:b6:71:54:12:e1:e9:a4:53:ac:eb:0d:
                    73:0b:e1:1e:fa:58:64:ae:6e:aa:2c:b5:9b:33:11:42:
                    9e:ed:2d:43:01:d5:0e:13:0b:72:b0:2e:8f:f3:13:9a:
                    dc:4b:08:60:a8:45:2e:6d:25:71:b7:2b:f6:74:95:5f:
                    88:b4:97:e6:5f:3a:a7:17:2d:30:d9:13:69:05:1b:69:
                    c4:72:b2:69:62:c4:66:35:01:b4:0c:8e:c6:9c:87:93:
                    59:72:d3:09:fc:f7:7b:c4:4e:96:7b:d7:7d:0c:cf:ae:
                    c8:68:c1:64:d0:df:c0:de:15:3c:e2:6b:d6:f2:31:30:
                    23:0e:39:68:f6:ba:62:46:ef:3d:8a:cb:93:65:6d:a8:
                    ef:d9:60:16:5b:d1:12:b6:9b:3b:a8:fd:da:f9:38:e7:
                    3f:90:64:23:c5:a5:4c:d8:ef:e5:fc:bf:d1:6a:b7:0a:
                    32:2b:df:c4:65:76:6e:69:69:ea:fe:4a:6c:df:8a:c5:
                    ac:a1:48:62:95:f3:f1:73:b1:f5:57:4c:bd:30:da:fc:
                    ed:36:de:32:c6:3d:2b:c3:08:cd:45:7a:03:bb:dd:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:4b:03:27:85:0f:e5:9e:05:fa:0e:f8:c8:d6:14:55:
        38:f9:af:e4:87:6f:1a:60:58:50:3b:e7:a3:75:e9:46:
        ea:6b:25:11:75:91:b6:99:97:1e:e1:4b:9b:e6:6c:aa:
        d8:d9:e2:6d:b0:37:3d:be:f9:65:f4:c6:54:51:2f:d2:
        e6:9d:95:37:bd:2a:f7:af:26:92:ee:55:c7:dc:92:4e:
        e7:ed:7c:1f:5d:10:02:22:31:ef:f6:20:4b:c7:6d:d5:
        2e:55:a9:04:e3:2f:c6:e1:72:21:7c:88:b4:ff:e0:e2:
        80:49:fb:4a:6b:c5:40:01:e0:e8:06:0f:8f:6f:24:c4:
        64:f3:8c:ce:e1:55:5a:ae:07:b1:54:ce:51:af:bd:80:
        9c:b1:d8:f1:7e:21:8b:d4:77:4f:2f:b7:f0:c0:f4:ff:
        55:f4:5d:93:a9:84:eb:ad:a2:94:e7:8e:d2:73:5b:d9:
        40:6c:fa:89:af:29:f3:aa:97:50:81:bb:9d:e6:f0:0f:
        64:27:6c:f7:64:20:f1:c5:3a:9a:39:16:dd:85:87:5e:
        0d:50:71:7e:2d:ce:b2:ad:1d:10:91:2d:55:89:28:5c:
        5e:9b:bf:c9:1e:6c:e6:17:2b:97:56:52:49:6e:e4:71:
        92:85:1b:75:b2:f0:8c:03:a5:6a:e4:ed:68:a5:92:07
    Fingerprint (SHA-256):
        FC:10:3D:59:4D:F3:39:BB:68:27:A5:69:97:DE:C9:6A:7C:86:CD:C9:0D:1F:4A:4A:6D:0B:F9:46:E6:3C:E3:49
    Fingerprint (SHA1):
        D8:BE:72:A0:69:FA:9F:CA:BF:BD:22:FD:D3:92:D3:74:E7:C0:09:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7876: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7877: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123513 (0x310fde39)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:40 2017
            Not After : Tue Aug 23 12:34:40 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:10:98:7e:6c:13:20:e5:4a:39:9c:3d:27:06:9e:c4:
                    0a:c7:03:a9:91:27:b0:86:b5:7b:04:61:3c:98:4f:9b:
                    dd:a1:ea:0d:ab:6b:83:8a:8e:35:27:c0:0f:9a:a0:48:
                    17:7a:e9:f1:3e:ba:68:1d:0b:8a:3b:63:8c:30:7f:d2:
                    99:3c:64:c2:fe:a3:d8:6c:39:b4:fb:90:91:8c:25:b9:
                    24:f8:d9:ea:d6:11:8c:e9:ae:42:de:b3:4f:74:88:6d:
                    2e:89:80:1e:55:67:8e:5e:4f:e9:6f:d9:c7:4e:3c:8b:
                    50:1a:f6:7b:4c:a2:6c:08:93:e5:0a:be:ac:7f:fa:f6:
                    58:66:62:ad:39:1b:f9:dd:35:6d:c5:dc:61:77:21:60:
                    73:ba:97:2c:29:23:0b:cf:e6:dc:8f:31:9c:72:d7:7e:
                    6a:de:c3:6a:3c:a6:61:5c:9c:55:50:ee:c3:9c:10:25:
                    45:4b:74:74:7f:3a:84:37:15:93:35:38:d5:b8:3a:f2:
                    82:a8:0a:09:a2:9c:9e:1a:4e:2e:9f:f6:f6:0c:a3:b6:
                    76:91:02:fc:71:29:77:8c:e0:0f:4c:20:31:35:17:05:
                    d6:97:c3:18:0c:76:c2:a0:2d:03:b7:8d:93:3c:60:00:
                    47:3a:68:ce:d2:ed:b6:74:62:eb:58:d3:26:90:2e:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:22:e3:20:3a:be:10:0e:12:1b:5d:e9:8c:cb:03:8d:
        c5:fa:2e:a8:31:c3:9a:cb:a3:21:73:af:3c:25:6f:86:
        8c:e5:e0:70:79:5e:08:17:3b:d2:13:f4:f7:25:bd:f7:
        4d:ae:a6:d2:c7:d7:75:a4:0a:3a:c0:1b:bc:25:e6:5d:
        4d:a4:e3:cc:c5:cc:73:52:0a:38:00:69:7d:57:9d:33:
        f8:18:67:95:7a:77:08:18:a5:f5:67:ce:09:a1:cf:d3:
        de:8c:11:f9:95:4a:cb:48:53:96:44:25:4d:a3:3a:37:
        1b:df:ae:63:93:47:dc:6f:b6:cb:f6:b8:a3:5b:fc:9d:
        a4:fb:91:9a:09:0f:22:8b:63:af:b1:29:8e:50:3e:7d:
        17:6e:15:5f:b3:1a:b9:b3:c9:17:03:04:16:96:eb:6a:
        8d:d3:a7:e9:7f:30:b5:4a:f3:4c:f7:17:18:42:fa:47:
        d8:3c:3d:2e:03:bf:23:9f:d9:fa:31:7d:15:0d:31:63:
        84:09:80:c6:7c:af:0c:51:69:43:26:af:fb:f1:9f:2e:
        0e:7a:2d:2e:03:6c:46:be:d5:0f:51:cf:9b:34:35:d0:
        81:d7:9d:c6:e6:d9:a4:2f:6d:e8:59:37:98:7d:d0:c7:
        3a:d6:5a:89:63:e8:c6:c5:33:db:61:8f:59:75:c0:b1
    Fingerprint (SHA-256):
        45:EC:93:41:C5:60:BA:2C:DC:9B:69:9B:D8:0E:6C:EF:07:2F:A8:73:8C:8D:7F:D4:F4:96:1D:2E:B4:05:05:46
    Fingerprint (SHA1):
        A5:FA:8F:58:84:94:9C:20:7C:9B:72:DB:9F:E1:D0:90:DC:6B:5E:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7878: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7879: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7880: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123515 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7881: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7882: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7883: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7884: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123516   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7885: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7886: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7887: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7888: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123517   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7889: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7890: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7891: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7892: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123518   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7893: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7894: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7895: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7896: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123519   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7897: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7898: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7899: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123515 (0x310fde3b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:49:4e:8f:9f:bf:19:fe:46:b3:40:8d:34:5f:da:dc:
                    e1:b3:48:1b:ee:35:09:fb:b7:93:04:20:ca:88:ea:65:
                    65:f3:27:1d:9a:4b:ba:67:f4:5d:ee:8d:63:e8:1a:a0:
                    82:4c:11:0c:b4:8a:2b:ae:df:53:07:13:7b:6f:1d:4f:
                    72:02:1c:5f:db:a9:75:09:19:08:37:ee:20:99:d8:90:
                    4d:97:0c:ac:40:11:eb:46:df:9c:01:95:e5:ca:38:2a:
                    40:46:d8:b8:9e:ff:20:0e:a5:ff:ac:59:8b:56:73:43:
                    e2:8b:49:7f:4f:e8:32:53:62:1b:6c:cc:20:22:0f:2c:
                    9e:ff:75:38:67:7f:92:f8:ca:19:82:21:d3:d4:45:e5:
                    ff:21:f9:51:18:19:44:e5:5a:23:c6:ee:e2:58:99:8a:
                    cc:9e:97:6e:00:6b:7f:52:b3:2e:e1:4e:0d:75:2a:c4:
                    c9:39:8f:ae:7c:1d:20:a0:b8:87:a6:03:38:f4:af:97:
                    c5:71:d1:67:81:40:71:27:ad:fa:7f:68:3a:34:4e:0c:
                    4f:8b:05:b1:60:4d:59:84:17:7a:30:e1:00:86:28:2f:
                    c4:5a:8e:a2:20:01:b3:2d:ce:51:d1:5d:7d:b7:07:a4:
                    47:90:d5:f1:50:22:b0:82:4c:99:02:cd:28:31:71:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:e4:93:f8:ab:a7:b9:ed:d2:8c:67:9b:96:e6:bc:20:
        c3:14:2a:67:6c:a4:4d:85:d6:b5:51:66:4a:47:5f:0c:
        84:f8:93:e0:29:b2:82:3a:de:1d:b3:f6:0d:54:e2:99:
        5d:9a:a1:e9:51:15:78:17:ba:91:eb:eb:ac:4e:61:81:
        a5:87:30:fb:9b:8f:6f:dd:18:9e:55:a2:43:a5:0e:06:
        c9:b9:09:de:c4:f0:e6:a6:c9:fe:8d:aa:4a:d9:07:a2:
        46:23:5a:8a:39:af:b8:99:11:f9:20:49:37:42:fd:0b:
        23:79:aa:fa:d1:f3:6c:c7:fa:7c:0c:1b:c7:50:e4:8a:
        2c:62:a1:07:70:82:06:87:2f:1e:79:4f:6d:04:57:6c:
        f8:a2:8b:fe:5f:32:3c:76:99:bb:ba:c0:b0:a3:b2:a6:
        be:55:82:a8:aa:d4:09:8e:fc:c7:aa:16:73:24:4d:81:
        4e:ab:c6:01:3f:c5:6f:3e:9f:bb:36:b8:27:f0:27:d1:
        15:7e:c3:71:db:7e:e1:1c:bc:c2:b5:95:c9:2c:4e:14:
        a9:29:bb:40:fc:6f:12:9e:26:c5:fc:6f:78:9d:a1:6c:
        7e:f6:27:7e:1e:f1:00:23:56:f0:42:02:0a:3e:a0:d2:
        e3:e9:b0:1b:7b:9e:62:38:51:c6:7d:0c:d9:67:85:8f
    Fingerprint (SHA-256):
        D1:8C:AD:B3:D9:D2:C5:D7:6F:10:6C:09:C4:5A:D3:80:38:1F:A4:F5:63:AF:83:9E:7A:AF:F1:2B:D8:56:30:71
    Fingerprint (SHA1):
        32:E1:73:5C:CE:58:FB:46:8F:97:17:9F:65:1F:49:A3:8A:02:88:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7900: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7901: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123516 (0x310fde3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:24:ba:0a:2b:81:be:94:ea:8b:74:04:db:a3:ac:f6:
                    73:b7:1b:c3:ce:6d:b2:52:a2:c1:5e:63:9a:88:39:2c:
                    e9:9b:dd:bd:84:32:82:d6:aa:97:17:ed:bc:b2:46:72:
                    f9:73:3a:21:1d:f1:04:42:ee:b9:e9:fa:6b:22:06:d8:
                    08:12:d1:f6:a1:51:f0:a7:7b:f7:81:1d:e0:4d:b4:11:
                    2d:a7:23:36:dd:86:5e:60:94:91:1e:ab:23:49:41:34:
                    9f:df:22:d6:62:7e:fc:44:49:51:52:a5:93:cb:78:d0:
                    98:9b:d6:0b:e6:5e:f9:96:6a:36:65:bc:8b:26:eb:9c:
                    99:cd:8d:5d:4d:21:5e:29:6a:60:08:fd:af:ff:eb:ba:
                    cf:c9:6b:0b:d7:8c:d8:08:f1:0e:62:34:42:b6:3a:f2:
                    95:38:a3:a4:0b:ec:56:1d:f3:5c:ed:de:01:62:53:8d:
                    ee:b5:e0:43:ce:62:ff:0d:ea:7a:27:1f:1a:f0:e8:b5:
                    28:e0:e9:42:d0:bc:9e:fd:d8:8c:f8:d1:08:20:6d:75:
                    5f:8b:12:32:9d:c9:c5:63:5b:80:b6:bd:93:21:31:28:
                    0a:a2:a3:53:85:49:44:ba:24:ef:6c:27:bd:d0:3c:18:
                    56:df:a1:0e:83:a3:08:10:39:6f:3b:35:7e:5b:27:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:e7:6e:a8:e9:a1:55:b0:97:43:5c:f5:bb:56:30:e2:
        c1:bb:a8:53:80:7c:45:97:70:ec:88:c6:bc:e3:49:db:
        e4:da:b4:ad:72:df:9d:77:0f:c8:98:f2:de:8e:b7:82:
        ef:e0:95:04:17:a4:4e:a8:01:67:67:8f:e5:2f:63:f9:
        bc:35:f3:79:9a:7a:d3:7f:e5:27:be:a9:d6:f9:d4:cb:
        0b:b3:61:58:f0:3b:c0:0d:a5:24:d7:0f:9c:e7:f8:e3:
        8b:f2:b2:39:e1:38:72:1f:3d:39:5d:85:ca:8c:d0:38:
        bc:be:32:e0:f2:ab:58:64:57:a7:1f:b7:b6:6f:5e:21:
        30:5d:3e:a8:5b:92:27:b4:cc:8c:76:a9:38:8f:1f:9a:
        8e:5b:2d:c8:69:8f:a0:9e:a2:6a:6e:f7:f5:af:f0:9d:
        1b:14:16:45:fc:c8:e9:26:1e:10:03:11:83:4f:d7:34:
        73:18:13:f4:67:08:7e:e3:f1:49:80:9e:1d:d5:2f:01:
        4b:b7:e7:1b:6c:e2:91:35:5c:f4:f1:e8:c8:32:3e:44:
        20:d1:dc:d8:da:df:4e:ec:6d:50:23:49:34:c1:40:12:
        fa:45:f5:54:28:87:01:c4:6a:e0:05:87:69:31:cf:c6:
        65:30:f0:e2:bd:9c:a7:03:dd:90:95:09:9b:ee:e6:d1
    Fingerprint (SHA-256):
        F4:D1:4E:E9:17:72:CA:90:03:54:A5:04:71:38:63:E1:CB:C1:6C:C2:DB:B5:DE:70:F3:46:73:19:F0:DB:48:2E
    Fingerprint (SHA1):
        C3:8F:C7:F1:C9:0A:5D:93:BE:E7:32:70:27:A1:D7:D6:95:1F:66:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7902: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7903: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123517 (0x310fde3d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:42 2017
            Not After : Tue Aug 23 12:34:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:63:c8:6f:ff:5d:c1:92:1c:5a:d0:e6:d6:6f:41:68:
                    69:50:ca:92:81:39:2e:15:6e:81:56:c0:77:35:c9:4f:
                    30:ea:2b:bd:5f:2e:c6:ab:4e:10:a5:1b:81:4e:c3:dd:
                    d9:75:48:fa:2c:81:2a:b3:9d:ff:e4:78:fd:8b:b9:f2:
                    91:7a:b5:83:b0:e7:a7:36:cf:db:76:4a:11:06:81:c2:
                    5f:dd:5d:c2:f1:ca:6c:93:5f:83:8c:58:00:8e:af:2f:
                    f4:12:d3:74:e7:23:a7:0a:46:cc:c8:ed:75:f2:01:a7:
                    93:1c:37:57:23:25:5d:be:89:7c:4d:4a:74:38:9f:4e:
                    b0:b5:4c:9a:8c:0c:c8:50:a4:0b:cc:eb:ca:2e:cc:12:
                    da:99:03:2a:a0:da:af:ad:f9:7f:12:47:4b:fc:65:16:
                    2d:a7:90:aa:ee:e7:24:6c:31:7b:c6:30:99:a9:63:d4:
                    cd:d3:6f:e3:fd:9f:a3:43:21:8e:51:77:38:9f:dc:f4:
                    ad:fb:7a:df:97:f1:66:44:c0:30:9e:b7:2d:f8:b2:6d:
                    e4:0d:c5:1d:82:14:30:6d:ca:4c:19:8c:59:e0:21:94:
                    bb:ea:51:e5:38:ca:74:cb:f9:6a:eb:47:a5:5a:8d:20:
                    cd:14:9d:f3:4e:70:f0:65:dd:0b:e8:05:b2:8b:c1:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:90:a9:a4:12:ba:14:ba:17:8d:c3:30:82:c5:70:bc:
        41:fe:8b:80:2c:46:8c:5c:97:f4:f2:91:d6:c2:3e:16:
        6a:7f:1c:e9:3b:cc:90:8a:70:43:04:c6:48:f6:92:8d:
        d7:22:46:1a:6b:ed:a3:07:20:25:73:59:30:b3:45:0b:
        fb:c8:c5:ec:18:2b:02:57:2d:cd:3b:39:c6:f1:58:c1:
        83:92:9c:e7:86:40:52:60:c0:7e:3b:cf:a4:a5:d7:f9:
        93:c7:d2:71:8f:43:fb:9f:1e:64:42:da:a3:80:87:9e:
        60:b2:54:db:af:ba:3b:4e:2e:0f:67:d3:67:4e:ab:fa:
        53:2b:7a:1f:b7:17:e1:0c:e1:7c:d7:9a:9f:b4:78:42:
        c4:34:df:cd:8e:92:38:02:83:2d:5e:31:46:5d:0f:ab:
        51:f4:a3:86:99:6b:49:62:3c:71:c9:30:10:61:f0:54:
        0b:0b:ed:84:88:47:5b:9d:11:30:0c:a8:f9:88:e7:3d:
        26:96:57:f2:a7:b3:01:88:30:a3:9b:4a:5c:f6:35:5c:
        14:4e:e2:29:51:a8:ca:f2:23:b5:76:33:00:c0:bb:94:
        3f:66:62:51:54:5d:77:0b:c8:6c:e2:59:09:b3:b0:9e:
        38:f1:8a:63:3a:97:ad:c6:3f:54:ef:78:aa:09:3d:e5
    Fingerprint (SHA-256):
        4C:29:B2:92:5B:B7:52:96:6A:7D:79:4F:7F:92:6D:FB:29:7B:2E:EE:07:7B:09:D3:48:EC:9B:25:10:C6:6D:EA
    Fingerprint (SHA1):
        80:EC:09:BE:16:E4:58:F4:0A:CD:77:62:A2:9E:A6:7B:AE:5C:D9:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7904: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7905: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7906: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7907: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7908: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123515 (0x310fde3b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:49:4e:8f:9f:bf:19:fe:46:b3:40:8d:34:5f:da:dc:
                    e1:b3:48:1b:ee:35:09:fb:b7:93:04:20:ca:88:ea:65:
                    65:f3:27:1d:9a:4b:ba:67:f4:5d:ee:8d:63:e8:1a:a0:
                    82:4c:11:0c:b4:8a:2b:ae:df:53:07:13:7b:6f:1d:4f:
                    72:02:1c:5f:db:a9:75:09:19:08:37:ee:20:99:d8:90:
                    4d:97:0c:ac:40:11:eb:46:df:9c:01:95:e5:ca:38:2a:
                    40:46:d8:b8:9e:ff:20:0e:a5:ff:ac:59:8b:56:73:43:
                    e2:8b:49:7f:4f:e8:32:53:62:1b:6c:cc:20:22:0f:2c:
                    9e:ff:75:38:67:7f:92:f8:ca:19:82:21:d3:d4:45:e5:
                    ff:21:f9:51:18:19:44:e5:5a:23:c6:ee:e2:58:99:8a:
                    cc:9e:97:6e:00:6b:7f:52:b3:2e:e1:4e:0d:75:2a:c4:
                    c9:39:8f:ae:7c:1d:20:a0:b8:87:a6:03:38:f4:af:97:
                    c5:71:d1:67:81:40:71:27:ad:fa:7f:68:3a:34:4e:0c:
                    4f:8b:05:b1:60:4d:59:84:17:7a:30:e1:00:86:28:2f:
                    c4:5a:8e:a2:20:01:b3:2d:ce:51:d1:5d:7d:b7:07:a4:
                    47:90:d5:f1:50:22:b0:82:4c:99:02:cd:28:31:71:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:e4:93:f8:ab:a7:b9:ed:d2:8c:67:9b:96:e6:bc:20:
        c3:14:2a:67:6c:a4:4d:85:d6:b5:51:66:4a:47:5f:0c:
        84:f8:93:e0:29:b2:82:3a:de:1d:b3:f6:0d:54:e2:99:
        5d:9a:a1:e9:51:15:78:17:ba:91:eb:eb:ac:4e:61:81:
        a5:87:30:fb:9b:8f:6f:dd:18:9e:55:a2:43:a5:0e:06:
        c9:b9:09:de:c4:f0:e6:a6:c9:fe:8d:aa:4a:d9:07:a2:
        46:23:5a:8a:39:af:b8:99:11:f9:20:49:37:42:fd:0b:
        23:79:aa:fa:d1:f3:6c:c7:fa:7c:0c:1b:c7:50:e4:8a:
        2c:62:a1:07:70:82:06:87:2f:1e:79:4f:6d:04:57:6c:
        f8:a2:8b:fe:5f:32:3c:76:99:bb:ba:c0:b0:a3:b2:a6:
        be:55:82:a8:aa:d4:09:8e:fc:c7:aa:16:73:24:4d:81:
        4e:ab:c6:01:3f:c5:6f:3e:9f:bb:36:b8:27:f0:27:d1:
        15:7e:c3:71:db:7e:e1:1c:bc:c2:b5:95:c9:2c:4e:14:
        a9:29:bb:40:fc:6f:12:9e:26:c5:fc:6f:78:9d:a1:6c:
        7e:f6:27:7e:1e:f1:00:23:56:f0:42:02:0a:3e:a0:d2:
        e3:e9:b0:1b:7b:9e:62:38:51:c6:7d:0c:d9:67:85:8f
    Fingerprint (SHA-256):
        D1:8C:AD:B3:D9:D2:C5:D7:6F:10:6C:09:C4:5A:D3:80:38:1F:A4:F5:63:AF:83:9E:7A:AF:F1:2B:D8:56:30:71
    Fingerprint (SHA1):
        32:E1:73:5C:CE:58:FB:46:8F:97:17:9F:65:1F:49:A3:8A:02:88:D8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7909: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7910: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123516 (0x310fde3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:24:ba:0a:2b:81:be:94:ea:8b:74:04:db:a3:ac:f6:
                    73:b7:1b:c3:ce:6d:b2:52:a2:c1:5e:63:9a:88:39:2c:
                    e9:9b:dd:bd:84:32:82:d6:aa:97:17:ed:bc:b2:46:72:
                    f9:73:3a:21:1d:f1:04:42:ee:b9:e9:fa:6b:22:06:d8:
                    08:12:d1:f6:a1:51:f0:a7:7b:f7:81:1d:e0:4d:b4:11:
                    2d:a7:23:36:dd:86:5e:60:94:91:1e:ab:23:49:41:34:
                    9f:df:22:d6:62:7e:fc:44:49:51:52:a5:93:cb:78:d0:
                    98:9b:d6:0b:e6:5e:f9:96:6a:36:65:bc:8b:26:eb:9c:
                    99:cd:8d:5d:4d:21:5e:29:6a:60:08:fd:af:ff:eb:ba:
                    cf:c9:6b:0b:d7:8c:d8:08:f1:0e:62:34:42:b6:3a:f2:
                    95:38:a3:a4:0b:ec:56:1d:f3:5c:ed:de:01:62:53:8d:
                    ee:b5:e0:43:ce:62:ff:0d:ea:7a:27:1f:1a:f0:e8:b5:
                    28:e0:e9:42:d0:bc:9e:fd:d8:8c:f8:d1:08:20:6d:75:
                    5f:8b:12:32:9d:c9:c5:63:5b:80:b6:bd:93:21:31:28:
                    0a:a2:a3:53:85:49:44:ba:24:ef:6c:27:bd:d0:3c:18:
                    56:df:a1:0e:83:a3:08:10:39:6f:3b:35:7e:5b:27:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:e7:6e:a8:e9:a1:55:b0:97:43:5c:f5:bb:56:30:e2:
        c1:bb:a8:53:80:7c:45:97:70:ec:88:c6:bc:e3:49:db:
        e4:da:b4:ad:72:df:9d:77:0f:c8:98:f2:de:8e:b7:82:
        ef:e0:95:04:17:a4:4e:a8:01:67:67:8f:e5:2f:63:f9:
        bc:35:f3:79:9a:7a:d3:7f:e5:27:be:a9:d6:f9:d4:cb:
        0b:b3:61:58:f0:3b:c0:0d:a5:24:d7:0f:9c:e7:f8:e3:
        8b:f2:b2:39:e1:38:72:1f:3d:39:5d:85:ca:8c:d0:38:
        bc:be:32:e0:f2:ab:58:64:57:a7:1f:b7:b6:6f:5e:21:
        30:5d:3e:a8:5b:92:27:b4:cc:8c:76:a9:38:8f:1f:9a:
        8e:5b:2d:c8:69:8f:a0:9e:a2:6a:6e:f7:f5:af:f0:9d:
        1b:14:16:45:fc:c8:e9:26:1e:10:03:11:83:4f:d7:34:
        73:18:13:f4:67:08:7e:e3:f1:49:80:9e:1d:d5:2f:01:
        4b:b7:e7:1b:6c:e2:91:35:5c:f4:f1:e8:c8:32:3e:44:
        20:d1:dc:d8:da:df:4e:ec:6d:50:23:49:34:c1:40:12:
        fa:45:f5:54:28:87:01:c4:6a:e0:05:87:69:31:cf:c6:
        65:30:f0:e2:bd:9c:a7:03:dd:90:95:09:9b:ee:e6:d1
    Fingerprint (SHA-256):
        F4:D1:4E:E9:17:72:CA:90:03:54:A5:04:71:38:63:E1:CB:C1:6C:C2:DB:B5:DE:70:F3:46:73:19:F0:DB:48:2E
    Fingerprint (SHA1):
        C3:8F:C7:F1:C9:0A:5D:93:BE:E7:32:70:27:A1:D7:D6:95:1F:66:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7911: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7912: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123517 (0x310fde3d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:42 2017
            Not After : Tue Aug 23 12:34:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:63:c8:6f:ff:5d:c1:92:1c:5a:d0:e6:d6:6f:41:68:
                    69:50:ca:92:81:39:2e:15:6e:81:56:c0:77:35:c9:4f:
                    30:ea:2b:bd:5f:2e:c6:ab:4e:10:a5:1b:81:4e:c3:dd:
                    d9:75:48:fa:2c:81:2a:b3:9d:ff:e4:78:fd:8b:b9:f2:
                    91:7a:b5:83:b0:e7:a7:36:cf:db:76:4a:11:06:81:c2:
                    5f:dd:5d:c2:f1:ca:6c:93:5f:83:8c:58:00:8e:af:2f:
                    f4:12:d3:74:e7:23:a7:0a:46:cc:c8:ed:75:f2:01:a7:
                    93:1c:37:57:23:25:5d:be:89:7c:4d:4a:74:38:9f:4e:
                    b0:b5:4c:9a:8c:0c:c8:50:a4:0b:cc:eb:ca:2e:cc:12:
                    da:99:03:2a:a0:da:af:ad:f9:7f:12:47:4b:fc:65:16:
                    2d:a7:90:aa:ee:e7:24:6c:31:7b:c6:30:99:a9:63:d4:
                    cd:d3:6f:e3:fd:9f:a3:43:21:8e:51:77:38:9f:dc:f4:
                    ad:fb:7a:df:97:f1:66:44:c0:30:9e:b7:2d:f8:b2:6d:
                    e4:0d:c5:1d:82:14:30:6d:ca:4c:19:8c:59:e0:21:94:
                    bb:ea:51:e5:38:ca:74:cb:f9:6a:eb:47:a5:5a:8d:20:
                    cd:14:9d:f3:4e:70:f0:65:dd:0b:e8:05:b2:8b:c1:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:90:a9:a4:12:ba:14:ba:17:8d:c3:30:82:c5:70:bc:
        41:fe:8b:80:2c:46:8c:5c:97:f4:f2:91:d6:c2:3e:16:
        6a:7f:1c:e9:3b:cc:90:8a:70:43:04:c6:48:f6:92:8d:
        d7:22:46:1a:6b:ed:a3:07:20:25:73:59:30:b3:45:0b:
        fb:c8:c5:ec:18:2b:02:57:2d:cd:3b:39:c6:f1:58:c1:
        83:92:9c:e7:86:40:52:60:c0:7e:3b:cf:a4:a5:d7:f9:
        93:c7:d2:71:8f:43:fb:9f:1e:64:42:da:a3:80:87:9e:
        60:b2:54:db:af:ba:3b:4e:2e:0f:67:d3:67:4e:ab:fa:
        53:2b:7a:1f:b7:17:e1:0c:e1:7c:d7:9a:9f:b4:78:42:
        c4:34:df:cd:8e:92:38:02:83:2d:5e:31:46:5d:0f:ab:
        51:f4:a3:86:99:6b:49:62:3c:71:c9:30:10:61:f0:54:
        0b:0b:ed:84:88:47:5b:9d:11:30:0c:a8:f9:88:e7:3d:
        26:96:57:f2:a7:b3:01:88:30:a3:9b:4a:5c:f6:35:5c:
        14:4e:e2:29:51:a8:ca:f2:23:b5:76:33:00:c0:bb:94:
        3f:66:62:51:54:5d:77:0b:c8:6c:e2:59:09:b3:b0:9e:
        38:f1:8a:63:3a:97:ad:c6:3f:54:ef:78:aa:09:3d:e5
    Fingerprint (SHA-256):
        4C:29:B2:92:5B:B7:52:96:6A:7D:79:4F:7F:92:6D:FB:29:7B:2E:EE:07:7B:09:D3:48:EC:9B:25:10:C6:6D:EA
    Fingerprint (SHA1):
        80:EC:09:BE:16:E4:58:F4:0A:CD:77:62:A2:9E:A6:7B:AE:5C:D9:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7913: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7914: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123515 (0x310fde3b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:49:4e:8f:9f:bf:19:fe:46:b3:40:8d:34:5f:da:dc:
                    e1:b3:48:1b:ee:35:09:fb:b7:93:04:20:ca:88:ea:65:
                    65:f3:27:1d:9a:4b:ba:67:f4:5d:ee:8d:63:e8:1a:a0:
                    82:4c:11:0c:b4:8a:2b:ae:df:53:07:13:7b:6f:1d:4f:
                    72:02:1c:5f:db:a9:75:09:19:08:37:ee:20:99:d8:90:
                    4d:97:0c:ac:40:11:eb:46:df:9c:01:95:e5:ca:38:2a:
                    40:46:d8:b8:9e:ff:20:0e:a5:ff:ac:59:8b:56:73:43:
                    e2:8b:49:7f:4f:e8:32:53:62:1b:6c:cc:20:22:0f:2c:
                    9e:ff:75:38:67:7f:92:f8:ca:19:82:21:d3:d4:45:e5:
                    ff:21:f9:51:18:19:44:e5:5a:23:c6:ee:e2:58:99:8a:
                    cc:9e:97:6e:00:6b:7f:52:b3:2e:e1:4e:0d:75:2a:c4:
                    c9:39:8f:ae:7c:1d:20:a0:b8:87:a6:03:38:f4:af:97:
                    c5:71:d1:67:81:40:71:27:ad:fa:7f:68:3a:34:4e:0c:
                    4f:8b:05:b1:60:4d:59:84:17:7a:30:e1:00:86:28:2f:
                    c4:5a:8e:a2:20:01:b3:2d:ce:51:d1:5d:7d:b7:07:a4:
                    47:90:d5:f1:50:22:b0:82:4c:99:02:cd:28:31:71:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:e4:93:f8:ab:a7:b9:ed:d2:8c:67:9b:96:e6:bc:20:
        c3:14:2a:67:6c:a4:4d:85:d6:b5:51:66:4a:47:5f:0c:
        84:f8:93:e0:29:b2:82:3a:de:1d:b3:f6:0d:54:e2:99:
        5d:9a:a1:e9:51:15:78:17:ba:91:eb:eb:ac:4e:61:81:
        a5:87:30:fb:9b:8f:6f:dd:18:9e:55:a2:43:a5:0e:06:
        c9:b9:09:de:c4:f0:e6:a6:c9:fe:8d:aa:4a:d9:07:a2:
        46:23:5a:8a:39:af:b8:99:11:f9:20:49:37:42:fd:0b:
        23:79:aa:fa:d1:f3:6c:c7:fa:7c:0c:1b:c7:50:e4:8a:
        2c:62:a1:07:70:82:06:87:2f:1e:79:4f:6d:04:57:6c:
        f8:a2:8b:fe:5f:32:3c:76:99:bb:ba:c0:b0:a3:b2:a6:
        be:55:82:a8:aa:d4:09:8e:fc:c7:aa:16:73:24:4d:81:
        4e:ab:c6:01:3f:c5:6f:3e:9f:bb:36:b8:27:f0:27:d1:
        15:7e:c3:71:db:7e:e1:1c:bc:c2:b5:95:c9:2c:4e:14:
        a9:29:bb:40:fc:6f:12:9e:26:c5:fc:6f:78:9d:a1:6c:
        7e:f6:27:7e:1e:f1:00:23:56:f0:42:02:0a:3e:a0:d2:
        e3:e9:b0:1b:7b:9e:62:38:51:c6:7d:0c:d9:67:85:8f
    Fingerprint (SHA-256):
        D1:8C:AD:B3:D9:D2:C5:D7:6F:10:6C:09:C4:5A:D3:80:38:1F:A4:F5:63:AF:83:9E:7A:AF:F1:2B:D8:56:30:71
    Fingerprint (SHA1):
        32:E1:73:5C:CE:58:FB:46:8F:97:17:9F:65:1F:49:A3:8A:02:88:D8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7915: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123515 (0x310fde3b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:49:4e:8f:9f:bf:19:fe:46:b3:40:8d:34:5f:da:dc:
                    e1:b3:48:1b:ee:35:09:fb:b7:93:04:20:ca:88:ea:65:
                    65:f3:27:1d:9a:4b:ba:67:f4:5d:ee:8d:63:e8:1a:a0:
                    82:4c:11:0c:b4:8a:2b:ae:df:53:07:13:7b:6f:1d:4f:
                    72:02:1c:5f:db:a9:75:09:19:08:37:ee:20:99:d8:90:
                    4d:97:0c:ac:40:11:eb:46:df:9c:01:95:e5:ca:38:2a:
                    40:46:d8:b8:9e:ff:20:0e:a5:ff:ac:59:8b:56:73:43:
                    e2:8b:49:7f:4f:e8:32:53:62:1b:6c:cc:20:22:0f:2c:
                    9e:ff:75:38:67:7f:92:f8:ca:19:82:21:d3:d4:45:e5:
                    ff:21:f9:51:18:19:44:e5:5a:23:c6:ee:e2:58:99:8a:
                    cc:9e:97:6e:00:6b:7f:52:b3:2e:e1:4e:0d:75:2a:c4:
                    c9:39:8f:ae:7c:1d:20:a0:b8:87:a6:03:38:f4:af:97:
                    c5:71:d1:67:81:40:71:27:ad:fa:7f:68:3a:34:4e:0c:
                    4f:8b:05:b1:60:4d:59:84:17:7a:30:e1:00:86:28:2f:
                    c4:5a:8e:a2:20:01:b3:2d:ce:51:d1:5d:7d:b7:07:a4:
                    47:90:d5:f1:50:22:b0:82:4c:99:02:cd:28:31:71:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:e4:93:f8:ab:a7:b9:ed:d2:8c:67:9b:96:e6:bc:20:
        c3:14:2a:67:6c:a4:4d:85:d6:b5:51:66:4a:47:5f:0c:
        84:f8:93:e0:29:b2:82:3a:de:1d:b3:f6:0d:54:e2:99:
        5d:9a:a1:e9:51:15:78:17:ba:91:eb:eb:ac:4e:61:81:
        a5:87:30:fb:9b:8f:6f:dd:18:9e:55:a2:43:a5:0e:06:
        c9:b9:09:de:c4:f0:e6:a6:c9:fe:8d:aa:4a:d9:07:a2:
        46:23:5a:8a:39:af:b8:99:11:f9:20:49:37:42:fd:0b:
        23:79:aa:fa:d1:f3:6c:c7:fa:7c:0c:1b:c7:50:e4:8a:
        2c:62:a1:07:70:82:06:87:2f:1e:79:4f:6d:04:57:6c:
        f8:a2:8b:fe:5f:32:3c:76:99:bb:ba:c0:b0:a3:b2:a6:
        be:55:82:a8:aa:d4:09:8e:fc:c7:aa:16:73:24:4d:81:
        4e:ab:c6:01:3f:c5:6f:3e:9f:bb:36:b8:27:f0:27:d1:
        15:7e:c3:71:db:7e:e1:1c:bc:c2:b5:95:c9:2c:4e:14:
        a9:29:bb:40:fc:6f:12:9e:26:c5:fc:6f:78:9d:a1:6c:
        7e:f6:27:7e:1e:f1:00:23:56:f0:42:02:0a:3e:a0:d2:
        e3:e9:b0:1b:7b:9e:62:38:51:c6:7d:0c:d9:67:85:8f
    Fingerprint (SHA-256):
        D1:8C:AD:B3:D9:D2:C5:D7:6F:10:6C:09:C4:5A:D3:80:38:1F:A4:F5:63:AF:83:9E:7A:AF:F1:2B:D8:56:30:71
    Fingerprint (SHA1):
        32:E1:73:5C:CE:58:FB:46:8F:97:17:9F:65:1F:49:A3:8A:02:88:D8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7916: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123516 (0x310fde3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:24:ba:0a:2b:81:be:94:ea:8b:74:04:db:a3:ac:f6:
                    73:b7:1b:c3:ce:6d:b2:52:a2:c1:5e:63:9a:88:39:2c:
                    e9:9b:dd:bd:84:32:82:d6:aa:97:17:ed:bc:b2:46:72:
                    f9:73:3a:21:1d:f1:04:42:ee:b9:e9:fa:6b:22:06:d8:
                    08:12:d1:f6:a1:51:f0:a7:7b:f7:81:1d:e0:4d:b4:11:
                    2d:a7:23:36:dd:86:5e:60:94:91:1e:ab:23:49:41:34:
                    9f:df:22:d6:62:7e:fc:44:49:51:52:a5:93:cb:78:d0:
                    98:9b:d6:0b:e6:5e:f9:96:6a:36:65:bc:8b:26:eb:9c:
                    99:cd:8d:5d:4d:21:5e:29:6a:60:08:fd:af:ff:eb:ba:
                    cf:c9:6b:0b:d7:8c:d8:08:f1:0e:62:34:42:b6:3a:f2:
                    95:38:a3:a4:0b:ec:56:1d:f3:5c:ed:de:01:62:53:8d:
                    ee:b5:e0:43:ce:62:ff:0d:ea:7a:27:1f:1a:f0:e8:b5:
                    28:e0:e9:42:d0:bc:9e:fd:d8:8c:f8:d1:08:20:6d:75:
                    5f:8b:12:32:9d:c9:c5:63:5b:80:b6:bd:93:21:31:28:
                    0a:a2:a3:53:85:49:44:ba:24:ef:6c:27:bd:d0:3c:18:
                    56:df:a1:0e:83:a3:08:10:39:6f:3b:35:7e:5b:27:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:e7:6e:a8:e9:a1:55:b0:97:43:5c:f5:bb:56:30:e2:
        c1:bb:a8:53:80:7c:45:97:70:ec:88:c6:bc:e3:49:db:
        e4:da:b4:ad:72:df:9d:77:0f:c8:98:f2:de:8e:b7:82:
        ef:e0:95:04:17:a4:4e:a8:01:67:67:8f:e5:2f:63:f9:
        bc:35:f3:79:9a:7a:d3:7f:e5:27:be:a9:d6:f9:d4:cb:
        0b:b3:61:58:f0:3b:c0:0d:a5:24:d7:0f:9c:e7:f8:e3:
        8b:f2:b2:39:e1:38:72:1f:3d:39:5d:85:ca:8c:d0:38:
        bc:be:32:e0:f2:ab:58:64:57:a7:1f:b7:b6:6f:5e:21:
        30:5d:3e:a8:5b:92:27:b4:cc:8c:76:a9:38:8f:1f:9a:
        8e:5b:2d:c8:69:8f:a0:9e:a2:6a:6e:f7:f5:af:f0:9d:
        1b:14:16:45:fc:c8:e9:26:1e:10:03:11:83:4f:d7:34:
        73:18:13:f4:67:08:7e:e3:f1:49:80:9e:1d:d5:2f:01:
        4b:b7:e7:1b:6c:e2:91:35:5c:f4:f1:e8:c8:32:3e:44:
        20:d1:dc:d8:da:df:4e:ec:6d:50:23:49:34:c1:40:12:
        fa:45:f5:54:28:87:01:c4:6a:e0:05:87:69:31:cf:c6:
        65:30:f0:e2:bd:9c:a7:03:dd:90:95:09:9b:ee:e6:d1
    Fingerprint (SHA-256):
        F4:D1:4E:E9:17:72:CA:90:03:54:A5:04:71:38:63:E1:CB:C1:6C:C2:DB:B5:DE:70:F3:46:73:19:F0:DB:48:2E
    Fingerprint (SHA1):
        C3:8F:C7:F1:C9:0A:5D:93:BE:E7:32:70:27:A1:D7:D6:95:1F:66:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7917: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123516 (0x310fde3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:41 2017
            Not After : Tue Aug 23 12:34:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:24:ba:0a:2b:81:be:94:ea:8b:74:04:db:a3:ac:f6:
                    73:b7:1b:c3:ce:6d:b2:52:a2:c1:5e:63:9a:88:39:2c:
                    e9:9b:dd:bd:84:32:82:d6:aa:97:17:ed:bc:b2:46:72:
                    f9:73:3a:21:1d:f1:04:42:ee:b9:e9:fa:6b:22:06:d8:
                    08:12:d1:f6:a1:51:f0:a7:7b:f7:81:1d:e0:4d:b4:11:
                    2d:a7:23:36:dd:86:5e:60:94:91:1e:ab:23:49:41:34:
                    9f:df:22:d6:62:7e:fc:44:49:51:52:a5:93:cb:78:d0:
                    98:9b:d6:0b:e6:5e:f9:96:6a:36:65:bc:8b:26:eb:9c:
                    99:cd:8d:5d:4d:21:5e:29:6a:60:08:fd:af:ff:eb:ba:
                    cf:c9:6b:0b:d7:8c:d8:08:f1:0e:62:34:42:b6:3a:f2:
                    95:38:a3:a4:0b:ec:56:1d:f3:5c:ed:de:01:62:53:8d:
                    ee:b5:e0:43:ce:62:ff:0d:ea:7a:27:1f:1a:f0:e8:b5:
                    28:e0:e9:42:d0:bc:9e:fd:d8:8c:f8:d1:08:20:6d:75:
                    5f:8b:12:32:9d:c9:c5:63:5b:80:b6:bd:93:21:31:28:
                    0a:a2:a3:53:85:49:44:ba:24:ef:6c:27:bd:d0:3c:18:
                    56:df:a1:0e:83:a3:08:10:39:6f:3b:35:7e:5b:27:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:e7:6e:a8:e9:a1:55:b0:97:43:5c:f5:bb:56:30:e2:
        c1:bb:a8:53:80:7c:45:97:70:ec:88:c6:bc:e3:49:db:
        e4:da:b4:ad:72:df:9d:77:0f:c8:98:f2:de:8e:b7:82:
        ef:e0:95:04:17:a4:4e:a8:01:67:67:8f:e5:2f:63:f9:
        bc:35:f3:79:9a:7a:d3:7f:e5:27:be:a9:d6:f9:d4:cb:
        0b:b3:61:58:f0:3b:c0:0d:a5:24:d7:0f:9c:e7:f8:e3:
        8b:f2:b2:39:e1:38:72:1f:3d:39:5d:85:ca:8c:d0:38:
        bc:be:32:e0:f2:ab:58:64:57:a7:1f:b7:b6:6f:5e:21:
        30:5d:3e:a8:5b:92:27:b4:cc:8c:76:a9:38:8f:1f:9a:
        8e:5b:2d:c8:69:8f:a0:9e:a2:6a:6e:f7:f5:af:f0:9d:
        1b:14:16:45:fc:c8:e9:26:1e:10:03:11:83:4f:d7:34:
        73:18:13:f4:67:08:7e:e3:f1:49:80:9e:1d:d5:2f:01:
        4b:b7:e7:1b:6c:e2:91:35:5c:f4:f1:e8:c8:32:3e:44:
        20:d1:dc:d8:da:df:4e:ec:6d:50:23:49:34:c1:40:12:
        fa:45:f5:54:28:87:01:c4:6a:e0:05:87:69:31:cf:c6:
        65:30:f0:e2:bd:9c:a7:03:dd:90:95:09:9b:ee:e6:d1
    Fingerprint (SHA-256):
        F4:D1:4E:E9:17:72:CA:90:03:54:A5:04:71:38:63:E1:CB:C1:6C:C2:DB:B5:DE:70:F3:46:73:19:F0:DB:48:2E
    Fingerprint (SHA1):
        C3:8F:C7:F1:C9:0A:5D:93:BE:E7:32:70:27:A1:D7:D6:95:1F:66:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7918: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123517 (0x310fde3d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:42 2017
            Not After : Tue Aug 23 12:34:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:63:c8:6f:ff:5d:c1:92:1c:5a:d0:e6:d6:6f:41:68:
                    69:50:ca:92:81:39:2e:15:6e:81:56:c0:77:35:c9:4f:
                    30:ea:2b:bd:5f:2e:c6:ab:4e:10:a5:1b:81:4e:c3:dd:
                    d9:75:48:fa:2c:81:2a:b3:9d:ff:e4:78:fd:8b:b9:f2:
                    91:7a:b5:83:b0:e7:a7:36:cf:db:76:4a:11:06:81:c2:
                    5f:dd:5d:c2:f1:ca:6c:93:5f:83:8c:58:00:8e:af:2f:
                    f4:12:d3:74:e7:23:a7:0a:46:cc:c8:ed:75:f2:01:a7:
                    93:1c:37:57:23:25:5d:be:89:7c:4d:4a:74:38:9f:4e:
                    b0:b5:4c:9a:8c:0c:c8:50:a4:0b:cc:eb:ca:2e:cc:12:
                    da:99:03:2a:a0:da:af:ad:f9:7f:12:47:4b:fc:65:16:
                    2d:a7:90:aa:ee:e7:24:6c:31:7b:c6:30:99:a9:63:d4:
                    cd:d3:6f:e3:fd:9f:a3:43:21:8e:51:77:38:9f:dc:f4:
                    ad:fb:7a:df:97:f1:66:44:c0:30:9e:b7:2d:f8:b2:6d:
                    e4:0d:c5:1d:82:14:30:6d:ca:4c:19:8c:59:e0:21:94:
                    bb:ea:51:e5:38:ca:74:cb:f9:6a:eb:47:a5:5a:8d:20:
                    cd:14:9d:f3:4e:70:f0:65:dd:0b:e8:05:b2:8b:c1:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:90:a9:a4:12:ba:14:ba:17:8d:c3:30:82:c5:70:bc:
        41:fe:8b:80:2c:46:8c:5c:97:f4:f2:91:d6:c2:3e:16:
        6a:7f:1c:e9:3b:cc:90:8a:70:43:04:c6:48:f6:92:8d:
        d7:22:46:1a:6b:ed:a3:07:20:25:73:59:30:b3:45:0b:
        fb:c8:c5:ec:18:2b:02:57:2d:cd:3b:39:c6:f1:58:c1:
        83:92:9c:e7:86:40:52:60:c0:7e:3b:cf:a4:a5:d7:f9:
        93:c7:d2:71:8f:43:fb:9f:1e:64:42:da:a3:80:87:9e:
        60:b2:54:db:af:ba:3b:4e:2e:0f:67:d3:67:4e:ab:fa:
        53:2b:7a:1f:b7:17:e1:0c:e1:7c:d7:9a:9f:b4:78:42:
        c4:34:df:cd:8e:92:38:02:83:2d:5e:31:46:5d:0f:ab:
        51:f4:a3:86:99:6b:49:62:3c:71:c9:30:10:61:f0:54:
        0b:0b:ed:84:88:47:5b:9d:11:30:0c:a8:f9:88:e7:3d:
        26:96:57:f2:a7:b3:01:88:30:a3:9b:4a:5c:f6:35:5c:
        14:4e:e2:29:51:a8:ca:f2:23:b5:76:33:00:c0:bb:94:
        3f:66:62:51:54:5d:77:0b:c8:6c:e2:59:09:b3:b0:9e:
        38:f1:8a:63:3a:97:ad:c6:3f:54:ef:78:aa:09:3d:e5
    Fingerprint (SHA-256):
        4C:29:B2:92:5B:B7:52:96:6A:7D:79:4F:7F:92:6D:FB:29:7B:2E:EE:07:7B:09:D3:48:EC:9B:25:10:C6:6D:EA
    Fingerprint (SHA1):
        80:EC:09:BE:16:E4:58:F4:0A:CD:77:62:A2:9E:A6:7B:AE:5C:D9:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7919: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123517 (0x310fde3d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:42 2017
            Not After : Tue Aug 23 12:34:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:63:c8:6f:ff:5d:c1:92:1c:5a:d0:e6:d6:6f:41:68:
                    69:50:ca:92:81:39:2e:15:6e:81:56:c0:77:35:c9:4f:
                    30:ea:2b:bd:5f:2e:c6:ab:4e:10:a5:1b:81:4e:c3:dd:
                    d9:75:48:fa:2c:81:2a:b3:9d:ff:e4:78:fd:8b:b9:f2:
                    91:7a:b5:83:b0:e7:a7:36:cf:db:76:4a:11:06:81:c2:
                    5f:dd:5d:c2:f1:ca:6c:93:5f:83:8c:58:00:8e:af:2f:
                    f4:12:d3:74:e7:23:a7:0a:46:cc:c8:ed:75:f2:01:a7:
                    93:1c:37:57:23:25:5d:be:89:7c:4d:4a:74:38:9f:4e:
                    b0:b5:4c:9a:8c:0c:c8:50:a4:0b:cc:eb:ca:2e:cc:12:
                    da:99:03:2a:a0:da:af:ad:f9:7f:12:47:4b:fc:65:16:
                    2d:a7:90:aa:ee:e7:24:6c:31:7b:c6:30:99:a9:63:d4:
                    cd:d3:6f:e3:fd:9f:a3:43:21:8e:51:77:38:9f:dc:f4:
                    ad:fb:7a:df:97:f1:66:44:c0:30:9e:b7:2d:f8:b2:6d:
                    e4:0d:c5:1d:82:14:30:6d:ca:4c:19:8c:59:e0:21:94:
                    bb:ea:51:e5:38:ca:74:cb:f9:6a:eb:47:a5:5a:8d:20:
                    cd:14:9d:f3:4e:70:f0:65:dd:0b:e8:05:b2:8b:c1:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:90:a9:a4:12:ba:14:ba:17:8d:c3:30:82:c5:70:bc:
        41:fe:8b:80:2c:46:8c:5c:97:f4:f2:91:d6:c2:3e:16:
        6a:7f:1c:e9:3b:cc:90:8a:70:43:04:c6:48:f6:92:8d:
        d7:22:46:1a:6b:ed:a3:07:20:25:73:59:30:b3:45:0b:
        fb:c8:c5:ec:18:2b:02:57:2d:cd:3b:39:c6:f1:58:c1:
        83:92:9c:e7:86:40:52:60:c0:7e:3b:cf:a4:a5:d7:f9:
        93:c7:d2:71:8f:43:fb:9f:1e:64:42:da:a3:80:87:9e:
        60:b2:54:db:af:ba:3b:4e:2e:0f:67:d3:67:4e:ab:fa:
        53:2b:7a:1f:b7:17:e1:0c:e1:7c:d7:9a:9f:b4:78:42:
        c4:34:df:cd:8e:92:38:02:83:2d:5e:31:46:5d:0f:ab:
        51:f4:a3:86:99:6b:49:62:3c:71:c9:30:10:61:f0:54:
        0b:0b:ed:84:88:47:5b:9d:11:30:0c:a8:f9:88:e7:3d:
        26:96:57:f2:a7:b3:01:88:30:a3:9b:4a:5c:f6:35:5c:
        14:4e:e2:29:51:a8:ca:f2:23:b5:76:33:00:c0:bb:94:
        3f:66:62:51:54:5d:77:0b:c8:6c:e2:59:09:b3:b0:9e:
        38:f1:8a:63:3a:97:ad:c6:3f:54:ef:78:aa:09:3d:e5
    Fingerprint (SHA-256):
        4C:29:B2:92:5B:B7:52:96:6A:7D:79:4F:7F:92:6D:FB:29:7B:2E:EE:07:7B:09:D3:48:EC:9B:25:10:C6:6D:EA
    Fingerprint (SHA1):
        80:EC:09:BE:16:E4:58:F4:0A:CD:77:62:A2:9E:A6:7B:AE:5C:D9:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7920: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7921: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123520 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7922: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7923: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7924: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7925: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123521   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7926: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7927: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7928: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7929: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123522   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7930: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7931: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7932: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7933: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 823123523   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7934: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7935: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7936: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7937: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823123524   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7938: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7939: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7940: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7941: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823123525   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7942: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7943: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7944: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7945: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 823123526   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7946: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7947: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7948: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7949: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7950: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7951: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7952: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123520 (0x310fde40)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:43 2017
            Not After : Tue Aug 23 12:34:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:31:52:44:f1:c4:7f:26:14:49:04:9c:17:5d:9d:df:
                    1a:26:17:68:d1:f1:87:cf:97:9e:37:99:6c:16:33:7a:
                    1c:94:dd:76:60:fc:15:50:e0:86:34:cd:3b:ec:c3:bd:
                    50:58:1a:7a:69:3b:56:51:26:fa:01:26:7f:63:cc:54:
                    5e:22:da:c8:b8:6b:13:41:9e:1e:64:d4:d0:dd:f2:89:
                    67:c0:7a:0c:13:8a:0b:74:e7:c5:71:99:2f:4a:e5:68:
                    f0:f5:25:a4:8d:f3:ab:c5:db:ad:bc:2b:96:9e:57:c9:
                    b3:1e:99:9c:b5:13:18:43:87:87:c8:5c:8c:c7:b9:cf:
                    ae:94:bd:93:65:af:08:df:5a:f4:7d:5f:7e:dd:88:17:
                    46:70:ac:ce:dd:c4:f0:80:cc:06:fb:7f:75:d3:b3:b3:
                    7c:73:b6:fc:36:2b:8d:41:56:ed:bd:e5:68:66:6d:26:
                    7c:57:9e:08:87:91:66:e9:35:1d:38:e5:8d:e6:d9:1f:
                    25:20:48:89:dc:8e:c8:d8:a4:3e:ac:8e:f3:19:5e:7c:
                    48:d1:9c:5d:52:d6:11:b0:82:94:0b:da:f4:64:11:08:
                    52:b0:e5:55:cc:2b:af:e3:e5:6c:0e:f2:76:42:4b:76:
                    47:ae:e0:8c:fb:56:39:f9:5c:26:7a:9f:71:ef:52:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:a8:c4:d1:66:1d:f9:06:65:91:16:3c:da:e3:bf:de:
        ca:a9:81:f0:c3:e7:bf:5e:0d:3b:09:b9:56:4d:b6:e7:
        41:95:7c:7c:67:e2:4e:4e:c4:59:b3:38:56:92:65:a4:
        b8:88:1e:64:35:6a:67:8e:ba:73:f0:49:d6:da:63:40:
        de:f9:74:ac:b6:fc:29:46:33:91:ac:3c:04:cf:c6:b5:
        a9:19:12:5f:0f:ff:e8:84:51:e6:be:28:bf:71:d0:fc:
        17:26:32:7a:c9:0b:b6:79:29:b0:c2:2b:9a:59:fa:29:
        20:f9:e6:7c:48:79:8c:64:1c:c4:b6:2f:6f:a7:56:b3:
        5a:6e:a6:ce:08:f9:c2:11:3f:3f:e0:94:85:fc:29:78:
        57:db:73:15:58:ae:3f:3f:91:76:70:df:56:50:48:c5:
        86:71:da:32:a7:61:b1:6a:aa:a2:15:13:6c:82:de:38:
        c5:ea:2e:29:94:38:25:8b:be:2c:9b:78:a8:ed:b3:42:
        7c:69:b9:e0:2a:38:7b:ac:46:c5:69:2c:54:2f:d4:94:
        b8:81:08:9c:2c:94:87:67:da:83:c2:ca:a2:ca:39:90:
        98:21:8e:bb:6d:4f:c0:b0:01:15:61:5b:d0:d6:22:9a:
        4b:09:c5:8d:e6:7c:4a:34:3f:7b:4e:57:10:2f:b0:c5
    Fingerprint (SHA-256):
        2A:6B:A4:94:C3:B2:53:90:48:03:93:11:FA:F7:EF:CB:2E:2D:FB:30:85:98:3D:81:85:8E:C6:64:79:00:AF:4B
    Fingerprint (SHA1):
        89:83:A3:8B:49:C6:FF:DC:2C:EB:10:7F:72:2C:60:66:D6:26:68:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7953: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7954: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7955: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7956: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123520 (0x310fde40)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:43 2017
            Not After : Tue Aug 23 12:34:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:31:52:44:f1:c4:7f:26:14:49:04:9c:17:5d:9d:df:
                    1a:26:17:68:d1:f1:87:cf:97:9e:37:99:6c:16:33:7a:
                    1c:94:dd:76:60:fc:15:50:e0:86:34:cd:3b:ec:c3:bd:
                    50:58:1a:7a:69:3b:56:51:26:fa:01:26:7f:63:cc:54:
                    5e:22:da:c8:b8:6b:13:41:9e:1e:64:d4:d0:dd:f2:89:
                    67:c0:7a:0c:13:8a:0b:74:e7:c5:71:99:2f:4a:e5:68:
                    f0:f5:25:a4:8d:f3:ab:c5:db:ad:bc:2b:96:9e:57:c9:
                    b3:1e:99:9c:b5:13:18:43:87:87:c8:5c:8c:c7:b9:cf:
                    ae:94:bd:93:65:af:08:df:5a:f4:7d:5f:7e:dd:88:17:
                    46:70:ac:ce:dd:c4:f0:80:cc:06:fb:7f:75:d3:b3:b3:
                    7c:73:b6:fc:36:2b:8d:41:56:ed:bd:e5:68:66:6d:26:
                    7c:57:9e:08:87:91:66:e9:35:1d:38:e5:8d:e6:d9:1f:
                    25:20:48:89:dc:8e:c8:d8:a4:3e:ac:8e:f3:19:5e:7c:
                    48:d1:9c:5d:52:d6:11:b0:82:94:0b:da:f4:64:11:08:
                    52:b0:e5:55:cc:2b:af:e3:e5:6c:0e:f2:76:42:4b:76:
                    47:ae:e0:8c:fb:56:39:f9:5c:26:7a:9f:71:ef:52:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:a8:c4:d1:66:1d:f9:06:65:91:16:3c:da:e3:bf:de:
        ca:a9:81:f0:c3:e7:bf:5e:0d:3b:09:b9:56:4d:b6:e7:
        41:95:7c:7c:67:e2:4e:4e:c4:59:b3:38:56:92:65:a4:
        b8:88:1e:64:35:6a:67:8e:ba:73:f0:49:d6:da:63:40:
        de:f9:74:ac:b6:fc:29:46:33:91:ac:3c:04:cf:c6:b5:
        a9:19:12:5f:0f:ff:e8:84:51:e6:be:28:bf:71:d0:fc:
        17:26:32:7a:c9:0b:b6:79:29:b0:c2:2b:9a:59:fa:29:
        20:f9:e6:7c:48:79:8c:64:1c:c4:b6:2f:6f:a7:56:b3:
        5a:6e:a6:ce:08:f9:c2:11:3f:3f:e0:94:85:fc:29:78:
        57:db:73:15:58:ae:3f:3f:91:76:70:df:56:50:48:c5:
        86:71:da:32:a7:61:b1:6a:aa:a2:15:13:6c:82:de:38:
        c5:ea:2e:29:94:38:25:8b:be:2c:9b:78:a8:ed:b3:42:
        7c:69:b9:e0:2a:38:7b:ac:46:c5:69:2c:54:2f:d4:94:
        b8:81:08:9c:2c:94:87:67:da:83:c2:ca:a2:ca:39:90:
        98:21:8e:bb:6d:4f:c0:b0:01:15:61:5b:d0:d6:22:9a:
        4b:09:c5:8d:e6:7c:4a:34:3f:7b:4e:57:10:2f:b0:c5
    Fingerprint (SHA-256):
        2A:6B:A4:94:C3:B2:53:90:48:03:93:11:FA:F7:EF:CB:2E:2D:FB:30:85:98:3D:81:85:8E:C6:64:79:00:AF:4B
    Fingerprint (SHA1):
        89:83:A3:8B:49:C6:FF:DC:2C:EB:10:7F:72:2C:60:66:D6:26:68:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7957: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7958: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7959: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123527 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7960: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7961: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7962: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7963: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123528   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7964: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7965: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7966: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7967: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 823123529   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7968: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7969: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7970: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7971: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 823123530   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7972: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7973: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7974: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7975: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 823123531   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7976: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7977: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7978: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7979: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 823123532   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7980: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7981: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7982: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 823123533   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7984: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7985: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7986: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7987: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 823123534   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7988: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7989: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7990: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 823123535   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7992: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7993: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7994: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7995: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 823123536   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7996: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7997: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7998: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7999: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 823123537   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8000: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8001: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #8002: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8003: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 823123538   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8004: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8005: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #8006: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8007: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 823123539   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8008: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8009: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #8010: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8011: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 823123540   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8012: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8013: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #8014: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8015: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 823123541   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8016: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8017: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #8018: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8019: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 823123542   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8020: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8021: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #8022: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8023: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 823123543   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8024: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8025: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #8026: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8027: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 823123544   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #8028: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8029: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #8030: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8031: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 823123545   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8032: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8033: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #8034: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8035: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 823123546   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8036: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8037: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #8038: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8039: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 823123547   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8040: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8041: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #8042: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8043: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 823123548   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8044: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8045: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #8046: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8047: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 823123549   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8048: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8049: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #8050: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8051: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 823123550   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8052: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8053: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #8054: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8055: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 823123551   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8056: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8057: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #8058: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8059: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 823123552   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8060: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8061: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #8062: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8063: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 823123553   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8064: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8065: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #8066: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8067: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 823123554   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8068: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8069: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #8070: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8071: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 823123555   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8072: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8073: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #8074: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8075: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 823123556   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8076: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8077: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8078: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8079: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8080: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8081: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8082: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8083: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8084: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8085: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8086: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8087: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8088: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8089: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8090: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8091: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8092: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8093: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8094: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8095: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8096: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8097: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8098: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8099: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8100: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123527 (0x310fde47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:45 2017
            Not After : Tue Aug 23 12:34:45 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:8a:5f:18:4f:c7:a4:af:a2:b6:a9:3e:b4:07:c9:63:
                    f4:73:c0:34:9c:20:1a:c4:77:98:7b:25:47:20:bb:2e:
                    37:23:77:2c:aa:45:a3:85:ee:d3:63:5f:07:3a:20:3f:
                    cf:87:75:3f:e8:18:18:80:d7:d1:9f:ee:c6:a8:49:b9:
                    6a:a2:e8:03:ca:25:60:e6:34:a3:0d:bc:5f:b6:86:07:
                    fb:28:76:18:d0:17:b5:ef:dc:27:d6:f6:5b:82:6e:72:
                    71:75:71:de:3c:87:8c:14:13:28:43:94:42:f1:6a:39:
                    21:15:38:96:a8:60:c8:5c:79:d7:86:9e:49:72:d7:bb:
                    9a:11:97:fb:2e:94:be:c3:63:f5:fa:5e:2c:35:43:86:
                    84:fe:b6:a1:15:a5:58:ed:63:f5:b1:8b:0e:8a:ef:e8:
                    8c:06:d4:a1:7d:b2:71:e2:fe:20:94:bd:bc:48:ab:d8:
                    94:68:c0:9a:c0:7e:d3:50:ac:32:a6:e3:29:a0:2a:18:
                    df:c4:4c:04:eb:94:37:ac:5c:c6:97:61:56:ff:8d:cf:
                    9e:c2:ef:e7:29:2d:c9:67:d0:33:fc:68:df:d4:e6:f9:
                    03:93:32:34:bd:07:67:e6:61:71:f6:4d:a6:97:11:d9:
                    ae:f9:e1:ec:f3:15:79:f4:12:8d:ef:f2:30:5b:13:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:eb:a1:56:f4:7a:76:0c:b5:f9:ed:eb:0d:ce:24:47:
        a6:4f:bd:c0:5c:61:4f:25:85:9d:92:04:2f:1b:54:c7:
        33:ad:09:f9:2a:ef:f7:90:02:ad:42:07:ab:07:9c:6b:
        0e:fa:b5:25:e9:48:8d:62:c8:0b:b8:21:a0:9a:71:a1:
        89:bf:08:fc:09:f7:53:0d:86:dc:40:94:ee:58:4d:35:
        37:8a:72:ae:7e:e3:ff:9f:55:d8:42:6c:15:3b:41:c8:
        11:7c:2e:54:fa:f6:bd:c4:0a:0b:ac:d5:32:ea:3c:96:
        c6:7f:bf:81:4b:40:e5:b4:4c:1e:cf:ee:ac:fb:31:bf:
        7e:6d:be:e6:48:f9:32:b4:57:44:04:71:6a:c5:99:49:
        b3:95:35:5f:d6:86:5b:f9:48:25:47:33:49:e1:ca:36:
        48:f7:23:01:71:31:87:bd:d6:92:29:73:a7:8a:b0:6f:
        28:07:a7:09:e0:f7:c0:ce:e4:bc:36:7e:8a:35:0e:52:
        15:04:91:25:a5:5e:cd:77:ff:8c:49:77:cf:96:19:18:
        71:42:28:5c:c4:fa:7b:8e:0c:dd:c0:2a:df:b0:95:13:
        e6:2e:db:87:68:e0:fa:ef:0c:ef:c7:1a:1f:2d:2a:1c:
        bf:9a:a6:b4:ec:3e:22:69:7f:1b:b7:1f:fa:64:fd:d1
    Fingerprint (SHA-256):
        F1:A5:05:8F:60:00:8C:68:E0:2D:F2:A2:F1:EF:0F:BD:2D:97:66:F7:A0:F9:DF:34:08:CC:E6:CA:94:83:55:4F
    Fingerprint (SHA1):
        3A:BB:C5:DB:BB:E1:C4:2C:69:81:9D:07:4C:CB:88:20:63:86:B6:B6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8101: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8102: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8103: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123557 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8104: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8105: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #8106: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8107: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 823123558   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8108: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8109: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #8110: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8111: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 823123559   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8112: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8113: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #8114: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8115: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 823123560   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8116: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8117: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #8118: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8119: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 823123561   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8120: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8121: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #8122: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8123: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 823123562   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8124: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8125: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #8126: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8127: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 823123563   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8128: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8129: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8130: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123557 (0x310fde65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:52 2017
            Not After : Tue Aug 23 12:34:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fb:d5:d0:95:7e:10:c9:9a:e9:51:d2:8c:08:ac:d3:6c:
                    45:2f:fa:23:12:9b:2f:18:16:56:f2:42:d2:dc:47:ea:
                    c7:68:d8:39:4a:f7:2a:99:2c:10:68:16:e9:64:5b:69:
                    fc:ff:e8:f5:57:dd:2a:b9:02:90:f3:de:ae:b3:a8:4b:
                    40:75:7a:98:d9:d0:7f:fd:79:fd:21:8e:ab:cf:1d:ff:
                    11:08:9c:57:50:fe:09:78:49:10:d1:6d:1f:3f:5d:8e:
                    b2:44:61:9e:c7:4c:ca:7e:bf:74:14:e1:6a:95:b4:01:
                    13:f4:1a:40:ac:99:72:b1:7b:28:35:ab:93:10:1d:c5:
                    d7:c0:ca:98:a5:ee:f1:60:77:8c:00:9b:dd:2d:ec:d5:
                    62:91:22:f5:f4:81:26:f1:4d:b2:e5:bb:6c:f9:94:e7:
                    dc:20:1f:ae:f4:0f:1f:56:e7:a1:83:ce:79:5b:c8:3d:
                    04:fb:75:ca:eb:31:ec:48:0f:0c:ce:ca:3c:e9:7c:9d:
                    82:d5:a8:05:da:fe:d0:70:92:9a:dd:f6:b1:5e:c5:a9:
                    88:4f:dc:f6:f2:b6:c6:2d:49:d9:8f:11:2e:b4:cb:6e:
                    08:ee:5e:1e:c3:56:f7:84:a7:72:c7:e1:af:e9:5a:73:
                    27:ae:88:53:05:93:65:42:25:98:88:d0:f3:70:14:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:68:13:98:6f:78:97:27:95:af:f6:65:db:81:dd:9d:
        d1:85:e7:33:d4:eb:5c:9e:1e:9e:4f:77:36:09:18:28:
        ae:20:fb:03:52:1c:12:3c:5d:0c:c0:f4:ec:d4:02:be:
        c7:fc:2b:cf:a3:05:68:f8:fa:1d:4e:14:c6:15:51:c2:
        54:fc:87:bf:fa:4e:ca:85:25:e4:13:b4:e5:32:1b:db:
        e5:f9:af:4d:d8:62:ee:55:e9:10:90:69:95:be:5f:4c:
        46:62:27:0d:b8:22:03:ea:dc:3e:4e:67:f8:79:5a:92:
        4e:71:5f:0f:f3:d7:33:de:c9:0b:77:15:38:98:7f:d0:
        a1:bb:9b:67:23:cd:10:a1:e6:a9:00:90:c5:c2:e2:c0:
        df:7f:95:4c:04:9f:9d:ef:98:af:2f:73:83:ab:fc:69:
        d6:b3:c5:63:f9:57:b4:89:8f:c0:d4:49:40:af:6b:d2:
        0b:c7:a7:40:38:d3:5c:3b:e7:d9:af:0c:66:71:df:d2:
        b4:ae:b1:f8:14:3d:f9:0a:fc:37:40:3b:fe:1a:7a:b4:
        86:24:55:fb:b0:a4:65:09:a6:27:03:77:b7:a4:5c:62:
        ff:60:9b:e9:d2:37:be:1a:c8:15:be:a0:08:24:44:70:
        98:50:d8:fd:77:19:e9:2a:87:ec:df:03:57:6c:6c:39
    Fingerprint (SHA-256):
        C6:55:9D:8B:DB:A5:C6:0D:FD:55:96:E6:3E:28:45:87:CC:4D:26:98:FA:4D:E0:35:33:99:0C:18:8E:2D:F4:A4
    Fingerprint (SHA1):
        E5:20:4E:92:E4:F3:5B:27:69:84:B6:9F:66:15:8A:EF:1B:60:32:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8131: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8132: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8133: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8134: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123557 (0x310fde65)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:52 2017
            Not After : Tue Aug 23 12:34:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fb:d5:d0:95:7e:10:c9:9a:e9:51:d2:8c:08:ac:d3:6c:
                    45:2f:fa:23:12:9b:2f:18:16:56:f2:42:d2:dc:47:ea:
                    c7:68:d8:39:4a:f7:2a:99:2c:10:68:16:e9:64:5b:69:
                    fc:ff:e8:f5:57:dd:2a:b9:02:90:f3:de:ae:b3:a8:4b:
                    40:75:7a:98:d9:d0:7f:fd:79:fd:21:8e:ab:cf:1d:ff:
                    11:08:9c:57:50:fe:09:78:49:10:d1:6d:1f:3f:5d:8e:
                    b2:44:61:9e:c7:4c:ca:7e:bf:74:14:e1:6a:95:b4:01:
                    13:f4:1a:40:ac:99:72:b1:7b:28:35:ab:93:10:1d:c5:
                    d7:c0:ca:98:a5:ee:f1:60:77:8c:00:9b:dd:2d:ec:d5:
                    62:91:22:f5:f4:81:26:f1:4d:b2:e5:bb:6c:f9:94:e7:
                    dc:20:1f:ae:f4:0f:1f:56:e7:a1:83:ce:79:5b:c8:3d:
                    04:fb:75:ca:eb:31:ec:48:0f:0c:ce:ca:3c:e9:7c:9d:
                    82:d5:a8:05:da:fe:d0:70:92:9a:dd:f6:b1:5e:c5:a9:
                    88:4f:dc:f6:f2:b6:c6:2d:49:d9:8f:11:2e:b4:cb:6e:
                    08:ee:5e:1e:c3:56:f7:84:a7:72:c7:e1:af:e9:5a:73:
                    27:ae:88:53:05:93:65:42:25:98:88:d0:f3:70:14:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:68:13:98:6f:78:97:27:95:af:f6:65:db:81:dd:9d:
        d1:85:e7:33:d4:eb:5c:9e:1e:9e:4f:77:36:09:18:28:
        ae:20:fb:03:52:1c:12:3c:5d:0c:c0:f4:ec:d4:02:be:
        c7:fc:2b:cf:a3:05:68:f8:fa:1d:4e:14:c6:15:51:c2:
        54:fc:87:bf:fa:4e:ca:85:25:e4:13:b4:e5:32:1b:db:
        e5:f9:af:4d:d8:62:ee:55:e9:10:90:69:95:be:5f:4c:
        46:62:27:0d:b8:22:03:ea:dc:3e:4e:67:f8:79:5a:92:
        4e:71:5f:0f:f3:d7:33:de:c9:0b:77:15:38:98:7f:d0:
        a1:bb:9b:67:23:cd:10:a1:e6:a9:00:90:c5:c2:e2:c0:
        df:7f:95:4c:04:9f:9d:ef:98:af:2f:73:83:ab:fc:69:
        d6:b3:c5:63:f9:57:b4:89:8f:c0:d4:49:40:af:6b:d2:
        0b:c7:a7:40:38:d3:5c:3b:e7:d9:af:0c:66:71:df:d2:
        b4:ae:b1:f8:14:3d:f9:0a:fc:37:40:3b:fe:1a:7a:b4:
        86:24:55:fb:b0:a4:65:09:a6:27:03:77:b7:a4:5c:62:
        ff:60:9b:e9:d2:37:be:1a:c8:15:be:a0:08:24:44:70:
        98:50:d8:fd:77:19:e9:2a:87:ec:df:03:57:6c:6c:39
    Fingerprint (SHA-256):
        C6:55:9D:8B:DB:A5:C6:0D:FD:55:96:E6:3E:28:45:87:CC:4D:26:98:FA:4D:E0:35:33:99:0C:18:8E:2D:F4:A4
    Fingerprint (SHA1):
        E5:20:4E:92:E4:F3:5B:27:69:84:B6:9F:66:15:8A:EF:1B:60:32:3D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8135: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8136: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8137: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8138: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123564 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8139: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8140: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8141: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8142: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123565   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8143: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8144: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8145: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8146: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123566   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8147: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8148: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8149: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8150: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123567   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8151: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8152: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8153: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8154: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #8155: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #8156: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123564 (0x310fde6c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:54 2017
            Not After : Tue Aug 23 12:34:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:71:27:4b:a1:d5:20:69:86:89:be:b0:07:55:ab:6a:
                    15:37:0e:f3:f8:eb:07:b2:1b:49:c5:94:9b:a1:78:01:
                    47:a8:ca:36:2c:5c:c8:31:12:4a:00:39:04:21:d8:29:
                    7b:4e:e6:fa:c6:08:95:7d:98:bc:50:1e:70:52:64:2b:
                    e6:27:4f:7d:13:eb:98:94:c7:f5:63:92:30:0c:6c:bb:
                    0f:fe:72:21:33:d5:c4:8b:5d:18:b1:c8:f5:ee:26:21:
                    bb:36:99:37:7a:32:34:1a:4d:4e:fe:b2:2c:28:b7:cc:
                    c0:1b:10:76:2b:94:e1:fb:a4:d6:01:40:c6:25:52:fc:
                    8b:7f:11:ec:eb:6c:de:28:98:b3:a3:f1:e9:f4:6e:04:
                    af:6b:5e:d8:6f:02:73:ed:f4:e0:75:aa:35:0b:50:32:
                    2f:20:04:60:c0:95:c3:03:a8:84:1c:6c:8a:10:50:04:
                    33:7f:cd:08:c0:15:0e:ad:6a:54:93:1a:e0:5d:39:36:
                    27:0c:c7:14:88:64:f1:65:cc:74:f9:d7:f3:6b:87:60:
                    86:58:f1:79:f0:0e:08:94:7b:c0:6a:a1:0e:1b:5d:f3:
                    a9:be:90:93:47:46:da:c1:c6:34:de:1a:a2:71:ac:74:
                    27:e9:87:bf:a7:82:e1:d5:da:c8:a7:35:35:ab:40:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:ff:bd:11:42:b7:bc:4b:91:e6:fe:24:22:44:0b:2d:
        8f:2f:de:66:16:51:3b:23:7e:83:c0:7b:57:dc:58:e4:
        70:78:25:cf:7c:02:83:0c:b6:40:ba:14:20:8a:4c:00:
        75:bc:05:7c:3d:ba:54:42:27:27:91:b5:cf:e3:90:21:
        01:f4:53:5c:d3:87:f8:16:9e:b7:18:ec:97:fc:0f:48:
        21:ed:95:09:76:88:2d:ac:98:3f:05:68:d0:0d:44:b9:
        c1:4e:11:c1:5b:1d:c7:dc:0d:b4:e1:dd:d2:1c:db:ed:
        31:10:2d:68:45:85:4a:9c:96:ff:2b:d1:84:3a:5e:d8:
        d1:61:76:83:05:22:bb:77:a6:ac:cd:3e:4f:83:c8:c9:
        6a:ed:eb:0f:87:8c:38:01:8b:11:79:c4:59:19:53:fe:
        d3:b7:ed:77:6c:06:89:97:84:3e:0b:e4:70:cc:19:4a:
        90:54:30:79:9c:38:d7:69:9c:c8:f8:7f:62:ae:9c:af:
        45:a8:9d:c4:c6:ae:c0:63:a8:df:29:87:cc:09:f9:96:
        df:87:fe:44:82:fd:aa:3f:f6:e5:37:76:74:c2:16:f1:
        21:35:b9:02:6d:99:48:d5:de:0d:4c:3b:32:f9:41:88:
        0b:54:e0:30:32:87:ea:13:c1:09:01:ce:80:aa:19:7c
    Fingerprint (SHA-256):
        0B:59:24:96:32:E9:A3:85:64:EA:9A:97:7D:3A:E2:19:0C:E7:91:67:91:01:42:74:77:73:7D:6D:5F:91:03:9D
    Fingerprint (SHA1):
        D9:60:A1:A9:C8:B5:1E:6B:29:A0:CE:7E:2C:1C:9C:9E:13:BF:DA:A7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8157: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8158: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8159: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123565 (0x310fde6d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:54 2017
            Not After : Tue Aug 23 12:34:54 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:ae:d8:9b:47:08:f8:c0:01:12:73:03:db:e4:ad:e2:
                    a2:16:3e:8f:ab:0d:14:fb:d3:cd:34:b8:a2:06:24:e1:
                    8d:74:16:a6:13:b3:7c:be:9c:bd:0b:91:af:4f:72:19:
                    c2:55:f0:63:cc:0e:d2:6e:9b:ff:19:67:5f:21:f4:98:
                    0d:18:e9:41:8a:d0:4b:d4:ed:81:bb:26:35:d6:04:bd:
                    82:47:6a:4e:41:9a:7d:3a:9e:6d:b7:cd:3b:6c:39:8e:
                    6b:0a:0a:c2:2a:aa:66:1c:37:8b:9e:98:c8:c3:57:24:
                    47:df:2f:2b:e3:8a:70:9a:cf:cc:ad:7f:97:32:14:94:
                    88:6f:51:1f:05:00:bd:39:53:e7:2d:0b:4d:f5:d5:36:
                    f7:38:cd:dd:1f:92:22:20:5f:67:83:89:90:9b:fc:14:
                    b9:13:0e:38:c8:59:60:e5:70:a9:bc:ba:8b:eb:04:8e:
                    e1:4c:bf:bf:1d:71:33:c6:d8:b8:4f:64:85:22:70:44:
                    85:81:f1:dc:3b:f4:a4:0d:f1:4f:9b:33:ba:06:d5:c1:
                    5b:4b:1a:3b:ed:f3:25:ee:7a:8f:8a:3e:8e:c7:53:8e:
                    b0:cd:7b:19:fd:74:13:b5:87:7e:0f:49:ca:14:e7:ff:
                    00:fe:20:2e:f5:4b:77:5d:83:d5:36:6f:7c:c0:c8:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:f2:cc:28:9e:d6:9b:23:12:67:7c:68:ed:63:fa:45:
        da:85:7e:ce:0f:b2:a4:ed:32:47:fd:a8:80:85:f2:35:
        f9:24:f8:db:ea:07:aa:36:30:1d:fc:2c:b2:83:93:28:
        03:cd:62:55:54:40:29:86:39:da:9f:a1:30:39:52:4e:
        08:60:26:54:9c:35:21:44:11:87:f9:01:db:bd:d9:73:
        a3:01:87:81:08:6a:e3:06:c3:78:84:e1:49:ba:fa:a7:
        b0:48:c6:2a:23:10:f5:ca:5e:64:4b:81:59:07:70:f2:
        c8:3f:f9:aa:dd:52:f9:ba:34:f6:20:b1:9a:01:9b:e5:
        df:cd:7c:07:a6:58:70:66:7c:db:9a:08:28:e4:76:67:
        1b:03:c3:64:9c:bd:e2:89:97:b5:3d:23:39:91:78:7c:
        22:3d:c6:ac:85:8f:0f:a3:33:d8:b5:0b:28:df:af:f3:
        f3:6e:54:d2:72:f0:95:1e:e1:2c:ae:be:73:25:a4:e3:
        f3:58:c1:60:69:e5:40:0f:2d:9a:74:2d:7b:4d:98:65:
        29:6a:f1:85:1b:ee:1c:5b:d1:75:57:1c:8e:8d:d8:da:
        60:27:0a:b4:4d:7a:4b:63:f0:32:c3:4a:cd:de:35:fd:
        60:94:09:9e:2e:ca:3f:12:f9:72:63:28:86:79:b7:f3
    Fingerprint (SHA-256):
        11:38:9D:4C:C3:48:7B:02:19:4F:C6:91:A3:39:07:54:F7:DB:0B:33:F9:9A:82:70:80:DA:0B:F7:C8:42:F6:1C
    Fingerprint (SHA1):
        65:A3:F4:AE:BE:6A:F1:E7:4E:E7:7C:34:10:BF:EF:09:08:F0:45:03
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8160: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8161: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123566 (0x310fde6e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:55 2017
            Not After : Tue Aug 23 12:34:55 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:ad:c4:a3:38:99:ef:de:3d:45:be:3a:1e:a4:39:5a:
                    d3:49:a3:d1:af:cb:72:6b:f2:3e:4e:c4:0f:d3:01:bf:
                    78:4a:1a:8f:35:c0:db:0f:7d:68:9b:de:7c:a2:ec:88:
                    ed:54:75:01:25:96:cc:79:dc:f5:51:da:0c:e1:8c:f9:
                    49:2f:ad:d7:14:3a:d8:ba:02:14:3c:f1:22:79:a6:29:
                    76:2f:09:63:9e:51:ef:67:f5:05:4c:46:10:2a:51:6b:
                    b9:6f:03:f0:b2:99:a4:9d:e2:4e:58:79:41:19:fa:6e:
                    fc:11:00:a2:b5:c9:ec:72:9d:33:58:6c:ee:34:6e:5a:
                    17:d5:b7:d0:c1:c6:58:43:19:4b:01:08:d2:82:97:e3:
                    12:85:41:4e:d0:9e:9d:a4:9b:d8:11:55:58:4e:88:3a:
                    08:d3:26:0a:12:74:cc:94:71:5d:33:ad:32:ec:49:0f:
                    de:1c:c2:ca:75:4f:36:c4:24:97:ab:83:01:73:27:13:
                    b6:99:37:0e:f5:03:89:0a:10:de:d5:29:8f:88:db:13:
                    92:4e:8f:10:68:ce:35:81:d1:8e:3f:3c:5f:c7:61:fa:
                    10:d5:23:15:b5:75:69:1f:4a:d3:30:7c:75:cd:2e:c5:
                    2c:ea:cc:de:4c:15:4d:39:93:b5:33:cf:e4:30:92:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:b2:3d:b7:4b:b3:80:0d:ae:42:35:2d:2c:dc:2e:81:
        61:1b:8c:d8:49:e9:e6:dd:fe:37:5d:6a:57:1c:97:ac:
        ad:f2:5e:a9:7f:a5:2e:0e:39:12:4f:ea:cf:db:da:e5:
        51:e0:a6:b7:e4:f2:50:37:05:c0:7b:05:20:04:a7:ac:
        ac:24:c8:3f:99:4f:a1:25:d1:9d:b6:38:6d:ea:1d:04:
        30:cf:35:2f:cb:a1:a6:c8:b5:fc:c1:c6:65:a5:93:08:
        bb:98:29:43:b9:84:9f:01:a2:c7:35:38:99:be:aa:c3:
        31:ff:91:bd:25:ec:a2:6d:37:03:43:f7:3a:50:f5:6b:
        b5:e5:b4:e2:80:6a:59:f2:a2:a0:f9:da:ca:22:d2:86:
        76:3d:2b:15:88:f6:21:d1:de:26:30:7e:8b:5d:c1:e3:
        85:d4:32:e4:42:df:72:a6:91:01:21:36:22:0c:d3:bf:
        ad:05:18:45:54:b9:16:a3:f1:72:e2:8d:9d:2f:0b:0d:
        5d:6f:f6:45:3c:a8:da:31:f0:c7:2b:05:51:46:0f:bc:
        bb:3e:56:08:6e:ae:cf:45:2e:b9:21:a7:8e:f0:b4:ee:
        54:37:f0:2c:ff:0a:be:12:12:8c:93:bc:fd:b6:23:fb:
        61:53:56:44:bb:10:31:17:8b:11:28:2c:bd:57:90:2d
    Fingerprint (SHA-256):
        E0:00:39:D5:F5:E0:9E:6A:F3:45:9F:37:AC:98:31:55:73:52:3E:7A:26:DA:C0:29:3E:42:61:FA:E5:BB:56:4D
    Fingerprint (SHA1):
        31:77:C5:95:A6:CE:F8:29:FC:5E:7A:F4:8B:0E:55:FF:37:35:C7:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #8162: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8163: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123568 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8164: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8165: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8166: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8167: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123569   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8168: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8169: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8170: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8171: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123570   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8172: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8173: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #8174: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8175: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 823123571   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8176: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8177: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8178: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8179: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 823123572   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8180: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8181: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8182: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8183: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #8184: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #8185: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #8186: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123568 (0x310fde70)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:55 2017
            Not After : Tue Aug 23 12:34:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:5a:e9:7c:b0:f7:92:58:43:2e:45:d3:54:42:63:eb:
                    20:bd:bc:5c:76:a3:59:2c:f4:78:1d:7f:19:dd:fe:95:
                    79:0c:fa:49:c1:49:ff:7d:64:21:a4:09:74:59:42:f0:
                    1c:33:ee:88:46:2f:f8:2a:6c:0d:bc:e4:12:05:f5:ed:
                    76:f7:77:5b:73:61:f8:39:5f:63:67:a2:09:f1:68:da:
                    41:60:6f:59:8f:9d:98:52:09:7a:e5:1f:86:43:07:60:
                    d6:11:7c:69:0a:ae:37:7a:92:0d:4d:6e:90:9e:9c:63:
                    4b:17:61:ce:6d:ab:2e:cf:74:42:ec:e1:4a:a1:75:e0:
                    9e:bb:67:d1:fd:d9:14:39:f4:a5:d1:72:63:e2:b4:7d:
                    d9:17:42:e1:7d:ba:8d:fa:3d:03:1c:a5:8b:c3:58:f4:
                    e0:7c:56:8a:63:c5:a4:2b:21:24:73:0e:70:13:5c:fa:
                    dc:9e:e8:a3:e3:da:7a:9c:7d:4c:34:a4:02:c0:bb:26:
                    8b:47:d5:fe:e6:d7:fa:af:e4:07:ca:55:56:1b:3d:a1:
                    ea:de:fd:67:98:0c:4b:3f:3b:82:a2:ef:60:ae:d3:94:
                    31:78:eb:be:be:c9:e1:03:7f:7a:6e:13:59:aa:97:cc:
                    85:16:74:b2:14:d7:b6:e6:c2:33:24:81:af:4e:31:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:21:5a:03:2d:7d:d7:95:dd:b4:2b:32:a1:cf:2a:4b:
        dd:55:56:b5:02:cd:c7:2e:38:90:13:6f:ee:96:4b:64:
        95:14:5f:44:ae:1f:29:a1:89:3a:ee:a8:86:ba:7c:5c:
        c2:d8:55:f0:ef:7a:ae:12:07:2e:c9:12:c3:55:40:32:
        c6:47:8b:a1:85:aa:d7:e6:e4:55:95:d0:c9:ec:3a:3e:
        1d:43:3c:b1:f2:84:b5:01:3a:ed:8e:72:d1:53:4f:09:
        c8:5b:90:f0:47:c2:88:f6:44:22:12:0f:06:5f:90:b4:
        09:68:06:ed:e2:44:e0:a2:81:fc:b2:a3:13:ac:b1:f2:
        8f:ae:1b:1a:8b:4f:3c:54:de:1d:2f:5c:11:c4:38:00:
        68:ae:1a:96:53:60:29:57:31:35:de:a2:ad:f6:12:db:
        95:52:fc:4c:36:96:04:b5:d9:64:e3:cc:34:7c:ec:0c:
        d3:5a:28:59:4d:a8:be:51:47:6c:ed:a0:f6:1a:a8:db:
        be:15:62:74:65:92:f2:28:28:76:44:9e:04:d8:5b:86:
        bd:cf:0b:70:cd:cc:1e:7a:e5:e3:85:15:ca:7a:53:ed:
        24:9e:48:41:ef:cc:76:03:80:22:3f:ca:1c:da:88:3d:
        3b:6c:e7:de:33:1d:0f:42:0e:01:0e:d9:20:9e:23:62
    Fingerprint (SHA-256):
        BA:B9:D0:A4:3F:B3:43:C7:56:0E:C4:26:2E:46:8C:76:16:FD:D6:29:E0:DF:C7:E1:65:03:B6:F5:E5:59:A9:0E
    Fingerprint (SHA1):
        0A:BF:04:01:EE:7E:39:69:7C:74:06:21:C6:FA:23:51:11:D1:7D:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8187: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8188: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123569 (0x310fde71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:55 2017
            Not After : Tue Aug 23 12:34:55 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:f8:06:d8:bb:63:51:94:15:4e:84:79:b2:da:74:fb:
                    98:73:5b:e9:94:70:1a:cb:eb:f3:b3:c8:2d:ab:fa:c0:
                    4c:4c:23:7e:96:08:ff:f4:23:bb:94:33:3a:92:38:8d:
                    9a:e7:ef:de:ac:ed:d2:e2:d7:fe:53:ca:30:9a:25:ad:
                    89:28:6d:2f:86:fd:72:c1:ee:4a:fb:82:0b:f2:ef:10:
                    3e:8d:28:9b:bd:2a:74:19:74:53:87:99:b7:4d:8c:14:
                    6d:35:70:41:ac:1d:92:d6:07:0e:3b:7e:d6:a1:0d:8a:
                    d3:2b:2d:83:66:5a:69:88:57:d4:70:3b:b7:02:85:7e:
                    82:07:81:fd:24:37:bb:97:06:95:c0:61:b0:91:40:54:
                    5a:10:a5:77:37:6c:79:24:bc:71:74:d8:1e:1d:0e:08:
                    9c:56:29:52:12:74:e0:0b:fa:fa:1f:fa:58:ac:67:a4:
                    e5:f6:c3:12:be:b7:5c:49:82:f4:99:4e:3d:f5:ee:a4:
                    11:73:84:95:9c:44:4d:30:31:39:fb:97:6f:08:05:ba:
                    17:72:ce:9b:e2:e4:82:b4:0e:84:c0:8a:d2:7f:fc:ff:
                    1b:e8:46:6b:6b:cb:14:84:3e:68:ca:c5:0f:57:ac:94:
                    5a:5f:78:82:c6:99:b5:8d:7b:94:19:88:38:27:ac:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:e7:c6:a7:1e:5b:17:eb:dc:fc:54:72:a6:fd:eb:d5:
        2b:c1:43:ae:80:91:ea:ce:02:7d:c7:dd:34:c0:71:f4:
        0f:f4:41:9a:be:9c:2c:04:78:d3:fe:f1:bb:78:dc:20:
        de:c4:f8:32:1c:7e:e0:c6:16:4f:34:90:01:fd:b6:de:
        40:22:0c:dc:57:01:72:34:10:a6:63:c5:93:eb:42:82:
        9b:db:32:94:d6:24:99:18:d2:58:2c:3c:85:60:66:82:
        14:b6:15:30:65:c5:21:63:f7:e5:0c:da:e2:0c:a4:8a:
        e0:19:67:7a:37:ef:b1:72:71:d3:66:1c:20:5d:7e:c1:
        cb:8d:cb:63:43:e9:30:65:b1:93:f1:ef:a9:c3:a9:87:
        a2:22:ff:36:6a:e6:d7:42:19:2b:53:bd:49:52:ce:04:
        b7:f7:cf:39:b9:e7:1b:00:d7:37:5f:81:e7:66:4b:73:
        ec:7d:4e:e4:df:11:c0:08:32:7c:de:a0:9d:e1:79:be:
        02:8f:42:60:a2:12:a4:77:72:64:05:d7:f0:76:d5:43:
        22:32:77:fe:43:05:2f:7e:5d:28:22:be:58:5e:53:f0:
        34:52:9a:4b:c4:38:0b:1d:93:3e:5f:3f:98:1a:1c:dc:
        a4:e4:9b:89:0d:3f:27:1e:57:e7:62:45:fc:c2:27:14
    Fingerprint (SHA-256):
        B8:A0:F1:62:E7:5D:9B:17:FF:C6:5F:00:BA:AD:21:77:92:DB:C4:6A:B9:83:38:95:FB:13:09:EB:8A:6D:75:C5
    Fingerprint (SHA1):
        95:EF:CF:8A:A7:8C:CD:91:91:10:BC:9E:75:91:D2:A8:94:20:A9:79
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8189: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8190: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8191: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123570 (0x310fde72)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:56 2017
            Not After : Tue Aug 23 12:34:56 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:24:58:70:30:f7:ff:f0:eb:63:9c:79:27:6f:47:19:
                    04:17:51:bd:32:0b:87:09:c5:f3:d3:29:42:c0:1e:f0:
                    3e:21:d0:8a:66:37:c1:16:9a:56:f4:6e:d0:30:3a:29:
                    e1:6e:c9:73:c8:e1:63:36:b0:ee:5f:71:3e:24:25:75:
                    74:46:93:8a:17:db:4d:fc:f8:92:d0:50:e3:5e:31:f2:
                    3c:21:41:08:d5:39:68:49:9a:68:7d:f6:c4:4e:84:17:
                    ae:37:03:6f:63:80:f7:3d:26:5d:39:5d:4e:80:1e:95:
                    1e:ba:ac:95:7a:55:b6:e4:58:87:ab:fa:ea:72:e6:9c:
                    34:f6:85:27:4e:02:44:a6:5e:e5:32:94:44:4a:a8:ae:
                    50:e0:3b:d6:5c:f6:6e:98:11:e5:e3:80:d1:a2:94:67:
                    d7:bc:ba:42:38:32:42:7b:44:31:e2:a4:4a:80:f7:ed:
                    80:70:85:ae:db:b0:08:97:c2:fd:88:0c:4b:d6:32:6e:
                    8a:72:cd:75:60:23:75:f4:50:18:e7:32:ae:0a:bf:b0:
                    d9:65:c6:cf:82:44:6d:49:78:2e:c5:2e:06:5a:06:f3:
                    55:2e:21:6f:3b:ff:ea:07:7f:cb:61:6a:93:34:87:cc:
                    c0:fb:53:be:d8:08:e7:bc:87:32:38:59:a9:c7:0d:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:32:2f:a0:96:da:b7:a1:1d:28:77:15:06:23:f2:a4:
        fa:51:29:78:15:45:17:11:3a:39:7c:a3:51:e1:30:23:
        97:28:d0:65:c3:f0:7c:56:62:f4:3d:d5:f1:b1:06:9c:
        6a:19:e9:95:1c:19:28:88:08:8f:2e:24:f7:24:ea:27:
        9f:b2:f9:24:61:54:30:37:b4:2f:fd:94:85:bf:c2:86:
        58:e8:a9:1c:15:89:5c:5d:39:76:3e:e9:dc:63:e6:9b:
        e0:9d:04:a8:08:c9:83:85:ac:1a:68:8c:64:85:5f:ba:
        8c:8b:95:71:7a:d5:0b:a0:e3:fb:1e:26:95:37:17:33:
        d2:46:53:e3:be:46:61:c5:c8:11:80:d7:28:2a:02:e9:
        d8:f7:9b:64:4f:76:72:5e:bb:fc:95:6d:3c:58:5b:c1:
        5c:6b:ed:b8:30:01:89:c0:6b:13:5d:d7:c9:94:f0:01:
        80:16:b6:bf:0e:2a:22:ef:ae:38:3d:44:66:96:dc:81:
        70:4a:1c:fa:f3:f6:77:91:51:37:d4:82:5f:88:b0:e7:
        16:9f:59:68:9e:ab:f1:9f:65:0c:eb:58:33:b8:ba:55:
        65:f9:1b:ba:83:a6:f8:c6:bc:ac:7b:14:fb:65:87:4a:
        7c:cc:8d:a2:79:d4:5f:23:89:f5:ca:8f:e4:bb:f6:e3
    Fingerprint (SHA-256):
        1F:F2:AB:E0:2A:E3:D6:AE:E3:36:17:C5:23:31:81:04:A0:B4:31:4A:F4:10:BB:EF:2A:6F:00:9E:D1:6F:BF:13
    Fingerprint (SHA1):
        E2:EE:43:6F:40:3F:DD:82:76:33:2A:06:F6:7B:00:CA:46:CB:FB:D4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #8192: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8193: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123573 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8194: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8195: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8196: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8197: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123574   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8198: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8199: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8200: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8201: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123575   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA1Root-823123352.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8202: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8203: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8204: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8205: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823123576   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8206: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8207: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #8208: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123573 (0x310fde75)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:57 2017
            Not After : Tue Aug 23 12:34:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:45:1b:93:a3:33:94:71:f8:ab:99:63:cb:a1:9d:e7:
                    0e:c4:9e:37:1e:3f:36:d4:72:b9:15:2c:2b:53:46:ea:
                    34:85:e9:fb:ee:fa:05:af:84:04:2b:71:5f:e1:5a:bd:
                    9e:e8:91:86:19:d1:8d:2b:47:b6:a8:9b:31:01:3f:8a:
                    d9:a7:94:e7:29:25:22:a8:da:ae:41:fe:77:a9:02:dd:
                    fb:b9:ea:70:22:fa:d3:19:d3:96:c6:56:be:87:8d:65:
                    dc:10:fc:bb:7d:5f:27:20:96:0b:e2:a8:68:0f:0c:2d:
                    a6:28:a6:0d:c9:45:72:48:7b:2f:b9:5e:ce:b5:4d:fe:
                    ce:7e:1e:8a:30:29:2d:46:28:d3:e6:73:13:5d:f3:07:
                    c6:05:a0:77:3a:69:06:d2:06:91:dc:ba:09:83:0b:a8:
                    5c:39:0f:a1:bc:e3:07:7d:84:08:48:21:7a:15:bb:2b:
                    a7:03:82:50:a5:14:be:f0:22:f3:a0:81:a2:89:62:a3:
                    4b:67:03:e8:fc:34:04:e7:a0:ff:f7:1b:7a:d5:fa:4f:
                    50:0f:6e:1a:db:0a:11:fc:50:b2:bc:53:c3:4d:04:45:
                    95:84:d1:36:e2:b7:d9:0f:30:88:72:68:37:88:4e:1a:
                    48:2d:f7:4a:9c:26:89:a6:f6:01:cd:6c:67:7d:af:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:05:55:00:71:3a:14:5a:b3:a4:35:0c:eb:0c:50:26:
        35:76:41:75:f7:2d:38:2e:67:65:a2:22:b2:b2:31:f8:
        99:ca:c4:42:57:ec:dd:5e:e4:78:12:e7:a5:d2:f6:fa:
        ed:fb:ca:21:b9:c0:6b:a0:e1:34:23:2c:d8:40:e7:2d:
        6e:67:d1:b2:60:f9:f1:74:86:25:d8:c6:0d:04:bc:28:
        77:91:67:d6:6f:ec:f2:4f:32:45:ff:3a:df:c6:86:35:
        8d:4a:4d:c2:47:a5:58:18:c1:ff:95:6c:4c:5e:b2:1a:
        2d:7b:42:2a:df:5c:cb:57:ec:1c:12:a4:71:1b:be:0a:
        67:05:2e:8e:5f:39:1c:6e:9f:6c:dc:f5:ff:03:05:5f:
        90:13:02:58:53:ec:24:1d:8f:79:11:26:19:e6:7d:9b:
        6c:75:62:43:71:a6:7b:77:fb:1a:16:7a:d2:32:0c:e5:
        f4:a3:c7:26:b3:d3:f8:c5:af:82:3d:c0:0f:e0:5a:89:
        b9:61:78:c0:11:2b:5a:c2:7a:cc:aa:6e:3c:83:9a:e4:
        76:73:07:f5:4b:8a:18:f0:73:f5:b7:02:81:f0:2a:76:
        f4:1d:42:ef:33:be:b2:af:95:be:52:60:9b:85:09:6d:
        90:75:bd:d5:0e:63:75:36:9e:c5:8d:02:87:ea:16:b7
    Fingerprint (SHA-256):
        7A:E9:FE:B1:C3:62:BB:E4:29:96:2E:38:B8:B4:EE:49:18:B9:62:1C:AE:55:40:7D:8D:64:C5:7E:50:0A:9C:0D
    Fingerprint (SHA1):
        A6:68:1B:A2:86:A5:77:C4:2D:A9:23:FF:FC:A9:C4:48:07:0B:2A:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8209: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8210: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123577 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8211: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8212: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8213: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123578 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8214: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8215: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8216: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8217: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123579 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8218: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8219: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123580 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8220: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8221: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #8222: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8223: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8224: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123581   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123353.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8225: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8226: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8227: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8228: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123582   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8229: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8230: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #8231: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #8232: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123578 (0x310fde7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:58 2017
            Not After : Tue Aug 23 12:34:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:4b:d7:12:c2:29:ee:70:89:1b:7d:46:dc:1c:86:7e:
                    ae:a8:c0:0f:84:fd:28:ca:1f:07:26:29:f8:bc:71:f6:
                    e6:82:42:26:26:57:d7:40:bb:6b:3f:59:13:04:f7:01:
                    71:d3:cb:7d:f4:03:46:ae:72:2a:0a:37:de:43:c8:86:
                    1c:84:1e:af:58:65:9a:24:ed:f5:cc:6a:80:c5:61:a7:
                    12:96:82:ef:85:d6:30:e4:a7:c8:3a:70:3d:1b:20:52:
                    4f:09:5b:26:0e:fc:f3:be:47:16:d5:ed:7f:63:89:fb:
                    d3:6d:6d:e2:b4:52:83:2c:ee:3b:3a:c5:ab:2d:e0:82:
                    c3:69:d2:24:41:71:a1:68:ac:4c:86:bf:09:21:fd:b8:
                    fd:af:e8:b5:5e:bd:7b:c2:b3:2c:5c:9d:da:6a:f0:a0:
                    3e:d4:b7:3e:39:92:8b:ca:d3:12:b0:5a:f2:67:7f:0d:
                    a6:34:09:5f:d7:cb:a1:06:70:c3:91:9e:62:41:08:d2:
                    d9:bb:76:cd:f5:29:6b:2e:91:97:cc:87:f2:bf:5b:f9:
                    35:bb:f6:09:ca:ea:f3:a9:69:35:5f:cb:4d:0f:c3:cf:
                    9b:3d:7a:6e:34:f3:85:29:47:1d:13:3d:80:4c:9d:d6:
                    89:c6:36:8e:ab:78:10:a2:49:e8:75:c9:78:4b:3e:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:a0:ed:c3:a0:80:2f:d7:d9:ef:eb:fd:d3:db:42:90:
        4c:26:31:9e:a2:61:94:d2:73:c5:70:04:76:f9:29:be:
        67:8f:6b:f6:a8:de:5e:42:e4:94:39:e4:37:80:20:ba:
        60:b9:41:ab:ab:72:1f:3c:75:07:07:b3:57:ba:84:8b:
        12:6a:62:6d:77:b3:1c:b2:09:a6:f1:20:1c:53:2f:af:
        a6:a8:2e:59:9b:0d:9b:17:1e:a7:01:8a:7d:64:1a:69:
        eb:95:9b:2c:6c:b6:59:22:d9:f9:fb:4d:3a:b9:a9:6a:
        ae:8a:d6:41:01:a6:24:73:a8:b9:3e:c4:db:8b:4b:59:
        ad:d9:62:7b:d7:6e:3a:14:99:52:5f:bb:aa:db:0f:c0:
        d9:92:a8:47:46:ec:05:2c:94:f3:b2:18:43:f7:47:f0:
        6d:77:32:89:c6:7e:cc:59:fd:da:a4:30:00:0b:ec:32:
        0c:cb:e9:5d:dc:e8:96:c5:66:74:1b:f2:d9:81:43:8b:
        3b:ed:c0:06:03:0c:9a:f2:d6:42:ff:24:f7:5d:ee:7d:
        46:cd:8f:ff:6d:89:a0:aa:59:95:7f:a2:fd:45:a4:3e:
        13:43:f6:56:9e:9d:ae:c0:5b:a8:9d:15:51:89:04:d1:
        7d:e8:01:90:92:0b:6b:ee:3a:05:58:ef:ce:45:64:23
    Fingerprint (SHA-256):
        4E:C9:0A:66:56:F9:33:C7:36:E5:A7:A6:04:98:77:09:79:58:EA:25:A4:31:EA:14:DA:13:8C:08:48:84:93:FE
    Fingerprint (SHA1):
        8F:5C:9F:77:03:EE:8A:98:0B:D6:F2:70:C2:AB:A4:A9:26:8E:D0:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8233: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123578 (0x310fde7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:58 2017
            Not After : Tue Aug 23 12:34:58 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:4b:d7:12:c2:29:ee:70:89:1b:7d:46:dc:1c:86:7e:
                    ae:a8:c0:0f:84:fd:28:ca:1f:07:26:29:f8:bc:71:f6:
                    e6:82:42:26:26:57:d7:40:bb:6b:3f:59:13:04:f7:01:
                    71:d3:cb:7d:f4:03:46:ae:72:2a:0a:37:de:43:c8:86:
                    1c:84:1e:af:58:65:9a:24:ed:f5:cc:6a:80:c5:61:a7:
                    12:96:82:ef:85:d6:30:e4:a7:c8:3a:70:3d:1b:20:52:
                    4f:09:5b:26:0e:fc:f3:be:47:16:d5:ed:7f:63:89:fb:
                    d3:6d:6d:e2:b4:52:83:2c:ee:3b:3a:c5:ab:2d:e0:82:
                    c3:69:d2:24:41:71:a1:68:ac:4c:86:bf:09:21:fd:b8:
                    fd:af:e8:b5:5e:bd:7b:c2:b3:2c:5c:9d:da:6a:f0:a0:
                    3e:d4:b7:3e:39:92:8b:ca:d3:12:b0:5a:f2:67:7f:0d:
                    a6:34:09:5f:d7:cb:a1:06:70:c3:91:9e:62:41:08:d2:
                    d9:bb:76:cd:f5:29:6b:2e:91:97:cc:87:f2:bf:5b:f9:
                    35:bb:f6:09:ca:ea:f3:a9:69:35:5f:cb:4d:0f:c3:cf:
                    9b:3d:7a:6e:34:f3:85:29:47:1d:13:3d:80:4c:9d:d6:
                    89:c6:36:8e:ab:78:10:a2:49:e8:75:c9:78:4b:3e:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:a0:ed:c3:a0:80:2f:d7:d9:ef:eb:fd:d3:db:42:90:
        4c:26:31:9e:a2:61:94:d2:73:c5:70:04:76:f9:29:be:
        67:8f:6b:f6:a8:de:5e:42:e4:94:39:e4:37:80:20:ba:
        60:b9:41:ab:ab:72:1f:3c:75:07:07:b3:57:ba:84:8b:
        12:6a:62:6d:77:b3:1c:b2:09:a6:f1:20:1c:53:2f:af:
        a6:a8:2e:59:9b:0d:9b:17:1e:a7:01:8a:7d:64:1a:69:
        eb:95:9b:2c:6c:b6:59:22:d9:f9:fb:4d:3a:b9:a9:6a:
        ae:8a:d6:41:01:a6:24:73:a8:b9:3e:c4:db:8b:4b:59:
        ad:d9:62:7b:d7:6e:3a:14:99:52:5f:bb:aa:db:0f:c0:
        d9:92:a8:47:46:ec:05:2c:94:f3:b2:18:43:f7:47:f0:
        6d:77:32:89:c6:7e:cc:59:fd:da:a4:30:00:0b:ec:32:
        0c:cb:e9:5d:dc:e8:96:c5:66:74:1b:f2:d9:81:43:8b:
        3b:ed:c0:06:03:0c:9a:f2:d6:42:ff:24:f7:5d:ee:7d:
        46:cd:8f:ff:6d:89:a0:aa:59:95:7f:a2:fd:45:a4:3e:
        13:43:f6:56:9e:9d:ae:c0:5b:a8:9d:15:51:89:04:d1:
        7d:e8:01:90:92:0b:6b:ee:3a:05:58:ef:ce:45:64:23
    Fingerprint (SHA-256):
        4E:C9:0A:66:56:F9:33:C7:36:E5:A7:A6:04:98:77:09:79:58:EA:25:A4:31:EA:14:DA:13:8C:08:48:84:93:FE
    Fingerprint (SHA1):
        8F:5C:9F:77:03:EE:8A:98:0B:D6:F2:70:C2:AB:A4:A9:26:8E:D0:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8234: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8235: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123583 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8236: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8237: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8238: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123584 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8239: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8240: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8241: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8242: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823123585 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8243: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8244: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823123586 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8245: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8246: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #8247: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8248: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8249: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123587   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823123354.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8250: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8251: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8252: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8253: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123588   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8254: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8255: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8256: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8257: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123589   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-BridgeNavy-823123355.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8258: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8259: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8260: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8261: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123590   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8262: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8263: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #8264: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #8265: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123584 (0x310fde80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:59 2017
            Not After : Tue Aug 23 12:34:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:b8:79:1d:cf:6d:40:09:23:f0:44:13:c3:06:8d:f5:
                    76:0b:85:1c:b3:85:81:d3:7e:2c:89:16:fa:6e:0e:6a:
                    8e:87:0f:d8:58:19:52:25:8f:92:1f:c8:50:0b:b9:1a:
                    01:3b:15:ad:9b:a1:86:99:af:73:4e:85:7f:b2:ab:65:
                    24:23:8e:10:fa:f6:95:40:6f:2f:ff:5f:7e:29:2a:96:
                    6c:c6:a6:54:36:b4:78:42:cf:ef:39:59:65:9e:a7:1f:
                    c7:17:d8:6e:7d:d0:77:f9:51:11:b3:9b:b6:62:de:49:
                    c8:b1:62:40:d6:9f:5c:be:b6:9b:d7:11:f4:25:7e:18:
                    bc:71:7c:1d:73:89:0b:ba:98:a9:00:e8:7e:a0:5a:78:
                    74:65:55:0c:18:b5:43:e3:82:27:4f:24:b6:bc:a7:6b:
                    6a:0c:5b:9a:cf:8e:22:6a:fa:67:2c:7b:ce:ce:2f:7c:
                    0e:c2:89:50:25:2d:d4:46:bd:3d:ab:5d:88:9d:80:94:
                    67:6a:fd:8d:1d:7b:17:11:7d:4d:50:c6:70:c2:11:b6:
                    20:c6:7f:39:82:43:0a:28:15:9e:cf:96:9a:f1:ee:24:
                    bb:28:a1:a4:a7:f8:68:2f:d0:18:16:9e:2c:3c:8e:72:
                    6d:c2:1b:0c:0d:ba:3e:7f:47:90:82:e1:b6:53:44:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:1a:a8:57:cf:ac:c8:19:4c:bc:5c:6a:d0:a0:e3:a4:
        08:78:e3:3a:8d:7f:91:da:b8:74:24:68:a5:1a:46:74:
        08:09:b6:bf:46:f3:12:0e:13:6e:6e:49:7c:96:95:a6:
        ce:49:96:55:1f:99:c6:24:77:a3:98:45:c4:a1:c7:5d:
        7f:df:a1:2a:cf:c7:4c:50:9d:6f:03:bd:85:aa:13:23:
        65:50:e5:e8:3c:ca:a7:33:e7:e8:dd:a6:75:ca:48:13:
        2f:23:db:b5:07:c5:df:4c:83:c4:ff:8a:ff:18:2f:b8:
        59:81:82:61:51:a9:ab:fe:2c:77:f7:b8:6f:15:ad:75:
        63:8c:6d:9b:b9:99:cb:0a:81:a1:34:1b:b5:bd:a3:af:
        53:e6:35:05:d7:a9:09:48:e9:f7:b6:ee:bc:60:5f:4b:
        28:e8:53:15:11:70:9d:ff:1d:6a:8a:4a:49:46:bf:c8:
        f1:99:3f:61:1c:a6:ef:9c:73:85:58:e2:00:69:3a:49:
        3e:f5:ea:6f:42:cb:05:40:82:76:89:b4:65:b1:76:68:
        b2:4e:7c:f4:c9:82:d1:28:1d:19:bd:ac:54:df:a5:1d:
        df:cf:0d:81:12:f3:bf:32:b6:a5:3c:4e:be:5f:c9:f3:
        e2:5f:de:45:ee:af:59:16:69:9d:78:0e:52:a6:9a:58
    Fingerprint (SHA-256):
        9E:E8:6B:CB:79:43:71:E0:40:36:4B:D2:D9:C4:D8:DA:27:77:AF:B4:AC:B1:95:4F:14:C2:90:86:73:F2:91:F2
    Fingerprint (SHA1):
        10:D1:D4:C9:67:E8:14:4D:6D:C3:11:C9:5E:FF:C4:53:04:4C:56:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8266: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123584 (0x310fde80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:59 2017
            Not After : Tue Aug 23 12:34:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:b8:79:1d:cf:6d:40:09:23:f0:44:13:c3:06:8d:f5:
                    76:0b:85:1c:b3:85:81:d3:7e:2c:89:16:fa:6e:0e:6a:
                    8e:87:0f:d8:58:19:52:25:8f:92:1f:c8:50:0b:b9:1a:
                    01:3b:15:ad:9b:a1:86:99:af:73:4e:85:7f:b2:ab:65:
                    24:23:8e:10:fa:f6:95:40:6f:2f:ff:5f:7e:29:2a:96:
                    6c:c6:a6:54:36:b4:78:42:cf:ef:39:59:65:9e:a7:1f:
                    c7:17:d8:6e:7d:d0:77:f9:51:11:b3:9b:b6:62:de:49:
                    c8:b1:62:40:d6:9f:5c:be:b6:9b:d7:11:f4:25:7e:18:
                    bc:71:7c:1d:73:89:0b:ba:98:a9:00:e8:7e:a0:5a:78:
                    74:65:55:0c:18:b5:43:e3:82:27:4f:24:b6:bc:a7:6b:
                    6a:0c:5b:9a:cf:8e:22:6a:fa:67:2c:7b:ce:ce:2f:7c:
                    0e:c2:89:50:25:2d:d4:46:bd:3d:ab:5d:88:9d:80:94:
                    67:6a:fd:8d:1d:7b:17:11:7d:4d:50:c6:70:c2:11:b6:
                    20:c6:7f:39:82:43:0a:28:15:9e:cf:96:9a:f1:ee:24:
                    bb:28:a1:a4:a7:f8:68:2f:d0:18:16:9e:2c:3c:8e:72:
                    6d:c2:1b:0c:0d:ba:3e:7f:47:90:82:e1:b6:53:44:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:1a:a8:57:cf:ac:c8:19:4c:bc:5c:6a:d0:a0:e3:a4:
        08:78:e3:3a:8d:7f:91:da:b8:74:24:68:a5:1a:46:74:
        08:09:b6:bf:46:f3:12:0e:13:6e:6e:49:7c:96:95:a6:
        ce:49:96:55:1f:99:c6:24:77:a3:98:45:c4:a1:c7:5d:
        7f:df:a1:2a:cf:c7:4c:50:9d:6f:03:bd:85:aa:13:23:
        65:50:e5:e8:3c:ca:a7:33:e7:e8:dd:a6:75:ca:48:13:
        2f:23:db:b5:07:c5:df:4c:83:c4:ff:8a:ff:18:2f:b8:
        59:81:82:61:51:a9:ab:fe:2c:77:f7:b8:6f:15:ad:75:
        63:8c:6d:9b:b9:99:cb:0a:81:a1:34:1b:b5:bd:a3:af:
        53:e6:35:05:d7:a9:09:48:e9:f7:b6:ee:bc:60:5f:4b:
        28:e8:53:15:11:70:9d:ff:1d:6a:8a:4a:49:46:bf:c8:
        f1:99:3f:61:1c:a6:ef:9c:73:85:58:e2:00:69:3a:49:
        3e:f5:ea:6f:42:cb:05:40:82:76:89:b4:65:b1:76:68:
        b2:4e:7c:f4:c9:82:d1:28:1d:19:bd:ac:54:df:a5:1d:
        df:cf:0d:81:12:f3:bf:32:b6:a5:3c:4e:be:5f:c9:f3:
        e2:5f:de:45:ee:af:59:16:69:9d:78:0e:52:a6:9a:58
    Fingerprint (SHA-256):
        9E:E8:6B:CB:79:43:71:E0:40:36:4B:D2:D9:C4:D8:DA:27:77:AF:B4:AC:B1:95:4F:14:C2:90:86:73:F2:91:F2
    Fingerprint (SHA1):
        10:D1:D4:C9:67:E8:14:4D:6D:C3:11:C9:5E:FF:C4:53:04:4C:56:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8267: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #8268: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123583 (0x310fde7f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:59 2017
            Not After : Tue Aug 23 12:34:59 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:ff:a1:bc:bc:36:e2:73:6c:7e:d1:d0:c5:2e:b1:f5:
                    a8:d7:74:b5:61:97:37:b6:23:63:55:4d:ec:ce:bf:95:
                    9d:e7:1e:cf:63:c4:4a:71:18:d4:07:d2:96:6f:d5:b8:
                    85:c8:25:4c:6a:3e:e0:ba:e0:f2:31:db:f7:65:c3:67:
                    f2:80:be:83:ce:24:c3:2c:14:a3:18:94:63:49:ac:d7:
                    86:7f:3d:87:73:be:53:2a:4a:82:13:d5:28:a1:e0:96:
                    e2:a3:cc:f7:55:40:32:4a:63:d4:ac:f9:07:ea:5e:09:
                    5d:32:b9:11:e5:88:a8:1b:27:c9:81:79:49:43:d7:d2:
                    92:b9:96:6e:33:29:83:f7:0a:b5:91:34:d1:40:25:02:
                    d4:da:3e:75:29:dd:78:0c:e6:bf:7f:0d:2c:3b:87:cb:
                    ae:d4:8c:34:b4:94:15:22:42:46:a7:d3:90:ea:47:db:
                    27:3e:84:a0:bf:dc:7e:02:82:ad:9a:8f:dd:61:29:d9:
                    e0:16:24:67:80:f8:17:7f:d9:e0:fa:fa:09:60:b6:93:
                    cf:5b:70:f3:a1:23:f9:c0:36:23:ac:d8:07:4f:67:df:
                    83:74:fe:36:27:3a:51:a9:7e:bd:8e:e7:ea:d2:cb:5c:
                    7e:0e:3a:6b:3d:ce:3d:d2:81:d3:ce:71:20:c2:51:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:5c:ed:3e:2d:ab:47:ec:5f:3a:08:9a:3c:85:82:e8:
        9c:c8:ea:c2:42:2a:2f:69:55:18:23:8c:cb:3a:c6:ac:
        62:8b:e9:be:9a:1e:0b:5b:5b:9c:bf:6a:d4:0a:d1:8d:
        26:66:3f:ba:2c:b2:fe:75:2a:53:1d:c8:a4:fd:90:89:
        5c:3c:9e:f4:3e:4e:bc:62:c6:ef:5a:b3:45:10:f8:d1:
        fc:ae:88:09:27:c1:8e:af:7b:d0:f9:a3:ed:b6:37:8a:
        fd:e5:95:ce:eb:78:86:71:c5:b5:3b:d2:07:11:9f:c9:
        36:0a:93:3a:c3:59:6e:26:6b:78:4f:06:8b:2e:ab:ed:
        93:d6:0a:0f:86:25:aa:78:d4:c5:08:77:0b:77:c3:68:
        e0:47:b0:43:19:b1:b3:70:10:76:3c:6e:a5:40:4d:f9:
        47:4c:9f:8d:77:ae:5a:e2:c3:b3:61:fb:81:5b:aa:6f:
        f3:62:35:2c:02:98:e3:97:8f:c9:87:a7:a0:8a:40:a6:
        e1:25:e9:bc:31:9d:90:b9:36:39:44:80:ae:eb:27:06:
        c3:57:25:50:43:f7:15:c2:a9:6c:71:e0:9f:88:32:ce:
        d7:2f:a0:34:32:3b:1f:7e:07:bd:6d:dd:c0:93:33:7c:
        ed:c4:4b:e9:19:ce:a7:d8:80:96:9d:46:b7:45:f5:27
    Fingerprint (SHA-256):
        9D:0C:6B:41:30:68:B3:15:9C:03:D2:97:E8:62:45:35:E9:59:5C:B6:9B:CE:72:53:17:C5:51:06:9A:E1:92:08
    Fingerprint (SHA1):
        BD:0A:D1:25:EE:ED:8E:1B:EA:17:BB:68:E8:CD:33:8B:5F:64:15:A3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8269: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123584 (0x310fde80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:59 2017
            Not After : Tue Aug 23 12:34:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:b8:79:1d:cf:6d:40:09:23:f0:44:13:c3:06:8d:f5:
                    76:0b:85:1c:b3:85:81:d3:7e:2c:89:16:fa:6e:0e:6a:
                    8e:87:0f:d8:58:19:52:25:8f:92:1f:c8:50:0b:b9:1a:
                    01:3b:15:ad:9b:a1:86:99:af:73:4e:85:7f:b2:ab:65:
                    24:23:8e:10:fa:f6:95:40:6f:2f:ff:5f:7e:29:2a:96:
                    6c:c6:a6:54:36:b4:78:42:cf:ef:39:59:65:9e:a7:1f:
                    c7:17:d8:6e:7d:d0:77:f9:51:11:b3:9b:b6:62:de:49:
                    c8:b1:62:40:d6:9f:5c:be:b6:9b:d7:11:f4:25:7e:18:
                    bc:71:7c:1d:73:89:0b:ba:98:a9:00:e8:7e:a0:5a:78:
                    74:65:55:0c:18:b5:43:e3:82:27:4f:24:b6:bc:a7:6b:
                    6a:0c:5b:9a:cf:8e:22:6a:fa:67:2c:7b:ce:ce:2f:7c:
                    0e:c2:89:50:25:2d:d4:46:bd:3d:ab:5d:88:9d:80:94:
                    67:6a:fd:8d:1d:7b:17:11:7d:4d:50:c6:70:c2:11:b6:
                    20:c6:7f:39:82:43:0a:28:15:9e:cf:96:9a:f1:ee:24:
                    bb:28:a1:a4:a7:f8:68:2f:d0:18:16:9e:2c:3c:8e:72:
                    6d:c2:1b:0c:0d:ba:3e:7f:47:90:82:e1:b6:53:44:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:1a:a8:57:cf:ac:c8:19:4c:bc:5c:6a:d0:a0:e3:a4:
        08:78:e3:3a:8d:7f:91:da:b8:74:24:68:a5:1a:46:74:
        08:09:b6:bf:46:f3:12:0e:13:6e:6e:49:7c:96:95:a6:
        ce:49:96:55:1f:99:c6:24:77:a3:98:45:c4:a1:c7:5d:
        7f:df:a1:2a:cf:c7:4c:50:9d:6f:03:bd:85:aa:13:23:
        65:50:e5:e8:3c:ca:a7:33:e7:e8:dd:a6:75:ca:48:13:
        2f:23:db:b5:07:c5:df:4c:83:c4:ff:8a:ff:18:2f:b8:
        59:81:82:61:51:a9:ab:fe:2c:77:f7:b8:6f:15:ad:75:
        63:8c:6d:9b:b9:99:cb:0a:81:a1:34:1b:b5:bd:a3:af:
        53:e6:35:05:d7:a9:09:48:e9:f7:b6:ee:bc:60:5f:4b:
        28:e8:53:15:11:70:9d:ff:1d:6a:8a:4a:49:46:bf:c8:
        f1:99:3f:61:1c:a6:ef:9c:73:85:58:e2:00:69:3a:49:
        3e:f5:ea:6f:42:cb:05:40:82:76:89:b4:65:b1:76:68:
        b2:4e:7c:f4:c9:82:d1:28:1d:19:bd:ac:54:df:a5:1d:
        df:cf:0d:81:12:f3:bf:32:b6:a5:3c:4e:be:5f:c9:f3:
        e2:5f:de:45:ee:af:59:16:69:9d:78:0e:52:a6:9a:58
    Fingerprint (SHA-256):
        9E:E8:6B:CB:79:43:71:E0:40:36:4B:D2:D9:C4:D8:DA:27:77:AF:B4:AC:B1:95:4F:14:C2:90:86:73:F2:91:F2
    Fingerprint (SHA1):
        10:D1:D4:C9:67:E8:14:4D:6D:C3:11:C9:5E:FF:C4:53:04:4C:56:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8270: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123584 (0x310fde80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:34:59 2017
            Not After : Tue Aug 23 12:34:59 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:b8:79:1d:cf:6d:40:09:23:f0:44:13:c3:06:8d:f5:
                    76:0b:85:1c:b3:85:81:d3:7e:2c:89:16:fa:6e:0e:6a:
                    8e:87:0f:d8:58:19:52:25:8f:92:1f:c8:50:0b:b9:1a:
                    01:3b:15:ad:9b:a1:86:99:af:73:4e:85:7f:b2:ab:65:
                    24:23:8e:10:fa:f6:95:40:6f:2f:ff:5f:7e:29:2a:96:
                    6c:c6:a6:54:36:b4:78:42:cf:ef:39:59:65:9e:a7:1f:
                    c7:17:d8:6e:7d:d0:77:f9:51:11:b3:9b:b6:62:de:49:
                    c8:b1:62:40:d6:9f:5c:be:b6:9b:d7:11:f4:25:7e:18:
                    bc:71:7c:1d:73:89:0b:ba:98:a9:00:e8:7e:a0:5a:78:
                    74:65:55:0c:18:b5:43:e3:82:27:4f:24:b6:bc:a7:6b:
                    6a:0c:5b:9a:cf:8e:22:6a:fa:67:2c:7b:ce:ce:2f:7c:
                    0e:c2:89:50:25:2d:d4:46:bd:3d:ab:5d:88:9d:80:94:
                    67:6a:fd:8d:1d:7b:17:11:7d:4d:50:c6:70:c2:11:b6:
                    20:c6:7f:39:82:43:0a:28:15:9e:cf:96:9a:f1:ee:24:
                    bb:28:a1:a4:a7:f8:68:2f:d0:18:16:9e:2c:3c:8e:72:
                    6d:c2:1b:0c:0d:ba:3e:7f:47:90:82:e1:b6:53:44:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:1a:a8:57:cf:ac:c8:19:4c:bc:5c:6a:d0:a0:e3:a4:
        08:78:e3:3a:8d:7f:91:da:b8:74:24:68:a5:1a:46:74:
        08:09:b6:bf:46:f3:12:0e:13:6e:6e:49:7c:96:95:a6:
        ce:49:96:55:1f:99:c6:24:77:a3:98:45:c4:a1:c7:5d:
        7f:df:a1:2a:cf:c7:4c:50:9d:6f:03:bd:85:aa:13:23:
        65:50:e5:e8:3c:ca:a7:33:e7:e8:dd:a6:75:ca:48:13:
        2f:23:db:b5:07:c5:df:4c:83:c4:ff:8a:ff:18:2f:b8:
        59:81:82:61:51:a9:ab:fe:2c:77:f7:b8:6f:15:ad:75:
        63:8c:6d:9b:b9:99:cb:0a:81:a1:34:1b:b5:bd:a3:af:
        53:e6:35:05:d7:a9:09:48:e9:f7:b6:ee:bc:60:5f:4b:
        28:e8:53:15:11:70:9d:ff:1d:6a:8a:4a:49:46:bf:c8:
        f1:99:3f:61:1c:a6:ef:9c:73:85:58:e2:00:69:3a:49:
        3e:f5:ea:6f:42:cb:05:40:82:76:89:b4:65:b1:76:68:
        b2:4e:7c:f4:c9:82:d1:28:1d:19:bd:ac:54:df:a5:1d:
        df:cf:0d:81:12:f3:bf:32:b6:a5:3c:4e:be:5f:c9:f3:
        e2:5f:de:45:ee:af:59:16:69:9d:78:0e:52:a6:9a:58
    Fingerprint (SHA-256):
        9E:E8:6B:CB:79:43:71:E0:40:36:4B:D2:D9:C4:D8:DA:27:77:AF:B4:AC:B1:95:4F:14:C2:90:86:73:F2:91:F2
    Fingerprint (SHA1):
        10:D1:D4:C9:67:E8:14:4D:6D:C3:11:C9:5E:FF:C4:53:04:4C:56:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8271: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8272: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123591 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8273: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8274: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8275: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123592 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8276: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8277: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #8278: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8279: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 823123593   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8280: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8281: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #8282: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8283: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 823123594   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8284: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8285: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8286: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8287: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 823123595 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8288: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8289: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 823123596 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8290: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8291: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #8292: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8293: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8294: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823123597   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8295: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8296: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8297: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8298: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823123598   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8299: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8300: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8301: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8302: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123599   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8303: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8304: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8305: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8306: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123600   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8307: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8308: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8309: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123591 (0x310fde87)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:01 2017
            Not After : Tue Aug 23 12:35:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:6c:42:c3:c6:56:bb:a9:07:b8:32:ee:21:7a:87:d7:
                    31:04:e9:ee:08:93:96:aa:dd:f4:2f:67:2d:6d:6c:d3:
                    3c:06:16:62:1f:3c:18:d2:54:9b:1e:66:d9:f2:c8:64:
                    56:fd:ac:40:af:fd:f4:34:39:5f:74:4b:fb:e1:e8:32:
                    50:12:e6:6b:24:80:a3:73:67:eb:63:3a:52:21:9d:34:
                    e0:1c:21:dc:7c:11:e6:15:b8:70:73:ca:ec:22:5f:e6:
                    55:97:eb:55:74:8e:33:61:bd:01:9a:52:e3:4b:b4:da:
                    d1:fd:cc:6e:99:64:e0:45:7c:fc:1c:ac:3d:2a:8b:1f:
                    37:66:41:86:b7:93:b2:8b:8f:66:8b:2a:bb:a8:72:0b:
                    fb:4f:73:fd:69:32:93:10:21:ca:79:d3:37:83:c6:7f:
                    a7:8e:10:4f:48:d0:29:67:2b:81:2c:50:d0:3b:e2:29:
                    72:29:d7:89:42:e8:c7:46:d9:d7:bb:78:db:3b:ea:2c:
                    86:fb:34:3f:8b:72:e1:dd:29:04:7f:8e:83:ca:70:50:
                    5d:f0:b7:41:27:06:40:77:1c:3f:4e:a0:79:4c:96:7a:
                    e8:39:40:54:3d:cf:5b:d3:9c:3e:f5:c6:d8:a5:f3:f7:
                    aa:3e:87:4c:ac:00:de:49:83:d1:82:12:51:0e:e0:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:dc:5f:d7:3a:a1:a1:9f:93:7b:89:ac:2b:ed:9c:6a:
        96:3c:ea:1f:22:e0:8b:40:44:44:98:0e:3a:6f:9c:87:
        c1:50:96:fc:c1:b2:9d:52:cb:0a:3a:01:e0:7d:24:e7:
        ab:d2:dd:87:c6:5c:30:7b:f0:d8:40:93:5a:f4:24:a7:
        45:f8:fe:02:dc:f1:44:45:d8:15:96:14:12:26:68:d7:
        b0:0a:5d:bb:72:ea:6c:f8:65:88:89:bc:7a:9f:b1:65:
        ea:b3:55:57:bc:e9:01:54:57:39:1d:c8:a0:31:39:51:
        95:51:9f:8f:4f:22:a4:66:f5:33:22:29:6f:78:eb:d5:
        d0:e1:67:59:34:69:3d:7c:1e:ce:47:4b:83:ff:55:f3:
        83:a5:d1:91:0d:17:9f:90:f9:a1:74:a9:d9:b5:b3:8e:
        85:3f:5d:9d:66:b0:a0:22:49:e3:ee:11:1c:55:0a:d1:
        86:71:e6:72:a3:29:25:e3:04:79:8d:62:a3:f7:15:b2:
        50:48:3d:4d:b4:8b:96:77:95:b8:11:96:0a:7b:47:f0:
        3a:ca:b5:98:9e:a8:21:8a:b3:03:e7:f9:b3:de:36:cc:
        07:0e:41:22:9e:11:5d:a8:90:16:53:4b:4c:27:c4:77:
        d1:08:a2:fb:71:7a:c0:d7:eb:3a:79:d2:30:cb:5d:bf
    Fingerprint (SHA-256):
        6F:0A:9F:3F:3B:65:B9:F4:E4:F3:48:6F:01:B4:2B:3E:79:6F:17:9C:A7:30:40:3F:28:ED:AA:F6:8F:74:5D:ED
    Fingerprint (SHA1):
        0D:84:F5:8A:AA:92:20:E1:7D:F2:15:85:27:81:3A:96:87:13:21:37
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #8310: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8311: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8312: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8313: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8314: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8315: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8316: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8317: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8318: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123592 (0x310fde88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:01 2017
            Not After : Tue Aug 23 12:35:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:29:cb:b8:44:62:8b:6a:27:bb:06:78:f5:0f:c2:35:
                    91:c9:f5:ee:0d:f2:7d:22:97:f5:b1:c5:55:f1:19:c6:
                    3d:d4:8b:07:d6:f3:ee:e9:58:2e:b5:8d:ab:2b:de:a4:
                    2d:c9:c0:e9:82:94:a0:c7:03:ba:4a:e7:c6:0e:24:79:
                    71:1f:0e:ec:1b:af:da:54:bc:63:6c:02:bd:78:e6:d5:
                    0e:7a:14:c1:18:d8:a8:c9:8e:ef:9f:c6:56:d3:57:61:
                    53:74:dd:78:f2:b7:29:d9:48:ee:37:15:c0:aa:63:70:
                    7f:0b:c6:32:22:d1:69:ed:ad:0d:a3:0a:a4:30:c8:87:
                    9f:e1:06:f4:b4:de:a1:9e:3d:d6:04:44:9f:74:b2:7e:
                    63:d8:fb:08:d0:af:5e:02:c0:c6:95:08:82:b2:2f:7c:
                    8e:3a:cf:2d:8e:ec:76:d2:46:85:02:aa:91:be:bf:4a:
                    14:83:a0:93:0e:a5:a5:78:2c:97:01:5f:83:eb:82:fd:
                    be:2c:d5:e6:7b:14:13:61:55:f5:27:2c:69:55:c0:af:
                    7e:92:b0:bb:a3:27:cd:71:b8:45:13:fe:b4:3c:8c:00:
                    46:52:9d:6c:f8:ad:ce:57:82:89:02:90:eb:8f:fa:c3:
                    f8:0c:14:72:1b:03:eb:80:40:31:8b:52:1e:aa:1f:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:8a:1b:8e:ab:39:c9:87:d7:57:8c:e2:3b:d6:69:28:
        d4:f6:14:e6:27:59:c6:0b:83:ee:fe:89:ae:19:80:ca:
        6c:d8:d4:af:c0:29:46:6f:64:7b:92:ff:ed:a7:c3:ca:
        d7:8a:0d:96:9f:7c:8a:d5:26:6e:19:b1:9a:f1:d4:c1:
        a2:9c:31:8f:d9:99:31:0c:f6:e3:1a:3a:24:77:5b:02:
        ff:fb:7d:49:cc:5c:68:c2:4a:6c:15:48:86:03:8e:62:
        c7:b5:cf:f1:e8:3d:11:e4:2a:21:4e:71:73:73:8f:3f:
        68:6e:ef:07:ae:8b:6f:33:60:27:81:ed:4d:fb:a6:f0:
        63:a6:04:0f:99:5e:a7:c6:e6:ba:f9:a5:4f:82:e4:8a:
        d8:53:15:0e:0e:c7:21:b3:4d:1e:46:ee:43:59:08:5e:
        a7:b4:99:12:be:6a:86:e0:31:2b:b5:4a:ac:ba:a5:dd:
        f6:07:25:c9:b8:d7:e2:99:cd:34:94:6e:51:78:7b:10:
        05:f4:5d:f0:62:d9:a8:93:8d:9b:38:e4:90:6c:a9:ee:
        3a:2c:e0:0f:7c:cc:5b:09:f4:cc:76:46:62:c7:79:4e:
        09:5b:cb:74:f8:d1:6a:7f:7d:92:d5:c2:9c:a6:e0:1b:
        8b:d7:bd:29:09:a5:60:9a:47:f0:0a:5d:18:36:8e:5b
    Fingerprint (SHA-256):
        5F:3C:D2:E4:2C:8E:A3:E4:F1:25:02:7B:9D:4B:09:52:CC:DB:3E:95:F6:27:18:EA:47:17:48:A7:5D:31:67:96
    Fingerprint (SHA1):
        BE:B1:99:BE:08:16:3A:12:FD:89:9A:9A:50:91:97:40:21:30:ED:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #8319: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8320: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8321: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8322: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8323: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8324: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8325: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #8326: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #8327: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #8328: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #8329: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #8330: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #8331: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #8332: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8333: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8334: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #8335: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #8336: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8337: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123601 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8338: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8339: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8340: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8341: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823123602   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8342: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8343: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8344: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8345: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823123603   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8346: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8347: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8348: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8349: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 823123604   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8350: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8351: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8352: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8353: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823123605   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8354: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8355: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #8356: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8357: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 823123606   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8358: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8359: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #8360: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8361: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 823123607   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8362: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8363: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #8364: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8365: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 823123608   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8366: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8367: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #8368: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8369: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 823123609   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8370: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8371: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8372: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123601 (0x310fde91)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:04 2017
            Not After : Tue Aug 23 12:35:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    45:f1:7f:36:2a:32:37:c8:62:11:44:ed:f2:be:ca:cd:
                    1e:b7:1a:f6:c2:eb:c4:11:0f:8e:8a:e2:e3:8a:7e:e3:
                    8b:9c:c7:28:f4:5c:cf:19:22:04:5b:ce:6b:9b:77:e3:
                    f5:90:1a:99:6a:3c:9a:fa:2d:22:b1:86:2a:98:7a:5f:
                    0b:3e:ca:d0:36:05:1a:1e:25:d9:3e:14:0d:40:65:31:
                    ce:c5:26:42:fe:a7:66:8b:dc:0c:8a:3a:ed:28:f5:5e:
                    e3:6a:29:f2:8b:eb:cb:ff:48:2e:3b:18:22:8d:fe:6b:
                    2c:6b:3d:c1:2f:a7:17:bb:5f:9c:14:30:40:87:26:6c:
                    62:5c:57:a9:db:ec:32:b2:db:fc:e0:cc:b8:56:68:e7:
                    1f:64:34:35:bc:cc:bb:25:9c:2d:c4:65:e9:6a:03:a3:
                    78:b8:94:41:95:c6:47:c7:c4:a9:02:62:e2:32:0c:7e:
                    cd:84:fa:9b:c9:55:80:6b:9b:8a:08:73:6a:ea:1b:84:
                    91:d6:30:66:23:26:4e:c6:06:c5:74:23:28:c0:27:a4:
                    0f:cc:4a:c9:8b:60:bb:c8:03:31:18:af:af:26:0b:9f:
                    8f:f8:46:35:e2:ed:8d:3c:ad:67:cf:3e:cf:35:b9:01:
                    c8:6c:4a:3b:6c:c7:61:ac:3e:18:c4:1a:04:10:c2:65
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:1d:2a:b9:ec:d4:ee:c2:23:7f:2f:0a:a7:
        c1:1a:ac:e7:46:ae:b9:a7:09:d7:6f:24:19:11:19:02:
        02:1c:79:53:1b:a0:68:23:b7:70:17:47:af:22:76:8b:
        9d:99:57:eb:ea:e9:3d:5a:68:05:9d:b4:f8:2b
    Fingerprint (SHA-256):
        B9:12:70:5F:16:6D:21:DC:35:00:18:91:31:9E:ED:B8:7E:6E:AA:73:CD:DB:6C:2E:B9:F8:55:1A:83:5A:51:14
    Fingerprint (SHA1):
        CD:F3:74:E4:6B:26:CC:12:FA:76:1D:37:EC:B0:05:4D:F1:B9:C5:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8373: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123601 (0x310fde91)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:04 2017
            Not After : Tue Aug 23 12:35:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    45:f1:7f:36:2a:32:37:c8:62:11:44:ed:f2:be:ca:cd:
                    1e:b7:1a:f6:c2:eb:c4:11:0f:8e:8a:e2:e3:8a:7e:e3:
                    8b:9c:c7:28:f4:5c:cf:19:22:04:5b:ce:6b:9b:77:e3:
                    f5:90:1a:99:6a:3c:9a:fa:2d:22:b1:86:2a:98:7a:5f:
                    0b:3e:ca:d0:36:05:1a:1e:25:d9:3e:14:0d:40:65:31:
                    ce:c5:26:42:fe:a7:66:8b:dc:0c:8a:3a:ed:28:f5:5e:
                    e3:6a:29:f2:8b:eb:cb:ff:48:2e:3b:18:22:8d:fe:6b:
                    2c:6b:3d:c1:2f:a7:17:bb:5f:9c:14:30:40:87:26:6c:
                    62:5c:57:a9:db:ec:32:b2:db:fc:e0:cc:b8:56:68:e7:
                    1f:64:34:35:bc:cc:bb:25:9c:2d:c4:65:e9:6a:03:a3:
                    78:b8:94:41:95:c6:47:c7:c4:a9:02:62:e2:32:0c:7e:
                    cd:84:fa:9b:c9:55:80:6b:9b:8a:08:73:6a:ea:1b:84:
                    91:d6:30:66:23:26:4e:c6:06:c5:74:23:28:c0:27:a4:
                    0f:cc:4a:c9:8b:60:bb:c8:03:31:18:af:af:26:0b:9f:
                    8f:f8:46:35:e2:ed:8d:3c:ad:67:cf:3e:cf:35:b9:01:
                    c8:6c:4a:3b:6c:c7:61:ac:3e:18:c4:1a:04:10:c2:65
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:1d:2a:b9:ec:d4:ee:c2:23:7f:2f:0a:a7:
        c1:1a:ac:e7:46:ae:b9:a7:09:d7:6f:24:19:11:19:02:
        02:1c:79:53:1b:a0:68:23:b7:70:17:47:af:22:76:8b:
        9d:99:57:eb:ea:e9:3d:5a:68:05:9d:b4:f8:2b
    Fingerprint (SHA-256):
        B9:12:70:5F:16:6D:21:DC:35:00:18:91:31:9E:ED:B8:7E:6E:AA:73:CD:DB:6C:2E:B9:F8:55:1A:83:5A:51:14
    Fingerprint (SHA1):
        CD:F3:74:E4:6B:26:CC:12:FA:76:1D:37:EC:B0:05:4D:F1:B9:C5:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8374: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123601 (0x310fde91)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:04 2017
            Not After : Tue Aug 23 12:35:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    45:f1:7f:36:2a:32:37:c8:62:11:44:ed:f2:be:ca:cd:
                    1e:b7:1a:f6:c2:eb:c4:11:0f:8e:8a:e2:e3:8a:7e:e3:
                    8b:9c:c7:28:f4:5c:cf:19:22:04:5b:ce:6b:9b:77:e3:
                    f5:90:1a:99:6a:3c:9a:fa:2d:22:b1:86:2a:98:7a:5f:
                    0b:3e:ca:d0:36:05:1a:1e:25:d9:3e:14:0d:40:65:31:
                    ce:c5:26:42:fe:a7:66:8b:dc:0c:8a:3a:ed:28:f5:5e:
                    e3:6a:29:f2:8b:eb:cb:ff:48:2e:3b:18:22:8d:fe:6b:
                    2c:6b:3d:c1:2f:a7:17:bb:5f:9c:14:30:40:87:26:6c:
                    62:5c:57:a9:db:ec:32:b2:db:fc:e0:cc:b8:56:68:e7:
                    1f:64:34:35:bc:cc:bb:25:9c:2d:c4:65:e9:6a:03:a3:
                    78:b8:94:41:95:c6:47:c7:c4:a9:02:62:e2:32:0c:7e:
                    cd:84:fa:9b:c9:55:80:6b:9b:8a:08:73:6a:ea:1b:84:
                    91:d6:30:66:23:26:4e:c6:06:c5:74:23:28:c0:27:a4:
                    0f:cc:4a:c9:8b:60:bb:c8:03:31:18:af:af:26:0b:9f:
                    8f:f8:46:35:e2:ed:8d:3c:ad:67:cf:3e:cf:35:b9:01:
                    c8:6c:4a:3b:6c:c7:61:ac:3e:18:c4:1a:04:10:c2:65
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:1d:2a:b9:ec:d4:ee:c2:23:7f:2f:0a:a7:
        c1:1a:ac:e7:46:ae:b9:a7:09:d7:6f:24:19:11:19:02:
        02:1c:79:53:1b:a0:68:23:b7:70:17:47:af:22:76:8b:
        9d:99:57:eb:ea:e9:3d:5a:68:05:9d:b4:f8:2b
    Fingerprint (SHA-256):
        B9:12:70:5F:16:6D:21:DC:35:00:18:91:31:9E:ED:B8:7E:6E:AA:73:CD:DB:6C:2E:B9:F8:55:1A:83:5A:51:14
    Fingerprint (SHA1):
        CD:F3:74:E4:6B:26:CC:12:FA:76:1D:37:EC:B0:05:4D:F1:B9:C5:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #8375: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123601 (0x310fde91)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:04 2017
            Not After : Tue Aug 23 12:35:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    45:f1:7f:36:2a:32:37:c8:62:11:44:ed:f2:be:ca:cd:
                    1e:b7:1a:f6:c2:eb:c4:11:0f:8e:8a:e2:e3:8a:7e:e3:
                    8b:9c:c7:28:f4:5c:cf:19:22:04:5b:ce:6b:9b:77:e3:
                    f5:90:1a:99:6a:3c:9a:fa:2d:22:b1:86:2a:98:7a:5f:
                    0b:3e:ca:d0:36:05:1a:1e:25:d9:3e:14:0d:40:65:31:
                    ce:c5:26:42:fe:a7:66:8b:dc:0c:8a:3a:ed:28:f5:5e:
                    e3:6a:29:f2:8b:eb:cb:ff:48:2e:3b:18:22:8d:fe:6b:
                    2c:6b:3d:c1:2f:a7:17:bb:5f:9c:14:30:40:87:26:6c:
                    62:5c:57:a9:db:ec:32:b2:db:fc:e0:cc:b8:56:68:e7:
                    1f:64:34:35:bc:cc:bb:25:9c:2d:c4:65:e9:6a:03:a3:
                    78:b8:94:41:95:c6:47:c7:c4:a9:02:62:e2:32:0c:7e:
                    cd:84:fa:9b:c9:55:80:6b:9b:8a:08:73:6a:ea:1b:84:
                    91:d6:30:66:23:26:4e:c6:06:c5:74:23:28:c0:27:a4:
                    0f:cc:4a:c9:8b:60:bb:c8:03:31:18:af:af:26:0b:9f:
                    8f:f8:46:35:e2:ed:8d:3c:ad:67:cf:3e:cf:35:b9:01:
                    c8:6c:4a:3b:6c:c7:61:ac:3e:18:c4:1a:04:10:c2:65
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:1d:2a:b9:ec:d4:ee:c2:23:7f:2f:0a:a7:
        c1:1a:ac:e7:46:ae:b9:a7:09:d7:6f:24:19:11:19:02:
        02:1c:79:53:1b:a0:68:23:b7:70:17:47:af:22:76:8b:
        9d:99:57:eb:ea:e9:3d:5a:68:05:9d:b4:f8:2b
    Fingerprint (SHA-256):
        B9:12:70:5F:16:6D:21:DC:35:00:18:91:31:9E:ED:B8:7E:6E:AA:73:CD:DB:6C:2E:B9:F8:55:1A:83:5A:51:14
    Fingerprint (SHA1):
        CD:F3:74:E4:6B:26:CC:12:FA:76:1D:37:EC:B0:05:4D:F1:B9:C5:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #8376: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8377: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8378: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8379: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #8380: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8381: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8382: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8383: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8384: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8385: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8386: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8387: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #8388: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8389: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8390: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8391: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #8392: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8393: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8394: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8395: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8396: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8397: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8398: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8399: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #8400: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8401: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8402: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8403: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123507Z
nextupdate=20180823123507Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:35:07 2017
    Next Update: Thu Aug 23 12:35:07 2018
    CRL Extensions:
chains.sh: #8404: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123507Z
nextupdate=20180823123507Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:35:07 2017
    Next Update: Thu Aug 23 12:35:07 2018
    CRL Extensions:
chains.sh: #8405: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123507Z
nextupdate=20180823123507Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:35:07 2017
    Next Update: Thu Aug 23 12:35:07 2018
    CRL Extensions:
chains.sh: #8406: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123507Z
nextupdate=20180823123507Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:35:07 2017
    Next Update: Thu Aug 23 12:35:07 2018
    CRL Extensions:
chains.sh: #8407: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123508Z
addcert 14 20170823123508Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:35:08 2017
    Next Update: Thu Aug 23 12:35:07 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed Aug 23 12:35:08 2017
    CRL Extensions:
chains.sh: #8408: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123509Z
addcert 15 20170823123509Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:35:09 2017
    Next Update: Thu Aug 23 12:35:07 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed Aug 23 12:35:09 2017
    CRL Extensions:
chains.sh: #8409: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8410: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8411: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #8412: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #8413: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #8414: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #8415: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #8416: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #8417: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #8418: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:05 2017
            Not After : Tue Aug 23 12:35:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:77:f0:2b:b3:a1:c3:c2:68:cb:94:4d:91:10:a5:a8:
                    09:f3:bc:92:01:34:b2:3f:7d:b3:55:06:16:92:df:86:
                    ce:97:29:6e:90:6b:fe:4e:24:7b:8e:fa:ae:ae:82:2c:
                    c2:ff:7f:03:53:1b:98:f2:88:7e:77:9d:80:74:1b:ec:
                    d2:4e:91:94:2e:43:37:09:1d:c9:25:62:fd:eb:d0:8d:
                    4a:1a:f7:cc:0a:48:4f:3e:60:af:06:12:95:ba:1a:be:
                    a8:b1:69:fd:ef:71:9a:d3:bf:ac:55:7c:eb:69:95:45:
                    38:74:1b:5f:8e:d4:72:3a:aa:45:f9:1b:5f:e1:bf:5f:
                    ff:05:20:5a:83:c3:13:25:91:78:74:84:bf:b6:04:1b:
                    a0:5b:1f:ac:e7:a5:80:d1:1c:1b:5b:de:4c:a1:01:cf:
                    ed:33:25:0c:b8:0c:b2:2f:4a:ce:da:0c:8b:ef:38:fd:
                    43:12:c8:e5:a7:ab:2e:29:9a:e1:d7:e7:ea:e4:a9:5c:
                    02:d3:ea:4d:e8:61:5b:31:83:60:16:34:22:d7:7c:77:
                    85:83:dc:20:ac:f7:8e:8d:13:61:ba:78:a3:e0:38:e4:
                    a8:6c:aa:42:bf:81:5f:4c:42:c6:53:e2:8b:dc:00:f9:
                    2b:35:71:bc:10:80:39:fd:37:4d:b8:62:c6:0f:0c:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:37:85:bd:4e:0f:0f:c9:ff:7f:85:6a:6e:14:01:a6:
        89:38:81:93:9e:0c:cc:ef:44:bc:fd:7a:2e:ee:f3:06:
        41:a5:7d:d3:2b:d4:e5:87:dc:69:63:62:20:1a:b6:14:
        98:1d:08:f4:12:46:66:ca:3b:ae:3d:9a:ea:b3:c1:9f:
        a0:45:54:f5:60:91:f7:0a:63:1a:22:c4:6b:b8:6d:c8:
        ef:19:d6:fc:e2:c2:f7:2f:50:09:3c:85:e5:72:31:43:
        1d:05:ad:8d:0b:8d:63:0d:b9:cf:ac:5d:dd:b3:4f:54:
        14:61:52:86:03:38:d2:de:de:fc:1b:6e:1c:8d:0f:f2:
        e3:bc:19:77:b6:9f:d3:89:a7:d4:80:c6:82:9d:6a:eb:
        8b:f2:22:15:7b:f9:c9:5c:4f:59:61:36:69:94:af:da:
        0b:6a:92:7d:2a:56:ff:9a:c8:5f:d0:0f:67:70:b3:bc:
        83:f2:2f:97:ac:f0:94:30:04:ac:97:bc:42:38:f7:29:
        27:af:9f:82:ef:82:b1:2d:20:12:4f:de:14:16:46:7c:
        43:28:7d:12:12:45:5e:4c:6b:cc:89:a9:70:9a:47:e8:
        b7:e1:ff:ec:4d:31:59:60:ee:ec:21:15:89:bc:97:d9:
        73:0b:46:89:6e:a9:e6:a8:d7:7b:4f:d3:c7:7d:a6:a8
    Fingerprint (SHA-256):
        73:27:9E:70:0A:7B:00:26:7A:32:7D:E5:0E:12:5A:79:66:CF:6D:60:7C:F8:39:C4:3C:23:D8:F8:01:F6:00:DD
    Fingerprint (SHA1):
        33:90:E9:7B:22:3C:49:80:11:68:3E:55:80:19:E4:03:72:29:71:D2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8419: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8420: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:05 2017
            Not After : Tue Aug 23 12:35:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:77:f0:2b:b3:a1:c3:c2:68:cb:94:4d:91:10:a5:a8:
                    09:f3:bc:92:01:34:b2:3f:7d:b3:55:06:16:92:df:86:
                    ce:97:29:6e:90:6b:fe:4e:24:7b:8e:fa:ae:ae:82:2c:
                    c2:ff:7f:03:53:1b:98:f2:88:7e:77:9d:80:74:1b:ec:
                    d2:4e:91:94:2e:43:37:09:1d:c9:25:62:fd:eb:d0:8d:
                    4a:1a:f7:cc:0a:48:4f:3e:60:af:06:12:95:ba:1a:be:
                    a8:b1:69:fd:ef:71:9a:d3:bf:ac:55:7c:eb:69:95:45:
                    38:74:1b:5f:8e:d4:72:3a:aa:45:f9:1b:5f:e1:bf:5f:
                    ff:05:20:5a:83:c3:13:25:91:78:74:84:bf:b6:04:1b:
                    a0:5b:1f:ac:e7:a5:80:d1:1c:1b:5b:de:4c:a1:01:cf:
                    ed:33:25:0c:b8:0c:b2:2f:4a:ce:da:0c:8b:ef:38:fd:
                    43:12:c8:e5:a7:ab:2e:29:9a:e1:d7:e7:ea:e4:a9:5c:
                    02:d3:ea:4d:e8:61:5b:31:83:60:16:34:22:d7:7c:77:
                    85:83:dc:20:ac:f7:8e:8d:13:61:ba:78:a3:e0:38:e4:
                    a8:6c:aa:42:bf:81:5f:4c:42:c6:53:e2:8b:dc:00:f9:
                    2b:35:71:bc:10:80:39:fd:37:4d:b8:62:c6:0f:0c:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:37:85:bd:4e:0f:0f:c9:ff:7f:85:6a:6e:14:01:a6:
        89:38:81:93:9e:0c:cc:ef:44:bc:fd:7a:2e:ee:f3:06:
        41:a5:7d:d3:2b:d4:e5:87:dc:69:63:62:20:1a:b6:14:
        98:1d:08:f4:12:46:66:ca:3b:ae:3d:9a:ea:b3:c1:9f:
        a0:45:54:f5:60:91:f7:0a:63:1a:22:c4:6b:b8:6d:c8:
        ef:19:d6:fc:e2:c2:f7:2f:50:09:3c:85:e5:72:31:43:
        1d:05:ad:8d:0b:8d:63:0d:b9:cf:ac:5d:dd:b3:4f:54:
        14:61:52:86:03:38:d2:de:de:fc:1b:6e:1c:8d:0f:f2:
        e3:bc:19:77:b6:9f:d3:89:a7:d4:80:c6:82:9d:6a:eb:
        8b:f2:22:15:7b:f9:c9:5c:4f:59:61:36:69:94:af:da:
        0b:6a:92:7d:2a:56:ff:9a:c8:5f:d0:0f:67:70:b3:bc:
        83:f2:2f:97:ac:f0:94:30:04:ac:97:bc:42:38:f7:29:
        27:af:9f:82:ef:82:b1:2d:20:12:4f:de:14:16:46:7c:
        43:28:7d:12:12:45:5e:4c:6b:cc:89:a9:70:9a:47:e8:
        b7:e1:ff:ec:4d:31:59:60:ee:ec:21:15:89:bc:97:d9:
        73:0b:46:89:6e:a9:e6:a8:d7:7b:4f:d3:c7:7d:a6:a8
    Fingerprint (SHA-256):
        73:27:9E:70:0A:7B:00:26:7A:32:7D:E5:0E:12:5A:79:66:CF:6D:60:7C:F8:39:C4:3C:23:D8:F8:01:F6:00:DD
    Fingerprint (SHA1):
        33:90:E9:7B:22:3C:49:80:11:68:3E:55:80:19:E4:03:72:29:71:D2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8421: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8422: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8423: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123610 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8424: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8425: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #8426: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8427: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 823123611   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8428: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8429: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8430: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8431: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123356.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8432: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8433: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #8434: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8435: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 823123612   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8436: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8437: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8438: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8439: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123357.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8440: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8441: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #8442: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8443: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 823123613   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8444: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8445: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8446: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8447: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123358.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8448: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8449: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8450: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823123382.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8451: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823123359.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8452: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8453: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823123511Z
nextupdate=20180823123511Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:35:11 2017
    Next Update: Thu Aug 23 12:35:11 2018
    CRL Extensions:
chains.sh: #8454: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123511Z
nextupdate=20180823123511Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:35:11 2017
    Next Update: Thu Aug 23 12:35:11 2018
    CRL Extensions:
chains.sh: #8455: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823123511Z
nextupdate=20180823123511Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:35:11 2017
    Next Update: Thu Aug 23 12:35:11 2018
    CRL Extensions:
chains.sh: #8456: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823123511Z
nextupdate=20180823123511Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:35:11 2017
    Next Update: Thu Aug 23 12:35:11 2018
    CRL Extensions:
chains.sh: #8457: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123512Z
addcert 20 20170823123512Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:35:12 2017
    Next Update: Thu Aug 23 12:35:11 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:35:12 2017
    CRL Extensions:
chains.sh: #8458: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823123513Z
addcert 40 20170823123513Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:35:13 2017
    Next Update: Thu Aug 23 12:35:11 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:35:12 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:35:13 2017
    CRL Extensions:
chains.sh: #8459: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8460: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8461: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #8462: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123610 (0x310fde9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:09 2017
            Not After : Tue Aug 23 12:35:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:f3:13:15:a3:9b:5a:30:1a:08:a4:86:45:6e:85:4e:
                    a2:48:65:bf:0e:16:bc:28:97:d4:e1:59:62:81:87:f2:
                    15:9a:1d:43:86:8f:26:9f:dc:d9:42:35:bd:7d:0f:36:
                    78:c9:b2:97:15:cc:66:0e:50:25:c5:a0:2a:79:74:f2:
                    81:7c:42:3e:10:8f:fd:31:ee:49:ff:e6:4b:c7:6c:9e:
                    93:5a:0d:36:5e:b5:db:7f:6f:b8:cb:8b:78:fc:24:1e:
                    70:38:a8:08:cf:48:12:46:92:67:ac:d8:b2:e9:f9:88:
                    68:d4:ba:ed:63:da:74:57:d4:16:88:f4:16:5d:4d:79:
                    a7:2e:4b:88:1f:6a:8d:c3:4e:df:51:0e:01:38:09:35:
                    d8:8e:f7:aa:f0:e0:82:be:ad:ab:9e:08:77:98:ae:11:
                    75:b4:64:28:dd:41:c2:4d:e8:fd:fd:42:29:d2:f5:24:
                    de:10:6f:05:8e:71:7c:2a:1e:52:b9:72:6a:21:21:54:
                    82:fb:a9:f8:4d:a2:13:28:c4:4a:07:e0:24:46:60:da:
                    fe:d7:78:07:23:90:d2:fa:d4:9e:d5:a9:66:aa:51:f1:
                    e6:58:82:89:2f:f9:cb:a1:ab:c4:7d:04:2b:70:53:7d:
                    77:c6:5a:5e:8e:6a:b5:97:9e:70:9e:12:0c:8b:cf:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:ff:b8:f8:7a:99:fe:c8:8a:0d:0d:6e:e0:e5:f8:e2:
        fc:c1:47:d7:a5:49:84:19:6b:11:10:1f:73:e3:00:46:
        d3:26:d2:a8:21:38:c2:d3:74:2e:af:f8:b6:dc:7d:7b:
        94:dd:d2:86:c6:78:c2:c4:41:51:8d:0e:f0:95:09:8e:
        39:9a:1b:ae:fd:74:5f:43:1c:66:7d:64:36:63:a8:e5:
        ca:c8:5e:87:b7:12:a8:e2:58:b0:07:3e:02:15:29:6b:
        cf:b3:a7:c9:81:6b:c2:c2:fa:17:6c:73:d9:99:33:a3:
        63:bd:e7:ea:0f:8f:8c:cb:7b:6c:5d:6b:a2:eb:e7:0d:
        34:5f:59:1d:5d:c3:fb:9d:c9:1f:8b:e4:7d:59:7e:c0:
        eb:85:e0:a5:e6:bf:54:6c:e1:d9:76:3a:00:3f:a0:9f:
        1e:49:91:cc:a4:6c:aa:4b:34:c4:54:51:4a:87:9a:7b:
        df:ec:23:ed:dc:ce:59:5b:79:ac:4c:80:9c:05:59:58:
        f3:f2:78:8b:72:9b:f5:c3:93:b8:ce:ed:67:44:af:97:
        cf:98:de:1a:93:12:40:54:06:e9:9d:e7:24:4d:e3:61:
        09:e8:25:c5:69:cd:0a:09:8a:09:b4:f6:a8:6e:70:31:
        f3:4a:57:c2:4e:88:d0:1b:ea:e8:0d:19:fe:a9:20:a2
    Fingerprint (SHA-256):
        33:64:FE:E7:40:71:59:2D:77:A4:53:E0:A9:0E:BB:DD:F3:45:8C:D0:49:8C:84:B6:EB:EE:4D:8C:C3:A2:1C:2B
    Fingerprint (SHA1):
        5C:49:13:76:F3:07:59:76:75:E8:64:23:EC:72:9B:B2:F2:47:DE:A3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8463: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8464: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123610 (0x310fde9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:09 2017
            Not After : Tue Aug 23 12:35:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:f3:13:15:a3:9b:5a:30:1a:08:a4:86:45:6e:85:4e:
                    a2:48:65:bf:0e:16:bc:28:97:d4:e1:59:62:81:87:f2:
                    15:9a:1d:43:86:8f:26:9f:dc:d9:42:35:bd:7d:0f:36:
                    78:c9:b2:97:15:cc:66:0e:50:25:c5:a0:2a:79:74:f2:
                    81:7c:42:3e:10:8f:fd:31:ee:49:ff:e6:4b:c7:6c:9e:
                    93:5a:0d:36:5e:b5:db:7f:6f:b8:cb:8b:78:fc:24:1e:
                    70:38:a8:08:cf:48:12:46:92:67:ac:d8:b2:e9:f9:88:
                    68:d4:ba:ed:63:da:74:57:d4:16:88:f4:16:5d:4d:79:
                    a7:2e:4b:88:1f:6a:8d:c3:4e:df:51:0e:01:38:09:35:
                    d8:8e:f7:aa:f0:e0:82:be:ad:ab:9e:08:77:98:ae:11:
                    75:b4:64:28:dd:41:c2:4d:e8:fd:fd:42:29:d2:f5:24:
                    de:10:6f:05:8e:71:7c:2a:1e:52:b9:72:6a:21:21:54:
                    82:fb:a9:f8:4d:a2:13:28:c4:4a:07:e0:24:46:60:da:
                    fe:d7:78:07:23:90:d2:fa:d4:9e:d5:a9:66:aa:51:f1:
                    e6:58:82:89:2f:f9:cb:a1:ab:c4:7d:04:2b:70:53:7d:
                    77:c6:5a:5e:8e:6a:b5:97:9e:70:9e:12:0c:8b:cf:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:ff:b8:f8:7a:99:fe:c8:8a:0d:0d:6e:e0:e5:f8:e2:
        fc:c1:47:d7:a5:49:84:19:6b:11:10:1f:73:e3:00:46:
        d3:26:d2:a8:21:38:c2:d3:74:2e:af:f8:b6:dc:7d:7b:
        94:dd:d2:86:c6:78:c2:c4:41:51:8d:0e:f0:95:09:8e:
        39:9a:1b:ae:fd:74:5f:43:1c:66:7d:64:36:63:a8:e5:
        ca:c8:5e:87:b7:12:a8:e2:58:b0:07:3e:02:15:29:6b:
        cf:b3:a7:c9:81:6b:c2:c2:fa:17:6c:73:d9:99:33:a3:
        63:bd:e7:ea:0f:8f:8c:cb:7b:6c:5d:6b:a2:eb:e7:0d:
        34:5f:59:1d:5d:c3:fb:9d:c9:1f:8b:e4:7d:59:7e:c0:
        eb:85:e0:a5:e6:bf:54:6c:e1:d9:76:3a:00:3f:a0:9f:
        1e:49:91:cc:a4:6c:aa:4b:34:c4:54:51:4a:87:9a:7b:
        df:ec:23:ed:dc:ce:59:5b:79:ac:4c:80:9c:05:59:58:
        f3:f2:78:8b:72:9b:f5:c3:93:b8:ce:ed:67:44:af:97:
        cf:98:de:1a:93:12:40:54:06:e9:9d:e7:24:4d:e3:61:
        09:e8:25:c5:69:cd:0a:09:8a:09:b4:f6:a8:6e:70:31:
        f3:4a:57:c2:4e:88:d0:1b:ea:e8:0d:19:fe:a9:20:a2
    Fingerprint (SHA-256):
        33:64:FE:E7:40:71:59:2D:77:A4:53:E0:A9:0E:BB:DD:F3:45:8C:D0:49:8C:84:B6:EB:EE:4D:8C:C3:A2:1C:2B
    Fingerprint (SHA1):
        5C:49:13:76:F3:07:59:76:75:E8:64:23:EC:72:9B:B2:F2:47:DE:A3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8465: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8466: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #8467: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123614 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8468: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #8469: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8470: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8471: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823123615   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8472: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8473: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8474: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8475: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823123616   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8476: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8477: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8478: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8479: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 823123617   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8480: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8481: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #8482: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 823123618 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8483: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #8484: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #8485: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8486: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 823123619   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8487: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8488: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8489: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8490: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 823123620   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8491: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8492: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #8493: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #8494: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #8495: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123614 (0x310fde9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:14 2017
            Not After : Tue Aug 23 12:35:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:ed:31:3e:92:f7:9d:32:52:c1:a8:03:bd:a9:4a:8b:
                    9a:83:f7:50:80:7f:17:f4:1c:a4:44:d7:dc:6d:7a:00:
                    3e:80:a9:fa:46:6d:97:a4:f8:ad:2d:70:16:cf:c2:37:
                    ac:ac:92:08:f0:bd:ac:24:60:96:6c:c1:f3:f8:43:42:
                    36:ea:c1:8d:1d:ff:09:e1:1d:5a:06:f9:01:17:58:d8:
                    d2:c7:ca:33:25:1e:ad:62:28:29:0a:f9:04:fa:f2:f6:
                    4f:28:c9:d1:c6:32:67:ae:d7:e4:23:9b:47:b9:b3:6b:
                    df:95:c6:f3:0d:f9:80:e9:af:38:8d:d3:ed:15:40:e8:
                    d9:4c:23:2e:1a:7e:7f:26:6b:36:33:70:51:58:7c:dc:
                    c5:b2:af:6e:b8:52:67:d5:3c:a9:c9:70:7a:8d:3e:73:
                    55:57:68:5f:b2:ae:a2:68:9b:0b:30:1d:c7:47:e4:66:
                    ba:8e:25:18:4c:c2:bb:07:da:a9:c1:e6:a9:96:a4:9c:
                    df:ce:f9:24:5d:28:09:33:89:60:8c:26:89:ee:a0:1a:
                    01:1c:69:6f:83:c5:59:d4:3a:a0:cd:d8:7e:40:c2:03:
                    22:24:a1:6b:dd:d8:8c:cb:2b:e2:78:ec:f0:53:0a:6b:
                    3f:f4:ae:03:69:23:f1:64:32:7a:fc:c1:cc:81:e9:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:39:4d:1a:67:62:25:42:1b:c8:24:8f:49:26:c6:40:
        69:a7:1b:19:2f:56:d2:89:f0:b4:d9:3b:99:63:f1:17:
        5c:2c:bc:23:2a:e1:4f:de:73:46:5d:bc:31:11:51:88:
        e2:bc:65:26:73:13:bb:d2:1c:42:fb:ff:6d:69:23:c1:
        de:38:ff:fe:3e:12:54:e1:a6:83:da:37:c8:e1:97:ff:
        cf:67:de:79:27:cc:4d:00:8d:90:0f:1e:e4:63:9c:a2:
        12:80:1f:ff:4a:7c:f9:ea:58:03:26:04:f0:c4:ea:3d:
        b5:ed:c4:d1:1d:89:15:03:aa:d3:d4:dd:d4:0d:6e:ad:
        d2:88:a8:2c:49:b4:f6:05:73:df:c2:3e:51:8e:b8:18:
        f9:00:68:b4:73:44:c2:38:67:69:c4:81:95:0f:84:28:
        6e:d2:cc:01:35:7f:9f:b9:0e:6f:2a:56:8a:df:e1:44:
        86:21:06:5b:d5:15:e8:31:f3:3b:11:4a:48:42:08:f5:
        70:3c:15:d7:02:82:4c:1e:e1:e8:b2:4b:7c:59:a9:bc:
        a6:5e:a6:06:f4:a7:5c:08:f0:bc:25:b3:95:ef:54:0a:
        45:a1:01:17:70:ca:60:0a:5a:32:e2:97:dd:48:9f:04:
        30:d3:9b:1e:de:cd:d4:97:d5:16:c0:7f:56:76:9d:4d
    Fingerprint (SHA-256):
        63:0D:90:18:BC:C9:AD:F7:68:11:6E:0C:5A:76:41:AA:4F:EF:93:53:AA:2A:2B:2F:43:AD:00:0D:A1:8D:90:80
    Fingerprint (SHA1):
        8F:AF:4D:95:49:49:15:0E:71:8F:D3:9F:B1:19:51:9E:86:E3:BC:49
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8496: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123616 (0x310fdea0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:14 2017
            Not After : Tue Aug 23 12:35:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:ea:2e:5b:06:51:c6:fc:5d:23:3e:84:7b:33:1c:af:
                    2c:86:37:c3:ab:69:86:eb:d9:84:71:53:5d:5c:22:9b:
                    9b:d1:2e:13:2c:00:9d:45:39:f9:88:d6:ca:4d:c7:d8:
                    9c:08:cd:86:4f:e1:2b:4c:f5:69:09:8d:66:86:d1:f6:
                    2d:49:db:e0:11:96:ed:e2:48:97:3d:82:b3:bd:e4:e4:
                    64:21:a9:3a:0c:f5:50:2d:4e:5c:9b:96:85:4b:f0:aa:
                    a2:52:db:8b:98:9b:84:cc:fc:10:46:71:b8:bd:94:14:
                    ef:df:bb:46:63:89:65:d7:a7:83:d8:94:8b:e4:f8:70:
                    49:60:1c:c2:3e:91:57:b0:73:27:ed:c6:a8:f3:62:01:
                    ba:30:c0:b1:e9:eb:b8:db:36:35:f1:da:fd:d8:51:b2:
                    94:c5:7b:5e:61:26:db:6f:cb:c1:88:96:b2:42:a2:04:
                    d2:35:ea:ec:4b:a6:8b:44:f5:9e:07:61:a7:cf:aa:10:
                    7d:09:6b:74:b4:4f:bc:ac:9c:45:bf:59:5e:80:0e:93:
                    ce:3a:13:9a:ad:09:98:51:89:f2:d2:a4:a4:ac:17:60:
                    ef:f5:7b:67:80:88:68:03:dd:59:58:a3:5f:43:71:b2:
                    e0:95:95:21:63:5c:aa:d1:3e:49:03:8b:66:12:79:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:51:11:3d:c1:ff:e0:a6:15:e9:4d:43:7d:1c:f1:08:
        fa:51:86:ea:d3:32:1c:c7:91:15:70:0f:d0:f9:38:37:
        20:0a:ae:87:61:1d:5f:53:fd:ea:98:da:f3:da:3b:c1:
        9b:71:31:c5:36:49:e6:a8:78:38:0f:22:db:a8:4c:64:
        7e:9e:ba:04:ff:c7:fe:1e:2f:b1:1d:83:c5:92:ee:7a:
        3e:ba:3c:02:c3:17:09:83:6c:70:f2:1b:a0:c1:8e:d3:
        79:a1:50:98:49:15:fc:7e:07:8d:a8:6b:de:8d:c9:ce:
        07:c1:5e:80:52:98:87:df:61:cc:8e:1f:ec:7f:9f:13:
        5a:31:e8:5f:42:f3:a5:39:12:0d:e6:c7:ff:a1:1a:91:
        85:d8:ff:ae:5c:62:60:44:d3:70:64:0c:43:aa:5d:4b:
        d8:94:fd:c5:1c:c0:05:05:4c:cc:5d:02:e9:28:bf:e2:
        64:4d:6d:a0:89:05:18:44:4e:66:a4:b0:8b:6f:e8:41:
        5d:eb:41:e9:44:5d:98:c5:db:93:9f:28:b0:47:a9:b5:
        c0:85:72:b8:85:b8:0e:ce:29:09:e6:e1:86:de:36:98:
        59:c8:fe:21:e5:7e:7d:7a:55:33:2a:c1:fc:20:0e:df:
        0a:5f:7b:6d:4f:3a:31:f1:f4:d4:f9:de:8b:a8:1b:64
    Fingerprint (SHA-256):
        B1:67:6A:01:48:4C:C8:93:49:5C:91:DE:EE:43:63:D0:05:4D:6B:F5:8F:30:93:B0:84:E8:2D:50:D4:67:5A:49
    Fingerprint (SHA1):
        50:CF:7B:12:B5:AF:D3:68:D7:A4:7B:46:89:B1:D7:85:31:0E:A7:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8497: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123614 (0x310fde9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:14 2017
            Not After : Tue Aug 23 12:35:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:ed:31:3e:92:f7:9d:32:52:c1:a8:03:bd:a9:4a:8b:
                    9a:83:f7:50:80:7f:17:f4:1c:a4:44:d7:dc:6d:7a:00:
                    3e:80:a9:fa:46:6d:97:a4:f8:ad:2d:70:16:cf:c2:37:
                    ac:ac:92:08:f0:bd:ac:24:60:96:6c:c1:f3:f8:43:42:
                    36:ea:c1:8d:1d:ff:09:e1:1d:5a:06:f9:01:17:58:d8:
                    d2:c7:ca:33:25:1e:ad:62:28:29:0a:f9:04:fa:f2:f6:
                    4f:28:c9:d1:c6:32:67:ae:d7:e4:23:9b:47:b9:b3:6b:
                    df:95:c6:f3:0d:f9:80:e9:af:38:8d:d3:ed:15:40:e8:
                    d9:4c:23:2e:1a:7e:7f:26:6b:36:33:70:51:58:7c:dc:
                    c5:b2:af:6e:b8:52:67:d5:3c:a9:c9:70:7a:8d:3e:73:
                    55:57:68:5f:b2:ae:a2:68:9b:0b:30:1d:c7:47:e4:66:
                    ba:8e:25:18:4c:c2:bb:07:da:a9:c1:e6:a9:96:a4:9c:
                    df:ce:f9:24:5d:28:09:33:89:60:8c:26:89:ee:a0:1a:
                    01:1c:69:6f:83:c5:59:d4:3a:a0:cd:d8:7e:40:c2:03:
                    22:24:a1:6b:dd:d8:8c:cb:2b:e2:78:ec:f0:53:0a:6b:
                    3f:f4:ae:03:69:23:f1:64:32:7a:fc:c1:cc:81:e9:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:39:4d:1a:67:62:25:42:1b:c8:24:8f:49:26:c6:40:
        69:a7:1b:19:2f:56:d2:89:f0:b4:d9:3b:99:63:f1:17:
        5c:2c:bc:23:2a:e1:4f:de:73:46:5d:bc:31:11:51:88:
        e2:bc:65:26:73:13:bb:d2:1c:42:fb:ff:6d:69:23:c1:
        de:38:ff:fe:3e:12:54:e1:a6:83:da:37:c8:e1:97:ff:
        cf:67:de:79:27:cc:4d:00:8d:90:0f:1e:e4:63:9c:a2:
        12:80:1f:ff:4a:7c:f9:ea:58:03:26:04:f0:c4:ea:3d:
        b5:ed:c4:d1:1d:89:15:03:aa:d3:d4:dd:d4:0d:6e:ad:
        d2:88:a8:2c:49:b4:f6:05:73:df:c2:3e:51:8e:b8:18:
        f9:00:68:b4:73:44:c2:38:67:69:c4:81:95:0f:84:28:
        6e:d2:cc:01:35:7f:9f:b9:0e:6f:2a:56:8a:df:e1:44:
        86:21:06:5b:d5:15:e8:31:f3:3b:11:4a:48:42:08:f5:
        70:3c:15:d7:02:82:4c:1e:e1:e8:b2:4b:7c:59:a9:bc:
        a6:5e:a6:06:f4:a7:5c:08:f0:bc:25:b3:95:ef:54:0a:
        45:a1:01:17:70:ca:60:0a:5a:32:e2:97:dd:48:9f:04:
        30:d3:9b:1e:de:cd:d4:97:d5:16:c0:7f:56:76:9d:4d
    Fingerprint (SHA-256):
        63:0D:90:18:BC:C9:AD:F7:68:11:6E:0C:5A:76:41:AA:4F:EF:93:53:AA:2A:2B:2F:43:AD:00:0D:A1:8D:90:80
    Fingerprint (SHA1):
        8F:AF:4D:95:49:49:15:0E:71:8F:D3:9F:B1:19:51:9E:86:E3:BC:49
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8498: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #8499: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123614 (0x310fde9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:14 2017
            Not After : Tue Aug 23 12:35:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:ed:31:3e:92:f7:9d:32:52:c1:a8:03:bd:a9:4a:8b:
                    9a:83:f7:50:80:7f:17:f4:1c:a4:44:d7:dc:6d:7a:00:
                    3e:80:a9:fa:46:6d:97:a4:f8:ad:2d:70:16:cf:c2:37:
                    ac:ac:92:08:f0:bd:ac:24:60:96:6c:c1:f3:f8:43:42:
                    36:ea:c1:8d:1d:ff:09:e1:1d:5a:06:f9:01:17:58:d8:
                    d2:c7:ca:33:25:1e:ad:62:28:29:0a:f9:04:fa:f2:f6:
                    4f:28:c9:d1:c6:32:67:ae:d7:e4:23:9b:47:b9:b3:6b:
                    df:95:c6:f3:0d:f9:80:e9:af:38:8d:d3:ed:15:40:e8:
                    d9:4c:23:2e:1a:7e:7f:26:6b:36:33:70:51:58:7c:dc:
                    c5:b2:af:6e:b8:52:67:d5:3c:a9:c9:70:7a:8d:3e:73:
                    55:57:68:5f:b2:ae:a2:68:9b:0b:30:1d:c7:47:e4:66:
                    ba:8e:25:18:4c:c2:bb:07:da:a9:c1:e6:a9:96:a4:9c:
                    df:ce:f9:24:5d:28:09:33:89:60:8c:26:89:ee:a0:1a:
                    01:1c:69:6f:83:c5:59:d4:3a:a0:cd:d8:7e:40:c2:03:
                    22:24:a1:6b:dd:d8:8c:cb:2b:e2:78:ec:f0:53:0a:6b:
                    3f:f4:ae:03:69:23:f1:64:32:7a:fc:c1:cc:81:e9:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:39:4d:1a:67:62:25:42:1b:c8:24:8f:49:26:c6:40:
        69:a7:1b:19:2f:56:d2:89:f0:b4:d9:3b:99:63:f1:17:
        5c:2c:bc:23:2a:e1:4f:de:73:46:5d:bc:31:11:51:88:
        e2:bc:65:26:73:13:bb:d2:1c:42:fb:ff:6d:69:23:c1:
        de:38:ff:fe:3e:12:54:e1:a6:83:da:37:c8:e1:97:ff:
        cf:67:de:79:27:cc:4d:00:8d:90:0f:1e:e4:63:9c:a2:
        12:80:1f:ff:4a:7c:f9:ea:58:03:26:04:f0:c4:ea:3d:
        b5:ed:c4:d1:1d:89:15:03:aa:d3:d4:dd:d4:0d:6e:ad:
        d2:88:a8:2c:49:b4:f6:05:73:df:c2:3e:51:8e:b8:18:
        f9:00:68:b4:73:44:c2:38:67:69:c4:81:95:0f:84:28:
        6e:d2:cc:01:35:7f:9f:b9:0e:6f:2a:56:8a:df:e1:44:
        86:21:06:5b:d5:15:e8:31:f3:3b:11:4a:48:42:08:f5:
        70:3c:15:d7:02:82:4c:1e:e1:e8:b2:4b:7c:59:a9:bc:
        a6:5e:a6:06:f4:a7:5c:08:f0:bc:25:b3:95:ef:54:0a:
        45:a1:01:17:70:ca:60:0a:5a:32:e2:97:dd:48:9f:04:
        30:d3:9b:1e:de:cd:d4:97:d5:16:c0:7f:56:76:9d:4d
    Fingerprint (SHA-256):
        63:0D:90:18:BC:C9:AD:F7:68:11:6E:0C:5A:76:41:AA:4F:EF:93:53:AA:2A:2B:2F:43:AD:00:0D:A1:8D:90:80
    Fingerprint (SHA1):
        8F:AF:4D:95:49:49:15:0E:71:8F:D3:9F:B1:19:51:9E:86:E3:BC:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8500: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123616 (0x310fdea0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:14 2017
            Not After : Tue Aug 23 12:35:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:ea:2e:5b:06:51:c6:fc:5d:23:3e:84:7b:33:1c:af:
                    2c:86:37:c3:ab:69:86:eb:d9:84:71:53:5d:5c:22:9b:
                    9b:d1:2e:13:2c:00:9d:45:39:f9:88:d6:ca:4d:c7:d8:
                    9c:08:cd:86:4f:e1:2b:4c:f5:69:09:8d:66:86:d1:f6:
                    2d:49:db:e0:11:96:ed:e2:48:97:3d:82:b3:bd:e4:e4:
                    64:21:a9:3a:0c:f5:50:2d:4e:5c:9b:96:85:4b:f0:aa:
                    a2:52:db:8b:98:9b:84:cc:fc:10:46:71:b8:bd:94:14:
                    ef:df:bb:46:63:89:65:d7:a7:83:d8:94:8b:e4:f8:70:
                    49:60:1c:c2:3e:91:57:b0:73:27:ed:c6:a8:f3:62:01:
                    ba:30:c0:b1:e9:eb:b8:db:36:35:f1:da:fd:d8:51:b2:
                    94:c5:7b:5e:61:26:db:6f:cb:c1:88:96:b2:42:a2:04:
                    d2:35:ea:ec:4b:a6:8b:44:f5:9e:07:61:a7:cf:aa:10:
                    7d:09:6b:74:b4:4f:bc:ac:9c:45:bf:59:5e:80:0e:93:
                    ce:3a:13:9a:ad:09:98:51:89:f2:d2:a4:a4:ac:17:60:
                    ef:f5:7b:67:80:88:68:03:dd:59:58:a3:5f:43:71:b2:
                    e0:95:95:21:63:5c:aa:d1:3e:49:03:8b:66:12:79:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:51:11:3d:c1:ff:e0:a6:15:e9:4d:43:7d:1c:f1:08:
        fa:51:86:ea:d3:32:1c:c7:91:15:70:0f:d0:f9:38:37:
        20:0a:ae:87:61:1d:5f:53:fd:ea:98:da:f3:da:3b:c1:
        9b:71:31:c5:36:49:e6:a8:78:38:0f:22:db:a8:4c:64:
        7e:9e:ba:04:ff:c7:fe:1e:2f:b1:1d:83:c5:92:ee:7a:
        3e:ba:3c:02:c3:17:09:83:6c:70:f2:1b:a0:c1:8e:d3:
        79:a1:50:98:49:15:fc:7e:07:8d:a8:6b:de:8d:c9:ce:
        07:c1:5e:80:52:98:87:df:61:cc:8e:1f:ec:7f:9f:13:
        5a:31:e8:5f:42:f3:a5:39:12:0d:e6:c7:ff:a1:1a:91:
        85:d8:ff:ae:5c:62:60:44:d3:70:64:0c:43:aa:5d:4b:
        d8:94:fd:c5:1c:c0:05:05:4c:cc:5d:02:e9:28:bf:e2:
        64:4d:6d:a0:89:05:18:44:4e:66:a4:b0:8b:6f:e8:41:
        5d:eb:41:e9:44:5d:98:c5:db:93:9f:28:b0:47:a9:b5:
        c0:85:72:b8:85:b8:0e:ce:29:09:e6:e1:86:de:36:98:
        59:c8:fe:21:e5:7e:7d:7a:55:33:2a:c1:fc:20:0e:df:
        0a:5f:7b:6d:4f:3a:31:f1:f4:d4:f9:de:8b:a8:1b:64
    Fingerprint (SHA-256):
        B1:67:6A:01:48:4C:C8:93:49:5C:91:DE:EE:43:63:D0:05:4D:6B:F5:8F:30:93:B0:84:E8:2D:50:D4:67:5A:49
    Fingerprint (SHA1):
        50:CF:7B:12:B5:AF:D3:68:D7:A4:7B:46:89:B1:D7:85:31:0E:A7:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8501: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #8502: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #8503: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #8504: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123614 (0x310fde9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:14 2017
            Not After : Tue Aug 23 12:35:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:ed:31:3e:92:f7:9d:32:52:c1:a8:03:bd:a9:4a:8b:
                    9a:83:f7:50:80:7f:17:f4:1c:a4:44:d7:dc:6d:7a:00:
                    3e:80:a9:fa:46:6d:97:a4:f8:ad:2d:70:16:cf:c2:37:
                    ac:ac:92:08:f0:bd:ac:24:60:96:6c:c1:f3:f8:43:42:
                    36:ea:c1:8d:1d:ff:09:e1:1d:5a:06:f9:01:17:58:d8:
                    d2:c7:ca:33:25:1e:ad:62:28:29:0a:f9:04:fa:f2:f6:
                    4f:28:c9:d1:c6:32:67:ae:d7:e4:23:9b:47:b9:b3:6b:
                    df:95:c6:f3:0d:f9:80:e9:af:38:8d:d3:ed:15:40:e8:
                    d9:4c:23:2e:1a:7e:7f:26:6b:36:33:70:51:58:7c:dc:
                    c5:b2:af:6e:b8:52:67:d5:3c:a9:c9:70:7a:8d:3e:73:
                    55:57:68:5f:b2:ae:a2:68:9b:0b:30:1d:c7:47:e4:66:
                    ba:8e:25:18:4c:c2:bb:07:da:a9:c1:e6:a9:96:a4:9c:
                    df:ce:f9:24:5d:28:09:33:89:60:8c:26:89:ee:a0:1a:
                    01:1c:69:6f:83:c5:59:d4:3a:a0:cd:d8:7e:40:c2:03:
                    22:24:a1:6b:dd:d8:8c:cb:2b:e2:78:ec:f0:53:0a:6b:
                    3f:f4:ae:03:69:23:f1:64:32:7a:fc:c1:cc:81:e9:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:39:4d:1a:67:62:25:42:1b:c8:24:8f:49:26:c6:40:
        69:a7:1b:19:2f:56:d2:89:f0:b4:d9:3b:99:63:f1:17:
        5c:2c:bc:23:2a:e1:4f:de:73:46:5d:bc:31:11:51:88:
        e2:bc:65:26:73:13:bb:d2:1c:42:fb:ff:6d:69:23:c1:
        de:38:ff:fe:3e:12:54:e1:a6:83:da:37:c8:e1:97:ff:
        cf:67:de:79:27:cc:4d:00:8d:90:0f:1e:e4:63:9c:a2:
        12:80:1f:ff:4a:7c:f9:ea:58:03:26:04:f0:c4:ea:3d:
        b5:ed:c4:d1:1d:89:15:03:aa:d3:d4:dd:d4:0d:6e:ad:
        d2:88:a8:2c:49:b4:f6:05:73:df:c2:3e:51:8e:b8:18:
        f9:00:68:b4:73:44:c2:38:67:69:c4:81:95:0f:84:28:
        6e:d2:cc:01:35:7f:9f:b9:0e:6f:2a:56:8a:df:e1:44:
        86:21:06:5b:d5:15:e8:31:f3:3b:11:4a:48:42:08:f5:
        70:3c:15:d7:02:82:4c:1e:e1:e8:b2:4b:7c:59:a9:bc:
        a6:5e:a6:06:f4:a7:5c:08:f0:bc:25:b3:95:ef:54:0a:
        45:a1:01:17:70:ca:60:0a:5a:32:e2:97:dd:48:9f:04:
        30:d3:9b:1e:de:cd:d4:97:d5:16:c0:7f:56:76:9d:4d
    Fingerprint (SHA-256):
        63:0D:90:18:BC:C9:AD:F7:68:11:6E:0C:5A:76:41:AA:4F:EF:93:53:AA:2A:2B:2F:43:AD:00:0D:A1:8D:90:80
    Fingerprint (SHA1):
        8F:AF:4D:95:49:49:15:0E:71:8F:D3:9F:B1:19:51:9E:86:E3:BC:49
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8505: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123618 (0x310fdea2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:15 2017
            Not After : Tue Aug 23 12:35:15 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:6e:91:e7:43:21:0d:7a:c4:d0:05:0a:5c:51:f7:1c:
                    43:52:e4:4f:95:e5:14:f7:83:69:ce:2a:56:50:9f:2f:
                    02:25:c5:6f:2f:92:2d:a1:30:46:d3:08:88:40:68:63:
                    3f:3b:66:ef:d9:fc:09:29:ca:61:11:9b:e6:ed:7a:cf:
                    7b:a8:32:78:17:3c:e7:d7:e3:67:cc:3f:62:68:b9:33:
                    eb:1a:e8:66:79:52:77:8e:6b:68:7a:df:1a:16:86:ed:
                    5e:57:6b:dd:e5:31:3c:6b:a2:fd:57:3f:0c:55:29:73:
                    76:41:3f:29:ac:e8:99:a1:1e:85:57:2b:91:85:d8:df:
                    f0:03:b0:3a:b4:e9:f2:37:d5:9f:06:c7:aa:eb:e7:0c:
                    e2:ac:70:66:42:c1:de:5a:13:1d:a5:cb:d7:a1:df:9d:
                    dd:7d:4d:8e:5a:31:73:0a:a5:79:af:12:9d:6d:cf:5c:
                    21:f0:59:42:69:e1:cd:42:9b:75:ad:69:46:87:be:8b:
                    ba:eb:c6:e7:6e:69:02:77:51:71:8c:6a:8a:41:1c:ce:
                    0a:a3:c1:41:52:19:2c:f1:7c:35:8f:9a:2f:c0:20:46:
                    93:34:e5:87:d2:58:19:27:af:ee:f6:9a:10:1f:87:44:
                    e4:d8:9b:43:2a:a0:f7:64:0f:53:c2:72:0a:0e:2e:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:3c:c1:f9:40:86:4b:59:9b:4c:4c:27:78:d2:7b:f6:
        b6:fe:06:4a:de:a7:05:07:fa:38:2b:c9:3f:e4:ba:f5:
        11:eb:87:6d:8a:dc:51:0f:5b:b7:66:c3:c2:85:5b:dd:
        91:c0:9f:6d:51:af:c2:af:7b:69:70:4a:d1:f6:77:f1:
        dc:0d:30:d8:71:35:d9:8d:7c:f6:2e:3c:95:7b:1e:99:
        85:e5:62:a9:45:72:3a:40:23:0f:91:b7:df:f4:d1:5c:
        92:61:91:e7:d6:70:76:13:f3:a4:dc:ff:59:f8:bf:36:
        b3:3b:fb:fb:b2:33:af:c4:22:ad:76:42:a3:d5:61:04:
        61:43:fa:b3:7f:97:c9:03:30:77:0e:d5:b0:db:57:08:
        76:ae:cc:16:e0:08:17:78:89:e9:2f:8c:5d:53:15:28:
        80:4f:ca:78:9e:26:2b:02:5f:2a:44:d7:a7:2a:e8:72:
        07:da:f6:ae:c2:ca:98:9a:e4:b2:64:9e:4d:2a:9a:60:
        41:27:f5:c8:62:82:2a:ea:46:e4:96:b9:40:1b:f6:65:
        86:78:85:46:e0:cf:21:b3:b2:5a:7b:41:9a:92:0e:34:
        e1:80:f2:68:d7:7d:f3:7f:2d:7b:b0:5a:77:cc:74:f6:
        bc:80:5c:06:f6:07:7f:a6:5b:15:33:b6:52:76:63:de
    Fingerprint (SHA-256):
        59:88:30:11:71:CA:20:A3:62:7D:FA:AB:94:68:D0:38:81:F2:F1:9E:C0:B9:E9:3B:D4:80:69:A2:92:EA:18:7E
    Fingerprint (SHA1):
        4D:1C:49:B4:15:D9:1D:37:C7:A7:8C:95:8F:14:E0:68:1C:E8:E8:C1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #8506: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123614 (0x310fde9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:14 2017
            Not After : Tue Aug 23 12:35:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:ed:31:3e:92:f7:9d:32:52:c1:a8:03:bd:a9:4a:8b:
                    9a:83:f7:50:80:7f:17:f4:1c:a4:44:d7:dc:6d:7a:00:
                    3e:80:a9:fa:46:6d:97:a4:f8:ad:2d:70:16:cf:c2:37:
                    ac:ac:92:08:f0:bd:ac:24:60:96:6c:c1:f3:f8:43:42:
                    36:ea:c1:8d:1d:ff:09:e1:1d:5a:06:f9:01:17:58:d8:
                    d2:c7:ca:33:25:1e:ad:62:28:29:0a:f9:04:fa:f2:f6:
                    4f:28:c9:d1:c6:32:67:ae:d7:e4:23:9b:47:b9:b3:6b:
                    df:95:c6:f3:0d:f9:80:e9:af:38:8d:d3:ed:15:40:e8:
                    d9:4c:23:2e:1a:7e:7f:26:6b:36:33:70:51:58:7c:dc:
                    c5:b2:af:6e:b8:52:67:d5:3c:a9:c9:70:7a:8d:3e:73:
                    55:57:68:5f:b2:ae:a2:68:9b:0b:30:1d:c7:47:e4:66:
                    ba:8e:25:18:4c:c2:bb:07:da:a9:c1:e6:a9:96:a4:9c:
                    df:ce:f9:24:5d:28:09:33:89:60:8c:26:89:ee:a0:1a:
                    01:1c:69:6f:83:c5:59:d4:3a:a0:cd:d8:7e:40:c2:03:
                    22:24:a1:6b:dd:d8:8c:cb:2b:e2:78:ec:f0:53:0a:6b:
                    3f:f4:ae:03:69:23:f1:64:32:7a:fc:c1:cc:81:e9:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:39:4d:1a:67:62:25:42:1b:c8:24:8f:49:26:c6:40:
        69:a7:1b:19:2f:56:d2:89:f0:b4:d9:3b:99:63:f1:17:
        5c:2c:bc:23:2a:e1:4f:de:73:46:5d:bc:31:11:51:88:
        e2:bc:65:26:73:13:bb:d2:1c:42:fb:ff:6d:69:23:c1:
        de:38:ff:fe:3e:12:54:e1:a6:83:da:37:c8:e1:97:ff:
        cf:67:de:79:27:cc:4d:00:8d:90:0f:1e:e4:63:9c:a2:
        12:80:1f:ff:4a:7c:f9:ea:58:03:26:04:f0:c4:ea:3d:
        b5:ed:c4:d1:1d:89:15:03:aa:d3:d4:dd:d4:0d:6e:ad:
        d2:88:a8:2c:49:b4:f6:05:73:df:c2:3e:51:8e:b8:18:
        f9:00:68:b4:73:44:c2:38:67:69:c4:81:95:0f:84:28:
        6e:d2:cc:01:35:7f:9f:b9:0e:6f:2a:56:8a:df:e1:44:
        86:21:06:5b:d5:15:e8:31:f3:3b:11:4a:48:42:08:f5:
        70:3c:15:d7:02:82:4c:1e:e1:e8:b2:4b:7c:59:a9:bc:
        a6:5e:a6:06:f4:a7:5c:08:f0:bc:25:b3:95:ef:54:0a:
        45:a1:01:17:70:ca:60:0a:5a:32:e2:97:dd:48:9f:04:
        30:d3:9b:1e:de:cd:d4:97:d5:16:c0:7f:56:76:9d:4d
    Fingerprint (SHA-256):
        63:0D:90:18:BC:C9:AD:F7:68:11:6E:0C:5A:76:41:AA:4F:EF:93:53:AA:2A:2B:2F:43:AD:00:0D:A1:8D:90:80
    Fingerprint (SHA1):
        8F:AF:4D:95:49:49:15:0E:71:8F:D3:9F:B1:19:51:9E:86:E3:BC:49
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8507: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #8508: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #8509: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #8510: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #8511: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #8512: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823123619 (0x310fdea3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:35:15 2017
            Not After : Tue Aug 23 12:35:15 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:d7:4c:b0:5f:4f:29:4e:b4:01:f0:4b:4e:db:d1:4a:
                    69:a5:2b:92:f1:1c:f5:70:c2:82:14:d5:1e:b1:3c:c2:
                    b8:47:5e:0c:99:93:0d:66:c4:06:0c:3f:77:de:82:8c:
                    64:f5:93:41:14:69:f7:cf:3e:80:84:4b:f6:2f:bf:cd:
                    a8:7d:fa:29:4e:18:99:30:89:c4:2e:28:8d:5a:e7:08:
                    67:02:d9:5b:6e:e8:c2:f3:a4:12:92:48:50:f0:3f:8d:
                    37:1f:cf:b7:e1:00:4e:9d:5a:08:a9:a3:dc:7a:36:cc:
                    fd:e4:b4:4e:1b:7f:b8:25:8c:6c:fc:75:08:fd:0c:5a:
                    4a:f0:34:c0:b8:b7:ed:fc:cf:0d:cf:d9:65:76:a6:be:
                    47:b7:03:e3:cb:9d:d5:f9:19:33:61:f1:4a:9a:2e:4f:
                    f9:b2:26:9c:00:3c:89:19:b7:ca:3e:25:f0:81:d8:b1:
                    d8:b3:92:11:c7:bd:2b:41:05:7d:43:ac:64:11:5f:55:
                    69:82:1d:a4:86:1c:31:8f:e4:0c:20:d5:ca:01:ca:d3:
                    2a:25:1f:0a:44:5a:16:9b:69:62:0d:2e:0e:38:4d:40:
                    a2:f1:6a:e9:a7:4b:52:09:07:71:e1:e1:6b:8b:b8:ae:
                    b6:f3:d1:5c:25:cc:59:ed:d8:84:83:f7:0d:05:a9:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:30:be:55:88:57:7c:00:66:5d:cc:55:e2:2e:60:05:
        c2:94:37:dd:14:c1:04:65:ac:e1:b5:27:b8:f0:11:8e:
        9c:91:e0:e0:0e:b4:e2:ab:ae:1e:fd:5c:a9:69:9a:58:
        3b:3c:3b:ee:2d:5a:80:11:e9:b2:04:6d:ab:44:0f:49:
        56:95:cf:ce:21:89:cb:3d:c1:08:0e:cf:ba:6a:5a:76:
        18:a4:27:da:94:d9:28:a8:cf:cc:7d:8b:59:46:c4:7a:
        8e:be:a3:41:14:00:d0:d7:44:0c:f7:07:68:95:fa:62:
        97:9f:88:5d:12:07:b7:9b:e3:e2:7b:ce:b3:4c:15:15:
        bf:38:23:6a:99:6b:b6:48:e7:df:fd:08:21:e3:6c:25:
        fe:a6:e9:ea:90:b1:58:42:64:8f:ed:82:c9:b1:31:10:
        c8:55:b2:5a:23:58:4e:99:dc:e8:1d:5a:16:54:5f:9f:
        84:bd:9a:1d:1a:05:08:c2:c8:55:a9:74:89:bf:ad:6b:
        71:40:12:b7:25:ca:4c:44:b3:59:82:48:71:31:4b:9e:
        a4:81:82:30:9f:a6:ff:fd:bf:b7:87:ed:70:d1:cd:10:
        e7:2a:d8:c5:ce:3d:9a:6d:1e:bc:0d:63:e6:60:f5:2b:
        8e:15:18:10:67:fa:15:a0:f3:73:6f:90:38:61:e6:1b
    Fingerprint (SHA-256):
        33:1F:43:DA:7D:C8:25:AA:5B:AE:4C:DD:5E:78:D5:19:5F:B1:DC:18:B0:82:E9:17:E3:9C:54:4B:75:0A:31:0F
    Fingerprint (SHA1):
        AE:68:CD:CF:2F:D3:0E:52:77:A3:C3:7C:99:41:96:F3:45:3C:8B:1D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8513: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #8514: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #8515: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #8516: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #8517: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8518: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8519: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8520: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8521: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8522: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8523: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8524: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8525: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8526: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8527: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8528: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8529: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8530: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8531: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #8532: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8533: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8534: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8535: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8536: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 3102 at Wed Aug 23 12:35:17 UTC 2017
kill -USR1 3102
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 3102 killed at Wed Aug 23 12:35:17 UTC 2017
TIMESTAMP chains END: Wed Aug 23 12:35:17 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed Aug 23 12:35:17 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed Aug 23 12:35:17 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8537: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed Aug 23 12:35:17 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed Aug 23 12:35:17 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8538: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8539: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8540: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8541: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8542: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8543: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed Aug 23 12:35:17 UTC 2017
TIMESTAMP ec END: Wed Aug 23 12:35:17 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed Aug 23 12:35:17 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (1 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8544: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8545: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8546: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8547: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8548: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8549: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8550: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8551: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8552: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8553: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8554: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8555: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8556: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8557: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8558: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8559: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8560: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (0 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (0 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (45 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (87 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (132 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (26 ms)
[----------] 1 test from Pkcs11RsaPssTest (26 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (0 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (0 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (158 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #8561: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8562: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #8563: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #8564: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #8565: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #8566: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #8567: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #8568: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #8569: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #8570: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #8571: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #8572: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #8573: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #8574: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #8575: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #8576: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #8577: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #8578: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #8579: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #8580: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #8581: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #8582: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Wed Aug 23 12:35:17 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed Aug 23 12:35:17 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8583: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8584: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8585: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8586: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8587: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8588: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8589: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8590: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8591: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8592: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8593: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8594: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8595: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8596: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8597: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (12 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (4 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (5 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (476 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (3 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (11 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (12 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (326 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (12 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (16 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (4 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (7 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (574 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (12 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (1 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (8 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (10 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (484 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (12 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (13 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (4 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (4 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (1589 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (12 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (13 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (5 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (4 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (5 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (803 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (4 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (4 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (33 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301c0209686c9e2cd06200d6dd2d0a9fcd142ae5a79c90ce1db8e07...
record new: [1184] 020000510301c0209686c9e2cd06200d6dd2d0a9fcd142ae5a79c90ce1db8e07...
server: Original packet: [1189] 16030104a0020000510301c0209686c9e2cd06200d6dd2d0a9fcd142ae5a79c9...
server: Filtered packet: [1189] 16030104a0020000510301c0209686c9e2cd06200d6dd2d0a9fcd142ae5a79c9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301e748277cbbeebea0aa96d35dcaf2020dfaeaa67201ec57aa3524...
record new: [1184] 020000510301e748277cbbeebea0aa96d35dcaf2020dfaeaa67201ec57aa3524...
server: Original packet: [1189] 16030104a0020000510301e748277cbbeebea0aa96d35dcaf2020dfaeaa67201...
server: Filtered packet: [1189] 16030104a0020000510301e748277cbbeebea0aa96d35dcaf2020dfaeaa67201...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030157946f5b4b5f86e55a82e3e0fbfccb7ebd1a418181a0c970c988...
record new: [1184] 02000051030157946f5b4b5f86e55a82e3e0fbfccb7ebd1a418181a0c970c988...
server: Original packet: [1189] 16030104a002000051030157946f5b4b5f86e55a82e3e0fbfccb7ebd1a418181...
server: Filtered packet: [1189] 16030104a002000051030157946f5b4b5f86e55a82e3e0fbfccb7ebd1a418181...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103012097e2710e9391b94e5d2a55d717c3ed873512c9e812d9046274...
record new: [1184] 0200005103012097e2710e9391b94e5d2a55d717c3ed873512c9e812d9046274...
server: Original packet: [1189] 16030104a00200005103012097e2710e9391b94e5d2a55d717c3ed873512c9e8...
server: Filtered packet: [1189] 16030104a00200005103012097e2710e9391b94e5d2a55d717c3ed873512c9e8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301f257a83dd58f5dd697685cb73d73ea12775680c1f2582dbdf90a...
record new: [1184] 020000510301f257a83dd58f5dd697685cb73d73ea12775680c1f2582dbdf90a...
server: Original packet: [1189] 16030104a0020000510301f257a83dd58f5dd697685cb73d73ea12775680c1f2...
server: Filtered packet: [1189] 16030104a0020000510301f257a83dd58f5dd697685cb73d73ea12775680c1f2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a8472628e9fee8aeb76ede3b4a778684b91bdeac88c01f91c1e6...
record new: [1184] 020000510301a8472628e9fee8aeb76ede3b4a778684b91bdeac88c01f91c1e6...
server: Original packet: [1189] 16030104a0020000510301a8472628e9fee8aeb76ede3b4a778684b91bdeac88...
server: Filtered packet: [1189] 16030104a0020000510301a8472628e9fee8aeb76ede3b4a778684b91bdeac88...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103013e542fc4f294b8b978fab6f02290c93683c84160174ad32c999c...
record new: [1184] 0200005103013e542fc4f294b8b978fab6f02290c93683c84160174ad32c999c...
server: Original packet: [1189] 16030104a00200005103013e542fc4f294b8b978fab6f02290c93683c8416017...
server: Filtered packet: [1189] 16030104a00200005103013e542fc4f294b8b978fab6f02290c93683c8416017...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103018f2fe464abfd9d5963a00f8cd299fe89fdd3a96627d5ed9dc78f...
record new: [1184] 0200005103018f2fe464abfd9d5963a00f8cd299fe89fdd3a96627d5ed9dc78f...
server: Original packet: [1189] 16030104a00200005103018f2fe464abfd9d5963a00f8cd299fe89fdd3a96627...
server: Filtered packet: [1189] 16030104a00200005103018f2fe464abfd9d5963a00f8cd299fe89fdd3a96627...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301073a00d7c76a73153a1324a18aaf45861301ad24da2f20f5c82d...
record new: [1185] 020000510301073a00d7c76a73153a1324a18aaf45861301ad24da2f20f5c82d...
server: Original packet: [1189] 16030104a0020000510301073a00d7c76a73153a1324a18aaf45861301ad24da...
server: Filtered packet: [1190] 16030104a1020000510301073a00d7c76a73153a1324a18aaf45861301ad24da...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a71d258668732520929dc5bbd02d769bf9bcbf4b1542c1439785...
record new: [1185] 020000510301a71d258668732520929dc5bbd02d769bf9bcbf4b1542c1439785...
server: Original packet: [1189] 16030104a0020000510301a71d258668732520929dc5bbd02d769bf9bcbf4b15...
server: Filtered packet: [1190] 16030104a1020000510301a71d258668732520929dc5bbd02d769bf9bcbf4b15...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030161f2b6e0aad0a973e6af67b720f1f03717b4f1d06d4a4a99f1c0...
record new: [1185] 02000051030161f2b6e0aad0a973e6af67b720f1f03717b4f1d06d4a4a99f1c0...
server: Original packet: [1189] 16030104a002000051030161f2b6e0aad0a973e6af67b720f1f03717b4f1d06d...
server: Filtered packet: [1190] 16030104a102000051030161f2b6e0aad0a973e6af67b720f1f03717b4f1d06d...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103018e0a72a5af204a2175fc99891a207688a125cc44a072dd29ae0e...
record new: [1185] 0200005103018e0a72a5af204a2175fc99891a207688a125cc44a072dd29ae0e...
server: Original packet: [1189] 16030104a00200005103018e0a72a5af204a2175fc99891a207688a125cc44a0...
server: Filtered packet: [1190] 16030104a10200005103018e0a72a5af204a2175fc99891a207688a125cc44a0...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302f3af4aebcc25ee369cc6e75915c34e00a5be9a19d35d6c4443c8...
record new: [1184] 020000510302f3af4aebcc25ee369cc6e75915c34e00a5be9a19d35d6c4443c8...
server: Original packet: [1189] 16030204a0020000510302f3af4aebcc25ee369cc6e75915c34e00a5be9a19d3...
server: Filtered packet: [1189] 16030204a0020000510302f3af4aebcc25ee369cc6e75915c34e00a5be9a19d3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103023efa342d18c352aa417aba3fcebee6955f0c841613c70ed01e91...
record new: [1184] 0200005103023efa342d18c352aa417aba3fcebee6955f0c841613c70ed01e91...
server: Original packet: [1189] 16030204a00200005103023efa342d18c352aa417aba3fcebee6955f0c841613...
server: Filtered packet: [1189] 16030204a00200005103023efa342d18c352aa417aba3fcebee6955f0c841613...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030289433abf70fe3941f34db2eb4a2891ddfe2d6068f797c0db88a2...
record new: [1184] 02000051030289433abf70fe3941f34db2eb4a2891ddfe2d6068f797c0db88a2...
server: Original packet: [1189] 16030204a002000051030289433abf70fe3941f34db2eb4a2891ddfe2d6068f7...
server: Filtered packet: [1189] 16030204a002000051030289433abf70fe3941f34db2eb4a2891ddfe2d6068f7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302209685ae7f9bbc7f1a80d983bcedf428a1eae677c7b8db2c667b...
record new: [1184] 020000510302209685ae7f9bbc7f1a80d983bcedf428a1eae677c7b8db2c667b...
server: Original packet: [1189] 16030204a0020000510302209685ae7f9bbc7f1a80d983bcedf428a1eae677c7...
server: Filtered packet: [1189] 16030204a0020000510302209685ae7f9bbc7f1a80d983bcedf428a1eae677c7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a416941184e624a11fd454032aeb0059bb40c03a8a19c027bc94...
record new: [1184] 020000510302a416941184e624a11fd454032aeb0059bb40c03a8a19c027bc94...
server: Original packet: [1189] 16030204a0020000510302a416941184e624a11fd454032aeb0059bb40c03a8a...
server: Filtered packet: [1189] 16030204a0020000510302a416941184e624a11fd454032aeb0059bb40c03a8a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030238079eb765a385c3c26c0c1b5ad0862e20abc2ac70d0af564537...
record new: [1184] 02000051030238079eb765a385c3c26c0c1b5ad0862e20abc2ac70d0af564537...
server: Original packet: [1189] 16030204a002000051030238079eb765a385c3c26c0c1b5ad0862e20abc2ac70...
server: Filtered packet: [1189] 16030204a002000051030238079eb765a385c3c26c0c1b5ad0862e20abc2ac70...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030252fc9b7f16a97e56ac571a55105962770326d96dea83f1b44023...
record new: [1184] 02000051030252fc9b7f16a97e56ac571a55105962770326d96dea83f1b44023...
server: Original packet: [1189] 16030204a002000051030252fc9b7f16a97e56ac571a55105962770326d96dea...
server: Filtered packet: [1189] 16030204a002000051030252fc9b7f16a97e56ac571a55105962770326d96dea...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103025eddf6c9fdaa36bbf7c82c3197cc767aa68e6c3b2f9729d48748...
record new: [1184] 0200005103025eddf6c9fdaa36bbf7c82c3197cc767aa68e6c3b2f9729d48748...
server: Original packet: [1189] 16030204a00200005103025eddf6c9fdaa36bbf7c82c3197cc767aa68e6c3b2f...
server: Filtered packet: [1189] 16030204a00200005103025eddf6c9fdaa36bbf7c82c3197cc767aa68e6c3b2f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302ccf96922314666c62ddb9abd7e1f55c68cef35619aa4e9ebb4a4...
record new: [1185] 020000510302ccf96922314666c62ddb9abd7e1f55c68cef35619aa4e9ebb4a4...
server: Original packet: [1189] 16030204a0020000510302ccf96922314666c62ddb9abd7e1f55c68cef35619a...
server: Filtered packet: [1190] 16030204a1020000510302ccf96922314666c62ddb9abd7e1f55c68cef35619a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302d1c5a5373cb8170b28969c6a7d3db1f3cd5012174e5327e2b9bf...
record new: [1185] 020000510302d1c5a5373cb8170b28969c6a7d3db1f3cd5012174e5327e2b9bf...
server: Original packet: [1189] 16030204a0020000510302d1c5a5373cb8170b28969c6a7d3db1f3cd5012174e...
server: Filtered packet: [1190] 16030204a1020000510302d1c5a5373cb8170b28969c6a7d3db1f3cd5012174e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103024c7eb41a3b20965016a9c3f85f50c3cb7467b30f3ee787760331...
record new: [1185] 0200005103024c7eb41a3b20965016a9c3f85f50c3cb7467b30f3ee787760331...
server: Original packet: [1189] 16030204a00200005103024c7eb41a3b20965016a9c3f85f50c3cb7467b30f3e...
server: Filtered packet: [1190] 16030204a10200005103024c7eb41a3b20965016a9c3f85f50c3cb7467b30f3e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a3dcc369baf584fd6a13954993e46545daa27a4d057e8ba5844d...
record new: [1185] 020000510302a3dcc369baf584fd6a13954993e46545daa27a4d057e8ba5844d...
server: Original packet: [1189] 16030204a0020000510302a3dcc369baf584fd6a13954993e46545daa27a4d05...
server: Filtered packet: [1190] 16030204a1020000510302a3dcc369baf584fd6a13954993e46545daa27a4d05...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030346b879cf7d93d1328ff2707d20b0a4d9478968e2aeef1c00a66a...
record new: [1186] 02000051030346b879cf7d93d1328ff2707d20b0a4d9478968e2aeef1c00a66a...
server: Original packet: [1191] 16030304a202000051030346b879cf7d93d1328ff2707d20b0a4d9478968e2ae...
server: Filtered packet: [1191] 16030304a202000051030346b879cf7d93d1328ff2707d20b0a4d9478968e2ae...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303405ee7ca6484e4f347f565bed0c25441f24363a665dc90b7004a...
record new: [1186] 020000510303405ee7ca6484e4f347f565bed0c25441f24363a665dc90b7004a...
server: Original packet: [1191] 16030304a2020000510303405ee7ca6484e4f347f565bed0c25441f24363a665...
server: Filtered packet: [1191] 16030304a2020000510303405ee7ca6484e4f347f565bed0c25441f24363a665...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103030fe9af74955ea5ead9e3586840ce7fba87c0924be563ea11fcac...
record new: [1186] 0200005103030fe9af74955ea5ead9e3586840ce7fba87c0924be563ea11fcac...
server: Original packet: [1191] 16030304a20200005103030fe9af74955ea5ead9e3586840ce7fba87c0924be5...
server: Filtered packet: [1191] 16030304a20200005103030fe9af74955ea5ead9e3586840ce7fba87c0924be5...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303ba167f453a11c2fc7c384b4c64e4c9784b37a03bfb579cafe83f...
record new: [1186] 020000510303ba167f453a11c2fc7c384b4c64e4c9784b37a03bfb579cafe83f...
server: Original packet: [1191] 16030304a2020000510303ba167f453a11c2fc7c384b4c64e4c9784b37a03bfb...
server: Filtered packet: [1191] 16030304a2020000510303ba167f453a11c2fc7c384b4c64e4c9784b37a03bfb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303b7fcee6fc23879d95be140f85ebbfa8acd626a485b5ec5fb2daf...
record new: [1186] 020000510303b7fcee6fc23879d95be140f85ebbfa8acd626a485b5ec5fb2daf...
server: Original packet: [1191] 16030304a2020000510303b7fcee6fc23879d95be140f85ebbfa8acd626a485b...
server: Filtered packet: [1191] 16030304a2020000510303b7fcee6fc23879d95be140f85ebbfa8acd626a485b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f4100c250e6670cfe300c81b439824936bcfb9670e77cef0091b...
record new: [1186] 020000510303f4100c250e6670cfe300c81b439824936bcfb9670e77cef0091b...
server: Original packet: [1191] 16030304a2020000510303f4100c250e6670cfe300c81b439824936bcfb9670e...
server: Filtered packet: [1191] 16030304a2020000510303f4100c250e6670cfe300c81b439824936bcfb9670e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303a8d65d329e6fb820987705b582c475c44a8339c9f13f881587d7...
record new: [1186] 020000510303a8d65d329e6fb820987705b582c475c44a8339c9f13f881587d7...
server: Original packet: [1191] 16030304a2020000510303a8d65d329e6fb820987705b582c475c44a8339c9f1...
server: Filtered packet: [1191] 16030304a2020000510303a8d65d329e6fb820987705b582c475c44a8339c9f1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303185e0b041049855a9fa5700bc07776c57a677c5c75ab0b48ef17...
record new: [1186] 020000510303185e0b041049855a9fa5700bc07776c57a677c5c75ab0b48ef17...
server: Original packet: [1191] 16030304a2020000510303185e0b041049855a9fa5700bc07776c57a677c5c75...
server: Filtered packet: [1191] 16030304a2020000510303185e0b041049855a9fa5700bc07776c57a677c5c75...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030334fe1803f40b826863c990287858a8b476c5dd0719855fe1198f...
record new: [1187] 02000051030334fe1803f40b826863c990287858a8b476c5dd0719855fe1198f...
server: Original packet: [1191] 16030304a202000051030334fe1803f40b826863c990287858a8b476c5dd0719...
server: Filtered packet: [1192] 16030304a302000051030334fe1803f40b826863c990287858a8b476c5dd0719...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103036c99ae6804af324088f74ec3b29c64ad27bebbe4a216193162db...
record new: [1187] 0200005103036c99ae6804af324088f74ec3b29c64ad27bebbe4a216193162db...
server: Original packet: [1191] 16030304a20200005103036c99ae6804af324088f74ec3b29c64ad27bebbe4a2...
server: Filtered packet: [1192] 16030304a30200005103036c99ae6804af324088f74ec3b29c64ad27bebbe4a2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103035ba3bebbb8ad5afcab8630df679aa9f2f2a6c7ac13b7f4d87a71...
record new: [1187] 0200005103035ba3bebbb8ad5afcab8630df679aa9f2f2a6c7ac13b7f4d87a71...
server: Original packet: [1191] 16030304a20200005103035ba3bebbb8ad5afcab8630df679aa9f2f2a6c7ac13...
server: Filtered packet: [1192] 16030304a30200005103035ba3bebbb8ad5afcab8630df679aa9f2f2a6c7ac13...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (4 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303c337185d9f7c6cd13d253af9e332dc0c6c0d95cc513b7c2abef4...
record new: [1187] 020000510303c337185d9f7c6cd13d253af9e332dc0c6c0d95cc513b7c2abef4...
server: Original packet: [1191] 16030304a2020000510303c337185d9f7c6cd13d253af9e332dc0c6c0d95cc51...
server: Filtered packet: [1192] 16030304a3020000510303c337185d9f7c6cd13d253af9e332dc0c6c0d95cc51...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (5 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100da42d9812ea31050befea5569427690a350f2902edd267c76b28e3cdad01...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100da42d9812ea31050befea5569427690a350f2902edd267c76b28...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100da42d9812ea31050befea5569427690a350f2902ed...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c99e34625c7c37a1adb6c031aca5eb94e62a01c95b35fbedf70c0547a472...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c99e34625c7c37a1adb6c031aca5eb94e62a01c95b35fbedf70c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100c99e34625c7c37a1adb6c031aca5eb94e62a01c95b...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004fca83eb053757def4c76823c85f9866c406f27f328bcd7fd8ce80bf2439...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201004fca83eb053757def4c76823c85f9866c406f27f328bcd7fd8ce...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201004fca83eb053757def4c76823c85f9866c406f27f32...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d0ab56d52d5dff2025a15076f46c2623bb6cfc239f065ed1c7ca304453a2...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100d0ab56d52d5dff2025a15076f46c2623bb6cfc239f065ed1c7ca...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100d0ab56d52d5dff2025a15076f46c2623bb6cfc239f...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f0cedc167876be6f1f8e43cbf1a8e6c3e632d4edb3abfcbd2bac5541075a...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100f0cedc167876be6f1f8e43cbf1a8e6c3e632d4edb3abfcbd2bac...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100f0cedc167876be6f1f8e43cbf1a8e6c3e632d4edb3...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f756cc131456e689bc292b09c25986e3ef617da87bfcce96c64fc60898f1...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100f756cc131456e689bc292b09c25986e3ef617da87bfcce96c64f...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100f756cc131456e689bc292b09c25986e3ef617da87b...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008ecd58d6712187a53944af00499fee4efdd6de161a3825870e467d5c373d...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201008ecd58d6712187a53944af00499fee4efdd6de161a3825870e46...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 16030101061000010201008ecd58d6712187a53944af00499fee4efdd6de161a...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100126e71a46201de82e01ab84c9fb3d009147d82bada354e31ff4027e3b688...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100126e71a46201de82e01ab84c9fb3d009147d82bada354e31ff40...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100126e71a46201de82e01ab84c9fb3d009147d82bada...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010073fd4feeb31209382c1ac9a1550b3509846c0ca4325521f1c2b1a0182435...
handshake new: [259] 01010173fd4feeb31209382c1ac9a1550b3509846c0ca4325521f1c2b1a01824...
record old: [262] 10000102010073fd4feeb31209382c1ac9a1550b3509846c0ca4325521f1c2b1...
record new: [263] 1000010301010173fd4feeb31209382c1ac9a1550b3509846c0ca4325521f1c2...
client: Original packet: [326] 160301010610000102010073fd4feeb31209382c1ac9a1550b3509846c0ca432...
client: Filtered packet: [327] 16030101071000010301010173fd4feeb31209382c1ac9a1550b3509846c0ca4...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010060576daca2892a568ff3e9797ed89ef0ed43e957281737d1fa0fead54303...
handshake new: [259] 01010160576daca2892a568ff3e9797ed89ef0ed43e957281737d1fa0fead543...
record old: [262] 10000102010060576daca2892a568ff3e9797ed89ef0ed43e957281737d1fa0f...
record new: [263] 1000010301010160576daca2892a568ff3e9797ed89ef0ed43e957281737d1fa...
client: Original packet: [326] 160301010610000102010060576daca2892a568ff3e9797ed89ef0ed43e95728...
client: Filtered packet: [327] 16030101071000010301010160576daca2892a568ff3e9797ed89ef0ed43e957...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100205cfbfb8b9b0b6fe5df79248cff78da4c4861fef5f7eef04ade15651fc0...
handshake new: [259] 010100205cfbfb8b9b0b6fe5df79248cff78da4c4861fef5f7eef04ade15651f...
record old: [262] 100001020100205cfbfb8b9b0b6fe5df79248cff78da4c4861fef5f7eef04ade...
record new: [263] 10000103010100205cfbfb8b9b0b6fe5df79248cff78da4c4861fef5f7eef04a...
client: Original packet: [326] 1603010106100001020100205cfbfb8b9b0b6fe5df79248cff78da4c4861fef5...
client: Filtered packet: [327] 160301010710000103010100205cfbfb8b9b0b6fe5df79248cff78da4c4861fe...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010057bb6d703bb29f97e5b26d66e68702bcb8cca183c5c838b2cced69c53a64...
handshake new: [259] 01010057bb6d703bb29f97e5b26d66e68702bcb8cca183c5c838b2cced69c53a...
record old: [262] 10000102010057bb6d703bb29f97e5b26d66e68702bcb8cca183c5c838b2cced...
record new: [263] 1000010301010057bb6d703bb29f97e5b26d66e68702bcb8cca183c5c838b2cc...
client: Original packet: [326] 160301010610000102010057bb6d703bb29f97e5b26d66e68702bcb8cca183c5...
client: Filtered packet: [327] 16030101071000010301010057bb6d703bb29f97e5b26d66e68702bcb8cca183...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004fba49f2194bc6a2323f0daf987460617293786abd66f762db2ddca224d3...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201004fba49f2194bc6a2323f0daf987460617293786abd66f762db2d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201004fba49f2194bc6a2323f0daf987460617293786abd...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009a073890f0ed42016a610d92d61d30d3e644839e4d536ca9fc53399af07e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201009a073890f0ed42016a610d92d61d30d3e644839e4d536ca9fc53...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201009a073890f0ed42016a610d92d61d30d3e644839e4d...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004142479d71821e008cee7ded9c7b4f7bfa7b8beb95f0fab6aec129a2ef3c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201004142479d71821e008cee7ded9c7b4f7bfa7b8beb95f0fab6aec1...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201004142479d71821e008cee7ded9c7b4f7bfa7b8beb95...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a1d0604a92bf29ca86491bcd81d30abbb24c84df252e10738bcbbf07a437...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100a1d0604a92bf29ca86491bcd81d30abbb24c84df252e10738bcb...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100a1d0604a92bf29ca86491bcd81d30abbb24c84df25...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e0ecbafc5d7bdbbe4d75d97ab7aba19445b1cc786f91c7020bdc7bedc1cc...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100e0ecbafc5d7bdbbe4d75d97ab7aba19445b1cc786f91c7020bdc...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100e0ecbafc5d7bdbbe4d75d97ab7aba19445b1cc786f...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003146c0ad3a40b46b6f236c25eb7ffca71955b8ca2bd9c8b5c705389fffa7...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201003146c0ad3a40b46b6f236c25eb7ffca71955b8ca2bd9c8b5c705...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 16030201061000010201003146c0ad3a40b46b6f236c25eb7ffca71955b8ca2b...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010025d0354ef0f1025d41f3f525acfd24646d133c5942be840ea95a33ba2f29...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010025d0354ef0f1025d41f3f525acfd24646d133c5942be840ea95a...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 160302010610000102010025d0354ef0f1025d41f3f525acfd24646d133c5942...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100607c31efe4c43b931a1bae8ae8ef9d7e32c31ab7f11a47dec5aa8baa07e4...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100607c31efe4c43b931a1bae8ae8ef9d7e32c31ab7f11a47dec5aa...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100607c31efe4c43b931a1bae8ae8ef9d7e32c31ab7f1...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ba5ef8fc16550c2c4140cb17809611457cd22cd86d8d5adcbe1bdfaeb65d...
handshake new: [259] 010101ba5ef8fc16550c2c4140cb17809611457cd22cd86d8d5adcbe1bdfaeb6...
record old: [262] 100001020100ba5ef8fc16550c2c4140cb17809611457cd22cd86d8d5adcbe1b...
record new: [263] 10000103010101ba5ef8fc16550c2c4140cb17809611457cd22cd86d8d5adcbe...
client: Original packet: [342] 1603020106100001020100ba5ef8fc16550c2c4140cb17809611457cd22cd86d...
client: Filtered packet: [343] 160302010710000103010101ba5ef8fc16550c2c4140cb17809611457cd22cd8...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010078f41c28d4dbbeefbbc71f8cf4689684d28b2d432abc9f2a4b6243e1e3b0...
handshake new: [259] 01010178f41c28d4dbbeefbbc71f8cf4689684d28b2d432abc9f2a4b6243e1e3...
record old: [262] 10000102010078f41c28d4dbbeefbbc71f8cf4689684d28b2d432abc9f2a4b62...
record new: [263] 1000010301010178f41c28d4dbbeefbbc71f8cf4689684d28b2d432abc9f2a4b...
client: Original packet: [342] 160302010610000102010078f41c28d4dbbeefbbc71f8cf4689684d28b2d432a...
client: Filtered packet: [343] 16030201071000010301010178f41c28d4dbbeefbbc71f8cf4689684d28b2d43...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005f784478fc74540ab1ff6f67ee60b0620ac16b7645780b4ed6751755d5d5...
handshake new: [259] 0101005f784478fc74540ab1ff6f67ee60b0620ac16b7645780b4ed6751755d5...
record old: [262] 1000010201005f784478fc74540ab1ff6f67ee60b0620ac16b7645780b4ed675...
record new: [263] 100001030101005f784478fc74540ab1ff6f67ee60b0620ac16b7645780b4ed6...
client: Original packet: [342] 16030201061000010201005f784478fc74540ab1ff6f67ee60b0620ac16b7645...
client: Filtered packet: [343] 1603020107100001030101005f784478fc74540ab1ff6f67ee60b0620ac16b76...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e8261294d4a780a08164b5432ade31822f149861bf42a15411d98a4d3083...
handshake new: [259] 010100e8261294d4a780a08164b5432ade31822f149861bf42a15411d98a4d30...
record old: [262] 100001020100e8261294d4a780a08164b5432ade31822f149861bf42a15411d9...
record new: [263] 10000103010100e8261294d4a780a08164b5432ade31822f149861bf42a15411...
client: Original packet: [342] 1603020106100001020100e8261294d4a780a08164b5432ade31822f149861bf...
client: Filtered packet: [343] 160302010710000103010100e8261294d4a780a08164b5432ade31822f149861...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ac6672a6f1d798204a59b1f332733e2cf936bbedc35f380062b3fe23d5ac...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100ac6672a6f1d798204a59b1f332733e2cf936bbedc35f380062b3...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100ac6672a6f1d798204a59b1f332733e2cf936bbedc3...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b03408ea527e252ee1995483b9b2f1501e6406093dbb5080159bc479e470...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b03408ea527e252ee1995483b9b2f1501e6406093dbb5080159b...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100b03408ea527e252ee1995483b9b2f1501e6406093d...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100190feca786bac77f1268189f29967c4ca80ebb838dc8cd000d0d0df6d1cf...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100190feca786bac77f1268189f29967c4ca80ebb838dc8cd000d0d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100190feca786bac77f1268189f29967c4ca80ebb838d...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100db2f6204cbb5022fb5f4dad8c9d6989ea53342905dd5f2b891d2c16e1fd6...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100db2f6204cbb5022fb5f4dad8c9d6989ea53342905dd5f2b891d2...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100db2f6204cbb5022fb5f4dad8c9d6989ea53342905d...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bc5e69928ca8c232453b3c2b9f644f2f9ae29df84056d22c2eb8858bd383...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100bc5e69928ca8c232453b3c2b9f644f2f9ae29df84056d22c2eb8...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100bc5e69928ca8c232453b3c2b9f644f2f9ae29df840...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100dc1f24c8907f28d2d1e69f9e6b29f9f58a4d62366307c8c070c4d8c8c5a1...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100dc1f24c8907f28d2d1e69f9e6b29f9f58a4d62366307c8c070c4...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100dc1f24c8907f28d2d1e69f9e6b29f9f58a4d623663...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e6351d88ec0031fc840b0f1752a49667f51e2d15e071ccbb86e8b7cc24dd...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100e6351d88ec0031fc840b0f1752a49667f51e2d15e071ccbb86e8...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100e6351d88ec0031fc840b0f1752a49667f51e2d15e0...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010006699c59d2de704eec60a613ccfef92943d70ac3617ae246a2022cd86f32...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010006699c59d2de704eec60a613ccfef92943d70ac3617ae246a202...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 160303010610000102010006699c59d2de704eec60a613ccfef92943d70ac361...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100abf71f8cfacbe87dcea9883c186100164a03bbef8c438b208529431bccf4...
handshake new: [259] 010101abf71f8cfacbe87dcea9883c186100164a03bbef8c438b208529431bcc...
record old: [262] 100001020100abf71f8cfacbe87dcea9883c186100164a03bbef8c438b208529...
record new: [263] 10000103010101abf71f8cfacbe87dcea9883c186100164a03bbef8c438b2085...
client: Original packet: [318] 1603030106100001020100abf71f8cfacbe87dcea9883c186100164a03bbef8c...
client: Filtered packet: [319] 160303010710000103010101abf71f8cfacbe87dcea9883c186100164a03bbef...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d93882c91765d67da854dd1fdd43ebb13be3db0729a475db6a13f8a01355...
handshake new: [259] 010101d93882c91765d67da854dd1fdd43ebb13be3db0729a475db6a13f8a013...
record old: [262] 100001020100d93882c91765d67da854dd1fdd43ebb13be3db0729a475db6a13...
record new: [263] 10000103010101d93882c91765d67da854dd1fdd43ebb13be3db0729a475db6a...
client: Original packet: [318] 1603030106100001020100d93882c91765d67da854dd1fdd43ebb13be3db0729...
client: Filtered packet: [319] 160303010710000103010101d93882c91765d67da854dd1fdd43ebb13be3db07...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f157c4e9baf2a8145a34757f513171611e1d33e696db9dbb06230b3fc4e2...
handshake new: [259] 010100f157c4e9baf2a8145a34757f513171611e1d33e696db9dbb06230b3fc4...
record old: [262] 100001020100f157c4e9baf2a8145a34757f513171611e1d33e696db9dbb0623...
record new: [263] 10000103010100f157c4e9baf2a8145a34757f513171611e1d33e696db9dbb06...
client: Original packet: [318] 1603030106100001020100f157c4e9baf2a8145a34757f513171611e1d33e696...
client: Filtered packet: [319] 160303010710000103010100f157c4e9baf2a8145a34757f513171611e1d33e6...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009a90d4c179ef0475a720ce3050e6a30d29a51a8f8c8c19aefcd2b9ba79b7...
handshake new: [259] 0101009a90d4c179ef0475a720ce3050e6a30d29a51a8f8c8c19aefcd2b9ba79...
record old: [262] 1000010201009a90d4c179ef0475a720ce3050e6a30d29a51a8f8c8c19aefcd2...
record new: [263] 100001030101009a90d4c179ef0475a720ce3050e6a30d29a51a8f8c8c19aefc...
client: Original packet: [318] 16030301061000010201009a90d4c179ef0475a720ce3050e6a30d29a51a8f8c...
client: Filtered packet: [319] 1603030107100001030101009a90d4c179ef0475a720ce3050e6a30d29a51a8f...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (7 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (410 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff9e338d7c88...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff9e338d7c88...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffcaca0b1cb0...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffcaca0b1cb0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb1b9c04562...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb1b9c04562...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffd52493200e...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffd52493200e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff82dbed11ed...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff82dbed11ed...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8056e99d22...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8056e99d22...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff310d75d4b2...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff310d75d4b2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff665c9d6af2...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff665c9d6af2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa5f69fdb5e...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffa5f69fdb5e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff606b887979...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff606b887979...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffa4b1214e48...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffa4b1214e48...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8930e8051c...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff8930e8051c...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefddcd2b6ad17...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefddcd2b6ad17...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1de166e0e9...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1de166e0e9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc8724fe859...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc8724fe859...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd32e1534efe...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd32e1534efe...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd42b22ab9da...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd42b22ab9da...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd6c22bf053...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd6c22bf053...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdac64117d09...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdac64117d09...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdb0d3147102...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdb0d3147102...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd62114005b0...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd62114005b0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf238505c9c...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdf238505c9c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (5 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefddf68dd84c3...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefddf68dd84c3...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf2910c11d5...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdf2910c11d5...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (4 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fcbea2f285ea00093947003ae3a73c6dd2569bc990cfe610faa4b36189ce...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100fcbea2f285ea00093947003ae3a73c6dd256...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100fcbea2f285...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010084b384fd69b793fbc39efd854805a1202e471dd7257f3dcaeec7d2f04905...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010084b384fd69b793fbc39efd854805a1202e47...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010084b384fd69...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c2238c1e418093da16a98e2baa50945c58362c35313437f5ff7daffa7e26...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100c2238c1e418093da16a98e2baa50945c5836...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100c2238c1e41...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010042bd3b6d90115d90540c547e8fcabfb5b15090e68f67260de3a23434ec6a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010042bd3b6d90115d90540c547e8fcabfb5b150...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010042bd3b6d90...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010021d34e5fdee34ce187aaacba8ec0efe04942221ca90c05543839e9baa762...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 100001020001000000000102010021d34e5fdee34ce187aaacba8ec0efe04942...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010021d34e5fde...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009497d6dfff111cccfd7c7c54f7e4dc58120d0e930bfaaecb9517a11e7b21...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201009497d6dfff111cccfd7c7c54f7e4dc58120d...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201009497d6dfff...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100501cb6cbb0cab827803139b896b9aa3e115601e9c7d367e345492e14bec0...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100501cb6cbb0cab827803139b896b9aa3e1156...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100501cb6cbb0...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007558cd8ccf917f38e5581ffc97a2f5d3fe7c118880dd2d1b3ec223992d4e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201007558cd8ccf917f38e5581ffc97a2f5d3fe7c...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201007558cd8ccf...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b2e115614bdbe70bf15180212dc542f5d3056e45ea227b49ffce0d05ff76...
handshake new: [259] 010101b2e115614bdbe70bf15180212dc542f5d3056e45ea227b49ffce0d05ff...
record old: [270] 1000010200010000000001020100b2e115614bdbe70bf15180212dc542f5d305...
record new: [271] 100001030001000000000103010101b2e115614bdbe70bf15180212dc542f5d3...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100b2e115614b...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101b2e11561...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002d528c515debc3848da1d1f34743e602311d860b23b0c2e199903000bc37...
handshake new: [259] 0101012d528c515debc3848da1d1f34743e602311d860b23b0c2e199903000bc...
record old: [270] 10000102000100000000010201002d528c515debc3848da1d1f34743e602311d...
record new: [271] 1000010300010000000001030101012d528c515debc3848da1d1f34743e60231...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201002d528c515d...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101012d528c51...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010090e05b3f600322f96e8f7e4163bd2f8958f79c08d98ad278af7b00ca4eb9...
handshake new: [259] 01010090e05b3f600322f96e8f7e4163bd2f8958f79c08d98ad278af7b00ca4e...
record old: [270] 100001020001000000000102010090e05b3f600322f96e8f7e4163bd2f8958f7...
record new: [271] 10000103000100000000010301010090e05b3f600322f96e8f7e4163bd2f8958...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010090e05b3f60...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010090e05b3f...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e79c6ac7c0c2d9893e260de43eb016094a4d81a3499fd7e63c148bfe4278...
handshake new: [259] 010100e79c6ac7c0c2d9893e260de43eb016094a4d81a3499fd7e63c148bfe42...
record old: [270] 1000010200010000000001020100e79c6ac7c0c2d9893e260de43eb016094a4d...
record new: [271] 100001030001000000000103010100e79c6ac7c0c2d9893e260de43eb016094a...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100e79c6ac7c0...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100e79c6ac7...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a087a5d7b172a84ff34ae369a679c826b388c8b30c312ea638906ae87dbc...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100a087a5d7b172a84ff34ae369a679c826b388...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100a087a5d7b1...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c482c49cf6662c199e02a8dc0bd3d7d074d1e9660736cd0fbcc68a0d9d2a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100c482c49cf6662c199e02a8dc0bd3d7d074d1...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100c482c49cf6...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001dc02a5b97d1413342159948850cdfcafc70780a1be76258ed98ba222d05...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201001dc02a5b97d1413342159948850cdfcafc70...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201001dc02a5b97...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100526e5c4639d23b74e2c6dc3e311b90e552e0cefa29cbd5c47ba308fae9f2...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100526e5c4639d23b74e2c6dc3e311b90e552e0...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100526e5c4639...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005acfce2a9a7a3c52053d23a5c598118cf6c5c8bffc669d557fd54bbd0a9e...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201005acfce2a9a7a3c52053d23a5c598118cf6c5...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201005acfce2a9a...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fe9b27e76863501c4e0eb8edd74e832c076329baa386e3ba81684e8cfc94...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100fe9b27e76863501c4e0eb8edd74e832c0763...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100fe9b27e768...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b430781cbe28528c03f2a7ff8636d29fbab12bea1d3b3e038d005e5517c5...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100b430781cbe28528c03f2a7ff8636d29fbab1...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100b430781cbe...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c21577372a993acc98e2a3b81f2f0732becc3a124b4ad326f18eb1831ee8...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100c21577372a993acc98e2a3b81f2f0732becc...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100c21577372a...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005aeffba75655fd84d521f9771191c4b02379f492584368bed49526fe1ab7...
handshake new: [259] 0101015aeffba75655fd84d521f9771191c4b02379f492584368bed49526fe1a...
record old: [270] 10000102000100000000010201005aeffba75655fd84d521f9771191c4b02379...
record new: [271] 1000010300010000000001030101015aeffba75655fd84d521f9771191c4b023...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201005aeffba756...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101015aeffba7...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ac7dac9185025e5436d7a6c035bd08d956e3d216e7aec29c8ee0f5a5ac3b...
handshake new: [259] 010101ac7dac9185025e5436d7a6c035bd08d956e3d216e7aec29c8ee0f5a5ac...
record old: [270] 1000010200010000000001020100ac7dac9185025e5436d7a6c035bd08d956e3...
record new: [271] 100001030001000000000103010101ac7dac9185025e5436d7a6c035bd08d956...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ac7dac9185...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101ac7dac91...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a172a18598aae232fbbe717d92108548594ec87b6c0fae057c388f60e247...
handshake new: [259] 010100a172a18598aae232fbbe717d92108548594ec87b6c0fae057c388f60e2...
record old: [270] 1000010200010000000001020100a172a18598aae232fbbe717d92108548594e...
record new: [271] 100001030001000000000103010100a172a18598aae232fbbe717d9210854859...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100a172a18598...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100a172a185...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d5e2cf1176e03cf18287cf332e7dfb2924466f01381fd257bd7b14057e62...
handshake new: [259] 010100d5e2cf1176e03cf18287cf332e7dfb2924466f01381fd257bd7b14057e...
record old: [270] 1000010200010000000001020100d5e2cf1176e03cf18287cf332e7dfb292446...
record new: [271] 100001030001000000000103010100d5e2cf1176e03cf18287cf332e7dfb2924...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100d5e2cf1176...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100d5e2cf11...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (7 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (268 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (5 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (4 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (9 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (16 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (13 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (7 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (6 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (6 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (188 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (3 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030159764a63547f4504d05033542506518859ba09acf2499faec1e6...
record new: [89] 02000051030159764a63547f4504d05033542506518859ba09acf2499faec1e6...
server: Original packet: [536] 160301021302000051030159764a63547f4504d05033542506518859ba09acf2...
server: Filtered packet: [94] 160301005902000051030159764a63547f4504d05033542506518859ba09acf2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301aa53fc9a188e6926ad350dd8bb1797a30dcb64558ed64601f223...
record new: [265] 020000570301aa53fc9a188e6926ad350dd8bb1797a30dcb64558ed64601f223...
server: Original packet: [712] 16030102c3020000570301aa53fc9a188e6926ad350dd8bb1797a30dcb64558e...
server: Filtered packet: [270] 1603010109020000570301aa53fc9a188e6926ad350dd8bb1797a30dcb64558e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301b0d594d3b49aa91308df9ac69ebad9a0f6363980e37d0e042405...
record new: [265] 020000570301b0d594d3b49aa91308df9ac69ebad9a0f6363980e37d0e042405...
server: Original packet: [712] 16030102c3020000570301b0d594d3b49aa91308df9ac69ebad9a0f6363980e3...
server: Filtered packet: [270] 1603010109020000570301b0d594d3b49aa91308df9ac69ebad9a0f6363980e3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 020000570301a2e6c4c99b095fb80ed34f08bc81c4c60c4d288487056c6d2c69...
record new: [207] 020000570301a2e6c4c99b095fb80ed34f08bc81c4c60c4d288487056c6d2c69...
server: Original packet: [528] 160301020b020000570301a2e6c4c99b095fb80ed34f08bc81c4c60c4d288487...
server: Filtered packet: [212] 16030100cf020000570301a2e6c4c99b095fb80ed34f08bc81c4c60c4d288487...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (1 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570301b7bb1bb10a0b144e533d92463c094ff28088cb4dab09616f0195...
record new: [537] 020000570301b7bb1bb10a0b144e533d92463c094ff28088cb4dab09616f0195...
server: Original packet: [712] 16030102c3020000570301b7bb1bb10a0b144e533d92463c094ff28088cb4dab...
server: Filtered packet: [542] 1603010219020000570301b7bb1bb10a0b144e533d92463c094ff28088cb4dab...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 0200005703016ec790a54fc0954b7665fcdf584cbf9fab568b13ccf3fc936bb9...
record new: [411] 0200005703016ec790a54fc0954b7665fcdf584cbf9fab568b13ccf3fc936bb9...
server: Original packet: [530] 160301020d0200005703016ec790a54fc0954b7665fcdf584cbf9fab568b13cc...
server: Filtered packet: [416] 160301019b0200005703016ec790a54fc0954b7665fcdf584cbf9fab568b13cc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (2 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703017067c138c03ea7e42d7237b8529c2d4292bc84e6901becfc32e2...
record new: [265] 0200005703017067c138c03ea7e42d7237b8529c2d4292bc84e6901becfc32e2...
Dropping handshake: 12
record old: [265] 0200005703017067c138c03ea7e42d7237b8529c2d4292bc84e6901becfc32e2...
record new: [95] 0200005703017067c138c03ea7e42d7237b8529c2d4292bc84e6901becfc32e2...
server: Original packet: [712] 16030102c30200005703017067c138c03ea7e42d7237b8529c2d4292bc84e690...
server: Filtered packet: [100] 160301005f0200005703017067c138c03ea7e42d7237b8529c2d4292bc84e690...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (3 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703011704bd3650825dac7b79763a8bdd8895b35d42747eccc96a2111...
record new: [207] 0200005703011704bd3650825dac7b79763a8bdd8895b35d42747eccc96a2111...
Dropping handshake: 12
record old: [207] 0200005703011704bd3650825dac7b79763a8bdd8895b35d42747eccc96a2111...
record new: [95] 0200005703011704bd3650825dac7b79763a8bdd8895b35d42747eccc96a2111...
server: Original packet: [528] 160301020b0200005703011704bd3650825dac7b79763a8bdd8895b35d42747e...
server: Filtered packet: [100] 160301005f0200005703011704bd3650825dac7b79763a8bdd8895b35d42747e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (2 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (22 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103020f91856b6d80b55ccf75265523acb24bd0df3e8caa194fd97c99...
record new: [89] 0200005103020f91856b6d80b55ccf75265523acb24bd0df3e8caa194fd97c99...
server: Original packet: [536] 16030202130200005103020f91856b6d80b55ccf75265523acb24bd0df3e8caa...
server: Filtered packet: [94] 16030200590200005103020f91856b6d80b55ccf75265523acb24bd0df3e8caa...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030335034bc4500261883d97fd3cd2ccb11c2ff9cb495f7f77b3e354...
record new: [89] 02000051030335034bc4500261883d97fd3cd2ccb11c2ff9cb495f7f77b3e354...
server: Original packet: [536] 160303021302000051030335034bc4500261883d97fd3cd2ccb11c2ff9cb495f...
server: Filtered packet: [94] 160303005902000051030335034bc4500261883d97fd3cd2ccb11c2ff9cb495f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feff6d0fefb120...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feff6d0fefb120...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefd50adfbf699...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefd50adfbf699...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703022390cc2cfa8deffaf8dd759d0b762d4da7d8e9e786d8e53eccc9...
record new: [265] 0200005703022390cc2cfa8deffaf8dd759d0b762d4da7d8e9e786d8e53eccc9...
server: Original packet: [712] 16030202c30200005703022390cc2cfa8deffaf8dd759d0b762d4da7d8e9e786...
server: Filtered packet: [270] 16030201090200005703022390cc2cfa8deffaf8dd759d0b762d4da7d8e9e786...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 02000057030371d3f29179ab33ef072b93dc6cec29dde293c17f500b17290299...
record new: [267] 02000057030371d3f29179ab33ef072b93dc6cec29dde293c17f500b17290299...
server: Original packet: [714] 16030302c502000057030371d3f29179ab33ef072b93dc6cec29dde293c17f50...
server: Filtered packet: [272] 160303010b02000057030371d3f29179ab33ef072b93dc6cec29dde293c17f50...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [178] 0c0000a600010000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffba24eab84a...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feffba24eab84a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [180] 0c0000a800010000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdee6fcf9017...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdee6fcf9017...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703021af4901978cb60f7034b045240e500cb4dd63615b6743a121e37...
record new: [265] 0200005703021af4901978cb60f7034b045240e500cb4dd63615b6743a121e37...
server: Original packet: [712] 16030202c30200005703021af4901978cb60f7034b045240e500cb4dd63615b6...
server: Filtered packet: [270] 16030201090200005703021af4901978cb60f7034b045240e500cb4dd63615b6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703032bcd618f0e885d963fb98723833dc1f44e008dfc5465a6597759...
record new: [267] 0200005703032bcd618f0e885d963fb98723833dc1f44e008dfc5465a6597759...
server: Original packet: [714] 16030302c50200005703032bcd618f0e885d963fb98723833dc1f44e008dfc54...
server: Filtered packet: [272] 160303010b0200005703032bcd618f0e885d963fb98723833dc1f44e008dfc54...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [178] 0c0000a600010000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff25d22b66ac...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff25d22b66ac...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [180] 0c0000a800010000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdf85109cb48...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdf85109cb48...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 0200005703029764b6b8934dea084a0756a8fc6896d0114cd9e77821cd0c05aa...
record new: [209] 0200005703029764b6b8934dea084a0756a8fc6896d0114cd9e77821cd0c05aa...
server: Original packet: [530] 160302020d0200005703029764b6b8934dea084a0756a8fc6896d0114cd9e778...
server: Filtered packet: [214] 16030200d10200005703029764b6b8934dea084a0756a8fc6896d0114cd9e778...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [527] 020000570303238e9d93dce7de7b79281fa301e92c64bed0906540131fafe5ec...
record new: [211] 020000570303238e9d93dce7de7b79281fa301e92c64bed0906540131fafe5ec...
server: Original packet: [532] 160303020f020000570303238e9d93dce7de7b79281fa301e92c64bed0906540...
server: Filtered packet: [216] 16030300d3020000570303238e9d93dce7de7b79281fa301e92c64bed0906540...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [120] 0c00006c000200000000006c03001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [120] 0c00006c000100000000006c03001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [607] 16feff00000000000000000063020000570000000000000057feff68ce2e1a08...
server: Filtered packet: [283] 16feff00000000000000000063020000570000000000000057feff68ce2e1a08...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [123] 0c00006f000100000000006f03001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefd55995cdd27...
server: Filtered packet: [286] 16fefd00000000000000000063020000570000000000000057fefd55995cdd27...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 02000057030298a7cd1a10b87c617d8740708aaac1825dd4da47fce764fab0d7...
record new: [537] 02000057030298a7cd1a10b87c617d8740708aaac1825dd4da47fce764fab0d7...
server: Original packet: [712] 16030202c302000057030298a7cd1a10b87c617d8740708aaac1825dd4da47fc...
server: Filtered packet: [542] 160302021902000057030298a7cd1a10b87c617d8740708aaac1825dd4da47fc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 0200005703032bdd252db71b3f829391f5aff7bca4c5a4382c5c26a6a59a2af5...
record new: [537] 0200005703032bdd252db71b3f829391f5aff7bca4c5a4382c5c26a6a59a2af5...
server: Original packet: [714] 16030302c50200005703032bdd252db71b3f829391f5aff7bca4c5a4382c5c26...
server: Filtered packet: [542] 16030302190200005703032bdd252db71b3f829391f5aff7bca4c5a4382c5c26...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff5f6717597d...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff5f6717597d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd9135214217...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefd9135214217...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 0200005703023e1d669a24d5f5adaac118f949c44db8f8506fd81bc05338acdf...
record new: [411] 0200005703023e1d669a24d5f5adaac118f949c44db8f8506fd81bc05338acdf...
server: Original packet: [529] 160302020c0200005703023e1d669a24d5f5adaac118f949c44db8f8506fd81b...
server: Filtered packet: [416] 160302019b0200005703023e1d669a24d5f5adaac118f949c44db8f8506fd81b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 0200005703035a02c7c422746ecb6213ece74e64173045e1449920479d14501c...
record new: [411] 0200005703035a02c7c422746ecb6213ece74e64173045e1449920479d14501c...
server: Original packet: [530] 160303020d0200005703035a02c7c422746ecb6213ece74e64173045e1449920...
server: Filtered packet: [416] 160303019b0200005703035a02c7c422746ecb6213ece74e64173045e1449920...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feff198c86f088...
server: Filtered packet: [487] 16feff00000000000000000063020000570000000000000057feff198c86f088...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [124] 0c000070000200000000007003001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd2001593ce9...
server: Filtered packet: [487] 16fefd00000000000000000063020000570000000000000057fefd2001593ce9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302e9c88446599c6e33158e4aaf1b2d3302169f67cf71dab06a022f...
record new: [265] 020000570302e9c88446599c6e33158e4aaf1b2d3302169f67cf71dab06a022f...
Dropping handshake: 12
record old: [265] 020000570302e9c88446599c6e33158e4aaf1b2d3302169f67cf71dab06a022f...
record new: [95] 020000570302e9c88446599c6e33158e4aaf1b2d3302169f67cf71dab06a022f...
server: Original packet: [712] 16030202c3020000570302e9c88446599c6e33158e4aaf1b2d3302169f67cf71...
server: Filtered packet: [100] 160302005f020000570302e9c88446599c6e33158e4aaf1b2d3302169f67cf71...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303f47d469916bdb52f8fa6d0496fe79609e7ff930b206b742d78ca...
record new: [267] 020000570303f47d469916bdb52f8fa6d0496fe79609e7ff930b206b742d78ca...
Dropping handshake: 12
record old: [267] 020000570303f47d469916bdb52f8fa6d0496fe79609e7ff930b206b742d78ca...
record new: [95] 020000570303f47d469916bdb52f8fa6d0496fe79609e7ff930b206b742d78ca...
server: Original packet: [714] 16030302c5020000570303f47d469916bdb52f8fa6d0496fe79609e7ff930b20...
server: Filtered packet: [100] 160303005f020000570303f47d469916bdb52f8fa6d0496fe79609e7ff930b20...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (3 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [178] 0c0000a600010000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffab04d5dad3...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feffab04d5dad3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [180] 0c0000a800010000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd43ccbdb96a...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd43ccbdb96a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 02000057030243d798bd213089dbec575236be62e1e9abfdd9163b5fea950f1d...
record new: [208] 02000057030243d798bd213089dbec575236be62e1e9abfdd9163b5fea950f1d...
Dropping handshake: 12
record old: [208] 02000057030243d798bd213089dbec575236be62e1e9abfdd9163b5fea950f1d...
record new: [95] 02000057030243d798bd213089dbec575236be62e1e9abfdd9163b5fea950f1d...
server: Original packet: [529] 160302020c02000057030243d798bd213089dbec575236be62e1e9abfdd9163b...
server: Filtered packet: [100] 160302005f02000057030243d798bd213089dbec575236be62e1e9abfdd9163b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 0200005703032142af8d40d6a5a2ee115f350c7661d39b06a1ead3a45bd18813...
record new: [210] 0200005703032142af8d40d6a5a2ee115f350c7661d39b06a1ead3a45bd18813...
Dropping handshake: 12
record old: [210] 0200005703032142af8d40d6a5a2ee115f350c7661d39b06a1ead3a45bd18813...
record new: [95] 0200005703032142af8d40d6a5a2ee115f350c7661d39b06a1ead3a45bd18813...
server: Original packet: [531] 160303020e0200005703032142af8d40d6a5a2ee115f350c7661d39b06a1ead3...
server: Filtered packet: [100] 160303005f0200005703032142af8d40d6a5a2ee115f350c7661d39b06a1ead3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (1 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [120] 0c00006c000200000000006c03001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [120] 0c00006c000100000000006c03001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [120] 0c00006c000100000000006c03001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [607] 16feff00000000000000000063020000570000000000000057fefffcec789e03...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057fefffcec789e03...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (2 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [122] 0c00006e000100000000006e03001d20ac92c8ad5e02730f664d45ba844fa429...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [122] 0c00006e000100000000006e03001d20ac92c8ad5e02730f664d45ba844fa429...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefd944a2fdc1d...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd944a2fdc1d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (2 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (90 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (0 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (5275 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #8598: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #8599: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8600: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8601: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8602: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8603: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8604: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8605: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8606: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8607: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8608: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8609: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8610: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8611: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8612: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8613: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8614: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8615: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8616: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8617: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8618: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8619: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8620: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8621: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8622: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8623: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8624: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8625: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8626: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8627: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8628: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8629: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8630: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8631: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8632: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8633: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8634: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8635: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8636: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8637: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8638: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8639: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8640: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8641: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8642: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8643: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8644: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8645: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8646: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8647: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8648: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8649: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8650: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8651: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8652: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8653: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8654: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8655: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8656: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8657: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8658: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8659: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8660: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8661: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8662: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8663: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8664: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8665: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8666: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8667: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8668: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8669: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8670: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8671: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8672: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8673: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8674: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8675: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8676: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8677: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8678: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8679: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8680: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8681: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8682: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8683: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8684: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8685: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8686: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8687: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8688: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8689: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8690: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8691: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8692: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8693: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8694: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8695: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8696: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8697: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8698: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8699: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8700: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8701: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8702: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8703: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8704: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8705: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8706: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8707: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8708: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8709: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8710: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8711: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8712: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8713: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8714: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8715: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8716: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8717: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8718: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8719: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8720: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8721: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8722: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8723: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8724: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8725: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8726: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8727: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8728: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8729: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8730: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8731: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8732: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8733: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8734: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8735: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8736: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8737: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8738: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8739: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8740: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8741: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8742: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8743: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8744: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8745: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8746: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8747: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8748: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8749: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8750: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8751: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8752: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8753: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8754: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8755: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8756: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8757: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8758: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8759: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8760: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8761: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8762: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8763: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8764: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8765: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8766: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8767: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8768: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8769: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8770: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8771: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8772: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8773: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8774: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8775: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8776: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8777: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8778: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8779: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8780: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8781: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8782: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8783: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8784: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8785: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8786: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8787: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8788: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8789: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8790: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8791: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8792: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8793: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8794: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8795: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8796: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8797: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8798: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8799: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8800: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8801: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8802: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8803: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8804: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8805: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8806: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8807: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8808: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8809: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8810: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8811: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8812: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8813: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8814: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8815: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8816: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8817: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8818: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8819: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8820: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8821: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8822: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8823: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8824: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8825: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8826: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8827: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8828: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8829: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8830: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8831: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8832: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8833: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8834: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8835: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8836: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8837: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8838: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8839: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8840: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8841: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8842: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8843: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8844: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8845: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8846: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8847: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8848: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8849: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8850: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8851: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8852: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8853: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8854: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8855: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8856: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8857: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8858: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8859: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8860: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8861: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8862: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8863: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8864: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8865: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8866: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8867: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8868: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8869: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8870: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8871: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8872: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8873: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8874: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8875: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8876: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8877: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8878: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8879: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8880: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8881: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8882: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8883: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8884: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8885: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8886: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8887: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8888: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8889: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8890: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8891: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8892: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8893: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8894: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8895: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8896: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8897: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8898: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8899: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8900: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8901: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8902: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8903: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8904: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8905: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8906: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8907: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8908: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8909: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8910: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8911: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8912: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8913: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8914: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8915: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8916: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8917: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8918: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8919: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8920: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8921: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8922: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8923: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8924: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8925: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8926: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8927: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8928: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8929: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8930: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8931: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8932: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8933: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8934: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8935: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8936: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8937: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8938: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8939: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8940: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8941: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8942: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8943: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8944: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8945: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8946: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8947: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8948: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8949: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8950: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8951: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8952: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8953: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8954: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8955: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8956: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8957: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8958: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8959: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8960: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8961: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8962: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8963: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8964: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8965: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8966: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8967: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8968: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8969: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8970: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8971: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8972: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8973: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8974: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8975: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8976: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8977: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8978: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8979: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8980: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8981: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8982: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8983: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8984: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8985: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8986: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8987: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8988: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8989: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8990: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8991: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8992: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8993: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8994: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8995: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8996: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8997: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8998: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8999: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9000: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9001: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9002: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9003: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #9004: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9005: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9006: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9007: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #9008: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9009: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9010: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9011: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #9012: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9013: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9014: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9015: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9016: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9017: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9018: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9019: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #9020: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9021: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9022: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9023: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #9024: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9025: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9026: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9027: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #9028: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9029: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9030: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9031: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9032: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9033: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9034: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9035: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9036: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9037: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9038: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9039: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9040: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9041: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9042: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9043: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9044: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9045: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9046: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9047: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9048: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9049: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9050: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9051: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9052: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9053: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9054: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9055: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9056: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9057: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9058: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9059: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9060: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9061: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9062: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9063: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9064: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9065: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9066: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9067: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9068: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9069: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9070: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9071: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9072: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9073: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9074: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9075: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9076: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9077: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9078: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9079: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9080: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9081: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9082: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9083: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9084: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9085: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9086: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9087: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9088: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9089: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9090: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9091: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9092: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9093: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9094: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9095: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9096: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9097: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9098: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9099: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9100: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9101: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9102: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9103: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9104: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9105: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9106: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9107: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9108: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9109: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9110: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9111: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9112: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9113: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9114: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9115: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9116: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9117: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9118: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9119: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9120: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9121: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9122: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9123: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9124: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9125: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9126: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9127: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9128: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9129: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9130: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9131: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #9132: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9133: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #9134: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9135: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9136: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9137: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9138: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9139: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #9140: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #9141: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #9142: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #9143: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #9144: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #9145: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #9146: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #9147: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #9148: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #9149: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #9150: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #9151: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9152: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9153: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9154: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9155: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9156: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9157: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9158: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9159: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9160: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9161: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9162: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9163: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9164: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9165: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9166: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9167: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9168: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9169: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9170: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9171: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9172: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9173: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9174: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9175: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #9176: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #9177: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #9178: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #9179: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #9180: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #9181: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #9182: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #9183: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #9184: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #9185: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #9186: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #9187: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9188: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9189: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9190: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9191: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9192: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9193: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9194: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9195: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9196: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9197: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9198: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9199: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9200: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9201: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9202: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9203: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9204: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9205: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9206: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9207: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9208: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9209: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9210: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9211: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9212: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9213: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9214: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9215: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9216: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9217: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9218: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9219: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9220: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9221: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9222: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9223: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9224: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9225: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9226: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9227: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9228: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9229: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9230: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9231: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9232: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9233: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9234: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9235: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9236: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9237: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9238: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9239: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9240: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9241: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9242: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9243: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9244: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9245: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9246: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9247: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9248: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9249: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9250: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9251: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9252: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9253: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9254: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9255: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9256: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9257: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9258: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9259: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #9260: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #9261: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9262: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9263: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9264: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9265: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9266: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9267: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9268: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9269: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9270: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9271: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9272: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9273: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9274: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9275: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9276: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9277: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #9278: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #9279: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #9280: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #9281: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #9282: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #9283: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #9284: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #9285: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #9286: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #9287: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #9288: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #9289: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #9290: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #9291: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #9292: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #9293: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #9294: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #9295: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #9296: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #9297: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #9298: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #9299: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #9300: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #9301: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #9302: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #9303: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #9304: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #9305: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #9306: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #9307: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #9308: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #9309: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #9310: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #9311: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #9312: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #9313: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #9314: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #9315: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #9316: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #9317: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #9318: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #9319: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #9320: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #9321: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #9322: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #9323: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #9324: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #9325: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #9326: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #9327: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #9328: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #9329: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #9330: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #9331: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #9332: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #9333: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #9334: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #9335: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #9336: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #9337: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #9338: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #9339: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #9340: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #9341: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #9342: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #9343: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #9344: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #9345: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #9346: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #9347: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #9348: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #9349: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #9350: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #9351: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #9352: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #9353: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #9354: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #9355: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #9356: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #9357: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #9358: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #9359: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #9360: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #9361: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #9362: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #9363: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #9364: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #9365: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9366: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9367: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9368: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9369: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9370: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9371: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9372: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9373: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9374: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9375: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9376: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9377: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9378: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9379: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9380: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9381: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9382: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9383: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9384: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9385: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9386: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9387: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9388: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9389: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9390: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9391: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9392: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9393: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9394: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9395: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9396: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9397: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9398: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9399: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9400: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9401: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9402: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9403: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9404: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9405: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #9406: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #9407: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #9408: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #9409: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #9410: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #9411: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #9412: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #9413: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #9414: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Wed Aug 23 12:35:28 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Wed Aug 23 12:35:29 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #9415: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #9416: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #9417: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #9418: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #9419: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #9420: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #9421: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #9422: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #9423: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #9424: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #9425: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #9426: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #9427: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #9428: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #9429: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #9430: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #9431: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #9432: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Wed Aug 23 12:36:04 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed Aug 23 12:36:04 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9433: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f7:bc:e6:f0:38:66:34:45:71:1d:a9:ea:22:c1:f8:f4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9434: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9435: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9436: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9437: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c5:04:d2:e2:02:21:38:63:1a:6e:9e:9a:12:27:5c:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:09 2017
            Not After : Tue Aug 23 12:18:09 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:d2:9c:dc:fe:9a:f4:0a:ce:6d:fd:ca:12:5b:e1:
                    d3:04:b6:12:99:54:e8:43:bb:e0:1a:45:39:3d:4f:fc:
                    48:18:90:66:90:f1:27:b6:ab:76:60:44:a3:23:7a:4d:
                    29:87:65:81:d5:e2:0a:49:12:70:e1:11:db:cc:0c:8d:
                    6d:db:b8:00:92:30:50:3d:6b:4a:61:0e:fe:db:99:96:
                    59:f8:62:78:80:ab:60:c9:47:99:8e:dc:c2:25:b7:48:
                    1b:b5:ff:1d:1b:2b:65:8c:73:f9:d7:26:3d:57:50:b9:
                    d2:d4:a0:ea:9f:a3:81:a1:86:e0:36:49:0c:69:13:22:
                    4c:00:96:3b:30
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:41:27:37:4d:6b:9b:54:9b:fe:45:ce:da:
        4c:13:8d:39:6e:27:51:d3:69:42:6e:31:03:f2:bc:9c:
        08:e9:6d:f0:89:a3:da:93:40:fb:31:47:d8:72:d7:be:
        c3:47:06:f4:a8:12:54:b0:f6:05:9d:98:44:1c:e5:0f:
        8a:3b:0f:f8:b0:37:02:42:00:8f:97:d0:01:c9:dc:74:
        04:5f:d2:1f:9f:80:03:ad:aa:69:74:f5:08:18:f6:c7:
        60:e4:3e:47:3f:cf:f4:28:56:3e:a7:81:fb:72:df:dc:
        71:99:30:16:e7:d4:63:e4:7c:cf:25:d4:51:c3:cf:6e:
        d6:13:bb:9a:52:d8:f8:02:5d:d3
    Fingerprint (SHA-256):
        58:A1:2F:69:CE:57:83:44:CD:E0:A4:77:C0:14:40:10:66:F1:E9:FA:D6:DF:22:78:05:BB:22:F5:96:0D:13:BD
    Fingerprint (SHA1):
        96:D2:6D:90:88:5C:4D:72:B6:AD:0F:45:8A:DF:54:81:19:88:FF:03
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:b9:e1:51:4a:b9:d1:6c:73:d0:5e:08:13:76:d0:a3:
                    20:00:5f:d8:6f:1c:a0:7a:d2:6f:24:e3:c7:09:19:3e:
                    ef:b6:c8:f3:77:65:4b:99:61:ef:bb:fa:81:42:37:50:
                    72:d9:43:f7:6c:6b:aa:ba:40:1b:0c:de:f0:e9:ca:90:
                    57:70:30:97:df:06:24:0d:6c:f3:bd:79:1a:f3:85:e1:
                    fb:30:80:43:9d:8e:ab:0d:7e:52:c2:23:80:d2:b3:07:
                    84
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:34:d3:4e:6f:b1:df:bf:4f:cf:dc:
        79:ff:39:33:b0:85:45:b6:16:11:e0:df:a2:95:99:8c:
        78:17:b1:c1:d0:95:41:4e:02:ed:31:05:38:80:13:ff:
        ae:6e:cd:2d:be:be:96:72:16:52:b6:68:cf:7e:c6:0c:
        14:cf:20:3c:41:6f:2f:02:42:01:0a:3e:4f:11:99:a6:
        cf:b5:fa:c9:da:0b:3f:19:48:c3:f2:fc:37:f2:37:18:
        19:db:9b:70:69:9e:fe:04:99:d8:74:b8:c9:a2:b1:c9:
        0a:b7:86:b3:8f:65:7a:bd:bc:a6:45:ae:33:a5:f5:f6:
        80:86:f0:66:81:36:3f:b7:fc:ff:77
    Fingerprint (SHA-256):
        EC:E9:0D:17:FA:4A:89:20:6A:00:C4:DC:46:7F:11:6D:7E:0A:96:C7:2A:D1:68:E3:DC:E7:10:11:07:2C:BF:FA
    Fingerprint (SHA1):
        5A:92:C1:BB:7A:C4:DC:96:C3:12:EB:3F:DB:31:9D:F2:BF:F3:6B:7E
    Friendly Name: Alice-ec
tools.sh: #9438: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9439: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                b5:54:08:53:55:86:7d:b9:f0:7f:3c:18:d3:66:f8:aa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9440: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9441: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9442: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                f5:b4:28:dd:38:a1:99:88:f6:35:cc:f9:36:1e:ad:e8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9443: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9444: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9445: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                00:5b:52:25:0f:e3:ff:40:55:93:00:d2:fc:66:da:c9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9446: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9447: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9448: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                31:3b:c2:e0:fd:a5:d6:7c:f9:bc:3e:33:52:62:63:c0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9449: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9450: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9451: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0c:86:e8:6b:63:12:b3:f2:10:8e:0c:b4:93:bc:4c:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9452: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9453: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9454: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0e:07:88:ab:c1:e9:ff:35:d8:f8:0b:c1:f2:c7:11:7a
            Iteration Count: 2000 (0x7d0)
tools.sh: #9455: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9456: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9457: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                26:05:a3:62:23:1d:5a:e6:e7:3f:35:a2:bf:72:14:30
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9458: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9459: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9460: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e2:c1:9a:fe:d4:0c:ff:6d:0a:78:8e:bb:45:e4:c6:fa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9461: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9462: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9463: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8f:3a:c9:8c:d9:6d:71:22:13:f7:1f:c1:ed:ef:92:8e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9464: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9465: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9466: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2e:6a:2c:8b:3e:22:51:5b:63:c4:82:d9:f1:61:72:4b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9467: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9468: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9469: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                04:b5:cf:71:07:99:ec:5a:24:96:93:14:58:a0:6b:24
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9470: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9471: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9472: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b0:60:f1:7a:f0:06:1e:50:de:57:91:65:c6:de:45:86
            Iteration Count: 2000 (0x7d0)
tools.sh: #9473: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9474: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9475: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        18:99:db:56:78:36:4b:d1:e5:73:ea:1f:a7:60:92:de
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:bb:1b:e7:1c:7b:80:ab:b6:15:b1:ba:86:96:87:
                    01:7f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9476: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9477: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9478: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4b:14:87:36:6d:62:b0:d8:a6:81:a6:f6:90:d8:2d:a0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:5a:15:d9:37:d1:e3:34:b2:94:3b:22:28:9c:57:
                    8d:0b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9479: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9480: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9481: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8f:15:f6:77:e9:fb:6a:85:79:5b:75:40:6e:ff:d6:b5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:3c:02:e9:02:0d:5d:c0:94:92:00:95:61:b9:ae:
                    07:d2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9482: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9483: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9484: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        34:20:a9:a4:52:94:09:82:87:4b:7c:40:eb:bb:84:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:52:92:5a:3e:25:6a:eb:5c:ad:b6:55:35:73:72:
                    5c:ee
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9485: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9486: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9487: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        18:b6:87:e4:15:16:8f:93:ca:6f:89:99:29:36:28:80
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:87:2b:38:88:c9:03:55:c9:64:52:30:2a:49:5d:
                    ba:54
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9488: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9489: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9490: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0d:3d:fe:29:a8:58:ed:8c:ff:56:94:00:bb:29:a1:16
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:cd:6a:28:45:fa:3b:3a:35:cd:90:4c:61:25:70:
                    e1:5c
tools.sh: #9491: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9492: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9493: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7c:37:07:48:0e:98:9f:b9:c7:cf:96:3b:23:cb:56:ec
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:1c:8b:26:6b:2d:b5:79:ea:c2:16:d4:38:e6:ca:
                    17:2b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9494: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9495: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9496: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        90:69:56:9f:29:c6:e6:72:83:58:8b:ed:32:cf:d4:b8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:3c:07:26:d8:fb:aa:9d:bf:f8:31:42:d9:58:ac:
                    d4:61
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9497: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9498: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9499: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        55:db:b0:e5:1b:67:2a:eb:c3:75:45:69:87:9e:d9:ba
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:01:c5:11:89:f5:94:22:57:77:ff:ba:49:1c:ce:
                    8e:01
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9500: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9501: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9502: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        73:37:9f:90:54:03:ba:a2:c0:59:52:9e:12:5e:b9:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:b9:78:03:5c:c6:0b:24:91:47:48:9b:58:58:eb:
                    f9:19
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9503: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9504: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9505: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        30:6e:a0:22:b7:64:f4:69:34:96:44:4d:31:6f:51:81
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:1f:d5:6d:7c:61:bf:f7:e9:00:22:bf:3c:d6:41:
                    18:e0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9506: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9507: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9508: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6d:84:c9:1c:dd:9d:bc:e5:13:6e:ef:df:fc:21:43:96
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:43:84:e0:4b:03:d5:41:ac:43:85:7f:78:43:f9:
                    e7:fb
tools.sh: #9509: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9510: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9511: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6b:17:de:6f:bf:23:40:db:b9:68:11:02:37:b8:7d:67
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b3:90:8d:8b:05:1e:61:e8:ae:2c:91:11:21:44:
                    8a:90
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9512: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9513: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9514: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        77:91:35:4f:d5:f2:30:c4:c5:4d:f2:f7:c7:71:26:93
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:fa:b2:5a:13:4e:56:60:e2:aa:e8:5d:8e:ba:82:
                    91:c2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9515: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9516: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9517: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b4:96:58:67:fa:d7:7e:c8:98:41:fa:ec:18:68:22:df
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:35:34:af:6c:af:67:f3:29:cb:d5:7f:50:4b:84:
                    94:8f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9518: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9519: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9520: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        56:42:85:0a:b3:36:61:12:f5:84:aa:69:46:89:df:73
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:c3:c1:6c:56:ad:2c:be:17:f0:45:b7:c2:6b:4f:
                    55:db
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9521: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9522: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9523: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f7:bf:f5:2b:69:85:f0:f4:fe:46:cb:64:ed:e7:c5:34
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:00:5e:1d:03:1e:43:0f:a8:e3:da:72:38:0c:65:
                    38:c4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9524: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9525: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9526: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b6:c7:3a:15:a8:a8:65:00:68:b1:92:9d:58:de:30:af
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b8:8a:a8:fd:ad:aa:76:55:38:e7:1d:49:ac:3f:
                    7b:0f
tools.sh: #9527: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9528: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9529: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        52:75:55:b5:30:ce:86:08:39:33:26:bb:14:05:5d:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:ec:06:5b:c1:a2:3d:94:d1:2e:c8:3f:a0:92:65:
                    d3:af
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9530: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9531: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9532: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5f:03:e3:5c:39:75:5a:48:db:a1:50:a6:11:5c:1b:19
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:80:fd:ce:8f:d9:cb:81:24:03:bf:d0:7e:ef:3e:
                    7e:1b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9533: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9534: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9535: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8c:0a:f5:1c:0b:42:20:35:c9:2a:c5:22:4f:f8:3f:d4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:f0:ff:6b:e8:98:59:fb:73:7e:24:0c:85:a7:8e:
                    de:52
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9536: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9537: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9538: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        83:d0:7c:34:70:88:ff:7e:1f:b2:5a:3f:52:b3:41:6c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:32:ec:9e:9c:d9:9a:0f:9e:80:d9:85:c1:2a:9c:
                    b6:2d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9539: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9540: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9541: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        25:85:40:d7:19:72:91:8f:f4:4d:26:0a:02:ef:ed:2b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:30:7a:a6:34:8f:d1:5a:12:20:1d:66:59:b6:f0:
                    9b:05
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9542: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9543: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9544: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        39:fb:a0:70:88:40:b0:0f:d0:9b:22:02:a9:9c:0d:17
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:a1:77:67:34:75:51:c6:f0:bb:eb:11:9e:2d:0a:
                    13:d3
tools.sh: #9545: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9546: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9547: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        90:02:bd:8b:e8:cf:f4:93:5c:b3:1d:db:54:a2:fc:30
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:19:ab:c1:91:2a:11:90:6b:7f:d3:88:ed:c8:40:
                    8b:9e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9548: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9549: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9550: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        34:01:64:2f:db:2a:34:fd:7f:78:92:d3:15:51:3c:6c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:eb:df:88:fa:7f:50:52:0c:fe:07:65:b8:8c:0e:
                    f4:a6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9551: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9552: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9553: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        47:bb:45:6a:96:8e:dd:fe:c0:e2:68:ab:8e:a1:b4:07
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:99:18:d9:39:c7:b2:73:e2:60:34:09:05:92:60:
                    20:b8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9554: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9555: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9556: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        16:6c:df:37:3b:94:ce:52:27:2d:57:43:cd:0c:d5:07
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:01:66:0e:27:1c:40:fb:0a:48:a4:30:b1:e1:bc:
                    77:d0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9557: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9558: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9559: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bf:cf:1d:c7:2c:39:3d:0b:75:7a:73:7b:16:5a:4f:28
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:0d:3b:ee:77:cf:25:7d:26:a4:62:05:a4:e6:61:
                    83:8a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9560: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9561: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9562: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        88:d1:1f:85:f6:3b:45:c5:37:9a:40:d0:1a:0b:97:8e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:2b:b7:e2:24:1c:d0:e3:50:11:3b:54:e8:93:3e:
                    3c:27
tools.sh: #9563: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9564: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9565: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ec:05:d5:64:98:e0:18:43:cb:66:c3:80:24:c3:65:90
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:e5:87:62:7c:dc:95:22:61:1a:48:ea:ba:49:63:
                    71:27
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9566: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9567: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9568: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        13:42:30:6b:82:05:e5:71:de:89:e9:40:3c:f6:73:6d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f3:53:bd:e5:4a:c1:5a:9e:8f:55:38:6e:16:e6:
                    6b:4d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9569: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9570: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9571: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2e:c5:e3:1f:c5:cc:ca:cf:cb:2d:9b:ae:cc:b5:a6:20
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:95:4b:63:07:1d:c0:c5:ff:47:5d:de:56:6b:30:
                    6b:b1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9572: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9573: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9574: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b2:4b:d9:3d:4e:b0:78:65:34:9b:5e:36:c7:ac:34:b8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:64:bc:85:6c:c0:60:10:7a:0a:4f:b0:30:71:c9:
                    73:34
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9575: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9576: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9577: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        47:75:da:43:45:c8:ee:93:1b:fa:cc:8b:8d:bf:d6:ab
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:eb:43:c8:02:4a:ba:9e:99:0c:6f:56:67:5a:03:
                    f7:67
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9578: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9579: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9580: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:3e:3d:a3:03:be:2f:ae:21:75:63:a9:1a:03:17:fa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:77:5c:19:77:61:89:1b:bf:4f:ba:1f:11:08:06:
                    98:99
tools.sh: #9581: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9582: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9583: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ea:a5:9e:a6:50:8a:a2:e8:f2:95:fe:e5:3c:a6:d9:9f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9584: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9585: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9586: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a5:a4:17:39:7c:69:b7:95:aa:2a:9a:b8:5b:88:24:a1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9587: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9588: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9589: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ae:90:80:44:89:04:a3:52:fe:e2:52:de:45:a2:8d:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9592: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                b9:91:1c:bb:24:cd:81:a8:95:4a:e0:0c:5c:e9:47:19
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9593: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9594: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9595: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                40:4c:0d:b7:c7:80:4b:06:5a:73:df:2c:c6:3a:50:19
            Iteration Count: 2000 (0x7d0)
tools.sh: #9596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9598: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b0:f7:4c:35:2f:0b:5f:fa:72:d0:3b:67:ef:68:47:88
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9601: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                10:08:c8:5c:6c:60:ad:2e:9b:6d:d7:0a:14:09:1a:25
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9604: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                4c:a4:d8:a6:5e:ab:fc:63:64:0a:02:8d:51:03:84:76
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9606: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9607: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                79:54:a3:9d:5f:ce:53:b3:57:57:74:03:ee:f6:41:af
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9610: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                bf:d9:6d:5c:c9:76:04:d2:e4:f9:59:a7:ca:7f:4e:69
            Iteration Count: 2000 (0x7d0)
tools.sh: #9611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9613: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                18:d2:d0:21:32:cf:26:23:47:66:20:1e:20:28:74:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9616: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                bc:b5:e0:62:d8:6d:f3:12:34:3a:53:c1:fa:9c:49:74
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9619: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ff:fa:7a:93:2e:0a:0a:71:31:0d:67:f8:87:7c:01:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9621: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9622: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b2:be:1e:3d:63:e4:e0:79:fb:8f:6a:84:01:9e:ad:12
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9625: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                71:7c:19:a2:b9:bb:2f:03:28:01:42:e2:96:0b:43:ad
            Iteration Count: 2000 (0x7d0)
tools.sh: #9626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9627: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9628: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:5c:46:43:2d:3f:09:76:6f:ee:c1:8e:99:b3:e3:f6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9630: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9631: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7c:ff:0b:1a:58:ef:a3:0d:d6:4e:40:01:14:37:09:6b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9633: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9634: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                48:e4:14:0d:e0:7a:ba:d7:55:d4:a9:a7:a6:f8:7f:53
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9636: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9637: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2d:61:b0:0c:0f:d9:64:7d:12:ef:d8:b2:d6:89:b8:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9639: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9640: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9e:26:38:54:94:52:17:21:68:c9:b3:e7:0d:4a:f1:c7
            Iteration Count: 2000 (0x7d0)
tools.sh: #9641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9642: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9643: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d0:be:b1:9b:66:a6:8b:50:07:39:7c:b6:b3:17:1b:e8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9645: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9646: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6e:02:41:b5:f9:60:5e:05:b9:80:f7:14:8d:f4:39:14
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9648: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9649: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9d:72:4e:81:bf:4e:4d:87:23:b0:84:98:53:c3:05:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9651: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9652: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                48:3d:2b:e9:aa:98:dc:17:dd:7e:58:27:9d:93:e4:74
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9654: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9655: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2c:69:3e:40:df:3f:b9:05:ce:71:32:81:69:c8:44:39
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9657: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9658: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ff:c1:39:e7:83:e8:9c:4d:8e:87:4d:76:bb:20:61:1f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9660: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9661: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4d:dc:31:3c:a4:8b:47:82:82:e8:1e:07:2e:24:b7:4f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9663: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9664: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e6:1d:17:d9:41:da:04:92:8f:69:d0:81:cd:3e:4a:b3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9666: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9667: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                03:05:49:f4:61:02:94:35:23:67:7b:b4:83:2f:0f:86
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9669: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9670: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4e:b8:cd:b9:13:86:22:d5:ee:38:f7:db:b2:25:cf:56
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:08 2017
            Not After : Tue Aug 23 12:18:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:59:68:c1:de:40:95:0d:f3:22:a9:b3:2b:e1:de:79:
                    84:4e:80:49:b3:05:92:1a:ec:c0:ad:1d:8a:a1:26:ba:
                    dd:d7:08:d3:ac:8a:4d:b4:20:ae:8f:d3:39:2c:d2:13:
                    20:48:eb:1e:87:b7:98:6f:3d:df:f4:39:d7:60:b6:a9:
                    36:89:ac:ac:da:2c:53:24:78:94:7c:ce:01:3f:e5:10:
                    65:6d:a4:a4:db:fc:24:4f:30:27:f2:18:bf:1a:b1:29:
                    1d:b0:ef:0e:97:76:12:ba:d3:c3:56:2c:c9:e5:d7:1d:
                    14:e5:5a:92:a2:ad:45:ab:9a:85:71:fc:3d:29:82:2f:
                    28:e9:ab:0d:83:91:c4:a3:9b:e5:88:d0:df:c1:e2:0c:
                    82:5c:65:24:46:c0:18:41:ad:22:1e:48:f7:07:78:76:
                    e8:e4:ba:3a:2f:63:a0:31:fd:38:4e:0d:ef:35:9f:ef:
                    20:82:ec:47:ed:19:de:6c:c7:e8:b4:66:47:3c:b9:56:
                    eb:0b:9c:2e:7a:d7:29:e2:8d:a4:8d:c6:2a:46:27:4b:
                    e9:85:9e:d5:3f:95:52:ce:99:5f:47:e3:9e:f1:8b:e9:
                    79:9b:ae:59:ee:04:02:b0:a2:aa:69:b1:73:ca:e4:f5:
                    15:c1:8a:63:1d:3f:80:ef:c3:66:6c:8b:17:90:4a:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:f1:87:2c:ae:1b:2b:1a:77:18:5d:86:2a:7a:39:e0:
        f4:db:f7:c8:3c:a3:40:27:a5:87:27:87:93:25:f5:24:
        5b:86:6e:b2:47:d1:4c:cb:0c:e5:8b:af:6d:3f:35:a7:
        4f:66:99:ec:39:17:fc:eb:31:cf:31:f2:ce:9f:6f:1e:
        8c:89:19:6c:d4:a6:2f:e1:83:57:74:ac:be:e8:c0:51:
        d8:cf:8e:00:d1:61:bb:6b:62:69:da:e2:ae:8c:cf:ce:
        78:c9:03:f3:80:a1:46:7e:80:8f:2d:b1:b5:a2:d0:62:
        b4:31:b1:85:17:56:18:ea:f7:cb:16:7d:8d:76:93:8c:
        70:25:c0:43:64:7b:b9:80:b2:0d:28:7d:1a:0a:1b:42:
        2e:6f:67:2f:18:15:08:40:ff:98:53:90:dc:0f:08:1e:
        ca:d4:ce:bc:fe:95:c9:a8:7b:3b:60:c2:25:95:de:df:
        b4:23:a5:27:b8:34:f3:be:73:9f:f8:f8:f3:00:46:c4:
        ce:7f:f5:01:dd:a2:84:7c:68:df:72:53:9f:b6:a0:81:
        6d:a0:04:a3:ab:a0:9d:91:4f:51:19:39:ff:1e:d1:3c:
        4a:f4:3a:a0:05:0e:ed:f0:b5:3c:bf:ec:14:7a:df:c2:
        22:17:db:82:b0:f4:05:cd:a2:12:d7:60:cc:c8:49:e3
    Fingerprint (SHA-256):
        E7:95:45:53:8E:89:77:8C:47:FD:4F:7E:96:6F:67:64:2F:DF:ED:1C:BC:32:DF:EA:0C:D8:42:29:AF:63:4E:CA
    Fingerprint (SHA1):
        0F:EC:95:AC:27:03:4F:D5:DD:AF:21:65:6F:86:D2:DD:C6:29:5A:7F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:12 2017
            Not After : Tue Aug 23 12:18:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:31:5b:55:87:b7:55:73:a6:98:90:15:12:13:f3:5c:
                    95:e5:3b:32:99:4d:c4:dd:d3:da:8b:45:ef:f4:8a:c1:
                    1a:f3:bb:54:a0:4b:83:99:cc:a2:48:76:fa:a1:72:18:
                    43:fb:87:8d:f0:63:75:26:05:3f:fc:d6:37:f6:38:34:
                    5a:ef:76:87:8d:1f:70:8b:2d:24:47:a8:98:99:48:b1:
                    e5:ce:45:53:37:0e:8d:fb:c8:b3:78:a6:e2:8c:d4:56:
                    5e:73:6b:6a:f0:f2:d2:d8:45:47:a3:d6:36:62:7c:a7:
                    19:05:f1:aa:93:db:ef:80:3d:37:ae:9e:66:c7:e3:72:
                    d3:6c:83:72:4a:2e:2f:51:84:5e:6b:e7:20:c2:7d:f2:
                    4a:b2:8a:d0:bd:55:b0:d6:f2:f1:6d:54:dd:6c:d1:98:
                    eb:c7:aa:81:75:5d:b7:4d:d6:c3:6d:f0:41:ef:21:f0:
                    f9:00:4d:da:7a:c8:bd:1b:59:80:c9:b6:99:27:b9:ec:
                    6b:04:93:fa:ca:3f:41:74:15:03:e8:88:5d:4f:5d:20:
                    95:b0:80:2b:c3:36:63:a4:5c:7f:6b:ec:75:5d:2c:e2:
                    3f:f9:9d:e4:bd:56:99:88:b6:bf:0b:e9:1c:b4:cc:89:
                    b5:18:14:a3:0b:6f:6f:e6:66:92:03:38:de:34:c0:8b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:55:f7:71:c1:0c:80:4b:92:13:8f:36:85:f4:28:70:
        cb:66:7b:08:59:e7:b1:57:23:32:f5:1a:bb:5e:16:7f:
        21:44:87:65:f4:e6:05:13:3f:85:24:4a:d9:b3:af:bb:
        94:82:cd:65:85:0e:5e:83:98:79:96:c7:35:68:49:8d:
        b5:36:d2:20:ec:9d:d4:5e:bb:e6:1d:34:b0:f5:f4:cf:
        d9:66:f9:20:43:32:47:53:fd:f8:83:f9:f0:1c:03:dc:
        3e:47:a3:b1:73:71:87:2d:57:50:3a:12:41:b3:6e:2b:
        35:c6:c1:77:70:62:66:83:05:fb:c7:f3:ac:44:fb:8b:
        d9:1b:69:45:f9:82:9e:a6:5d:92:f3:5c:3f:f3:28:d5:
        3d:50:84:96:ae:6b:a6:3a:f9:51:27:a3:a2:2f:f0:af:
        4e:6e:aa:f0:f6:04:01:10:67:7d:1c:36:e6:da:12:0c:
        c1:37:f0:2c:b2:fe:ad:61:4b:99:d8:f0:a0:38:8b:dd:
        b8:d2:2c:ce:a1:12:af:d0:2a:a5:ae:e0:cc:d0:74:3c:
        47:3c:78:af:5e:af:6b:90:21:f0:77:0a:70:7f:29:b5:
        93:80:73:f4:a7:05:60:0f:b8:2f:08:29:9f:72:8e:26:
        cb:bf:31:0c:5b:6b:ec:33:a7:94:c3:3f:5a:3c:4e:f2
    Fingerprint (SHA-256):
        6F:84:4F:39:0E:D2:15:49:95:52:26:47:10:63:2A:52:B8:F2:D8:B7:C8:0E:F0:B8:26:C4:23:D2:3F:26:A5:29
    Fingerprint (SHA1):
        98:22:99:47:D1:91:00:0F:4D:61:7B:B6:EF:02:69:CC:5C:FB:09:05
    Friendly Name: Alice
tools.sh: #9671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9673: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9674: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9675: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #9676: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9677: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9678: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #9679: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9680: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9681: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed Aug 23 12:36:46 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed Aug 23 12:36:46 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9682: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9683: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      8cb505244ff05e103fae02beefc79832affa991b   FIPS_PUB_140_Test_Certificate
fips.sh: #9684: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9685: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9686: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9687: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9688: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9689: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9690: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9691: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9692: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9693: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9694: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      8cb505244ff05e103fae02beefc79832affa991b   FIPS_PUB_140_Test_Certificate
fips.sh: #9695: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9696: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9697: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9698: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9699: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      8cb505244ff05e103fae02beefc79832affa991b   FIPS_PUB_140_Test_Certificate
fips.sh: #9700: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9701: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9702: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x0003fd70 (261488): from 20 (32) to 00 (0)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9703: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed Aug 23 12:36:57 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed Aug 23 12:36:57 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9704: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9705: CMMF test . - PASSED
TIMESTAMP crmf END: Wed Aug 23 12:36:57 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed Aug 23 12:36:57 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9706: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9707: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9708: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9709: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9710: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9711: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9712: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9713: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9714: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9715: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9716: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9717: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9718: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9719: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9720: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9721: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9722: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9723: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9724: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9725: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9726: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9727: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9728: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9729: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9730: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9731: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9732: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9733: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9734: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9735: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9736: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9737: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9738: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9739: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9740: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9741: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9742: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9743: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9744: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9745: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9746: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9747: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9748: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9749: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9750: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9751: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9752: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9753: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9754: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9755: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9756: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9757: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9758: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9759: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9760: Decode Encrypted-Data . - PASSED
smime.sh: #9761: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9762: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9763: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9764: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9765: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9766: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed Aug 23 12:37:00 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed Aug 23 12:37:00 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25847 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25847 found at Wed Aug 23 12:37:00 UTC 2017
selfserv_9223 with PID 25847 started at Wed Aug 23 12:37:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9767: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25847 at Wed Aug 23 12:37:00 UTC 2017
kill -USR1 25847
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25847 killed at Wed Aug 23 12:37:00 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:00 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25903 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25903 found at Wed Aug 23 12:37:00 UTC 2017
selfserv_9223 with PID 25903 started at Wed Aug 23 12:37:00 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9768: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25903 at Wed Aug 23 12:37:01 UTC 2017
kill -USR1 25903
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25903 killed at Wed Aug 23 12:37:01 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25959 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25959 found at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 with PID 25959 started at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9769: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 25959 at Wed Aug 23 12:37:01 UTC 2017
kill -USR1 25959
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25959 killed at Wed Aug 23 12:37:01 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26027 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26027 found at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 with PID 26027 started at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9770: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26027 at Wed Aug 23 12:37:01 UTC 2017
kill -USR1 26027
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26027 killed at Wed Aug 23 12:37:01 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26083 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26083 found at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 with PID 26083 started at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9771: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26083 at Wed Aug 23 12:37:01 UTC 2017
kill -USR1 26083
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26083 killed at Wed Aug 23 12:37:01 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26139 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26139 found at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 with PID 26139 started at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9772: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26139 at Wed Aug 23 12:37:01 UTC 2017
kill -USR1 26139
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26139 killed at Wed Aug 23 12:37:01 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26207 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26207 found at Wed Aug 23 12:37:01 UTC 2017
selfserv_9223 with PID 26207 started at Wed Aug 23 12:37:01 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9773: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26207 at Wed Aug 23 12:37:02 UTC 2017
kill -USR1 26207
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26207 killed at Wed Aug 23 12:37:02 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26263 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26263 found at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 with PID 26263 started at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9774: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26263 at Wed Aug 23 12:37:02 UTC 2017
kill -USR1 26263
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26263 killed at Wed Aug 23 12:37:02 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26319 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26319 found at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 with PID 26319 started at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9775: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26319 at Wed Aug 23 12:37:02 UTC 2017
kill -USR1 26319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26319 killed at Wed Aug 23 12:37:02 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26387 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26387 found at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 with PID 26387 started at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9776: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26387 at Wed Aug 23 12:37:02 UTC 2017
kill -USR1 26387
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26387 killed at Wed Aug 23 12:37:02 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26443 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26443 found at Wed Aug 23 12:37:02 UTC 2017
selfserv_9223 with PID 26443 started at Wed Aug 23 12:37:02 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9777: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26443 at Wed Aug 23 12:37:03 UTC 2017
kill -USR1 26443
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26443 killed at Wed Aug 23 12:37:03 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26499 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26499 found at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 with PID 26499 started at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9778: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26499 at Wed Aug 23 12:37:03 UTC 2017
kill -USR1 26499
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26499 killed at Wed Aug 23 12:37:03 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26567 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26567 found at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 with PID 26567 started at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9779: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26567 at Wed Aug 23 12:37:03 UTC 2017
kill -USR1 26567
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26567 killed at Wed Aug 23 12:37:03 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26623 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26623 found at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 with PID 26623 started at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9780: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26623 at Wed Aug 23 12:37:03 UTC 2017
kill -USR1 26623
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26623 killed at Wed Aug 23 12:37:03 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26679 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26679 found at Wed Aug 23 12:37:03 UTC 2017
selfserv_9223 with PID 26679 started at Wed Aug 23 12:37:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9781: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26679 at Wed Aug 23 12:37:04 UTC 2017
kill -USR1 26679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26679 killed at Wed Aug 23 12:37:04 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26747 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26747 found at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 with PID 26747 started at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9782: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26747 at Wed Aug 23 12:37:04 UTC 2017
kill -USR1 26747
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26747 killed at Wed Aug 23 12:37:04 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26803 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26803 found at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 with PID 26803 started at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9783: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26803 at Wed Aug 23 12:37:04 UTC 2017
kill -USR1 26803
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26803 killed at Wed Aug 23 12:37:04 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26860 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26860 found at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 with PID 26860 started at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9784: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 26860 at Wed Aug 23 12:37:04 UTC 2017
kill -USR1 26860
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26860 killed at Wed Aug 23 12:37:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26929 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26929 found at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 with PID 26929 started at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9785: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26929 at Wed Aug 23 12:37:04 UTC 2017
kill -USR1 26929
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26929 killed at Wed Aug 23 12:37:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26986 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26986 found at Wed Aug 23 12:37:04 UTC 2017
selfserv_9223 with PID 26986 started at Wed Aug 23 12:37:04 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9786: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 26986 at Wed Aug 23 12:37:05 UTC 2017
kill -USR1 26986
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26986 killed at Wed Aug 23 12:37:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27050 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27050 found at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 with PID 27050 started at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9787: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27050 at Wed Aug 23 12:37:05 UTC 2017
kill -USR1 27050
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27050 killed at Wed Aug 23 12:37:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27119 found at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 with PID 27119 started at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9788: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27119 at Wed Aug 23 12:37:05 UTC 2017
kill -USR1 27119
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27119 killed at Wed Aug 23 12:37:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27175 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27175 found at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 with PID 27175 started at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9789: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27175 at Wed Aug 23 12:37:05 UTC 2017
kill -USR1 27175
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27175 killed at Wed Aug 23 12:37:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27231 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27231 found at Wed Aug 23 12:37:05 UTC 2017
selfserv_9223 with PID 27231 started at Wed Aug 23 12:37:05 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9790: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27231 at Wed Aug 23 12:37:05 UTC 2017
kill -USR1 27231
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27231 killed at Wed Aug 23 12:37:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27299 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27299 found at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 with PID 27299 started at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9791: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27299 at Wed Aug 23 12:37:06 UTC 2017
kill -USR1 27299
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27299 killed at Wed Aug 23 12:37:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27357 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27357 found at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 with PID 27357 started at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9792: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27357 at Wed Aug 23 12:37:06 UTC 2017
kill -USR1 27357
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27357 killed at Wed Aug 23 12:37:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27413 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27413 found at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 with PID 27413 started at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9793: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27413 at Wed Aug 23 12:37:06 UTC 2017
kill -USR1 27413
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27413 killed at Wed Aug 23 12:37:06 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27481 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27481 found at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 with PID 27481 started at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9794: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27481 at Wed Aug 23 12:37:06 UTC 2017
kill -USR1 27481
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27481 killed at Wed Aug 23 12:37:06 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27537 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27537 found at Wed Aug 23 12:37:06 UTC 2017
selfserv_9223 with PID 27537 started at Wed Aug 23 12:37:06 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9795: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27537 at Wed Aug 23 12:37:07 UTC 2017
kill -USR1 27537
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27537 killed at Wed Aug 23 12:37:07 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27593 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27593 found at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 with PID 27593 started at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9796: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27593 at Wed Aug 23 12:37:07 UTC 2017
kill -USR1 27593
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27593 killed at Wed Aug 23 12:37:07 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27661 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27661 found at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 with PID 27661 started at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9797: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27661 at Wed Aug 23 12:37:07 UTC 2017
kill -USR1 27661
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27661 killed at Wed Aug 23 12:37:07 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27717 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27717 found at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 with PID 27717 started at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9798: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27717 at Wed Aug 23 12:37:07 UTC 2017
kill -USR1 27717
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27717 killed at Wed Aug 23 12:37:07 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27774 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27774 found at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 with PID 27774 started at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9799: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27774 at Wed Aug 23 12:37:07 UTC 2017
kill -USR1 27774
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27774 killed at Wed Aug 23 12:37:07 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27843 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27843 found at Wed Aug 23 12:37:07 UTC 2017
selfserv_9223 with PID 27843 started at Wed Aug 23 12:37:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9800: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27843 at Wed Aug 23 12:37:08 UTC 2017
kill -USR1 27843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27843 killed at Wed Aug 23 12:37:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27900 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27900 found at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 with PID 27900 started at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9801: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 27900 at Wed Aug 23 12:37:08 UTC 2017
kill -USR1 27900
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27900 killed at Wed Aug 23 12:37:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27956 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27956 found at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 with PID 27956 started at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9802: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 27956 at Wed Aug 23 12:37:08 UTC 2017
kill -USR1 27956
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27956 killed at Wed Aug 23 12:37:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28024 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28024 found at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 with PID 28024 started at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9803: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28024 at Wed Aug 23 12:37:08 UTC 2017
kill -USR1 28024
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28024 killed at Wed Aug 23 12:37:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28080 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28080 found at Wed Aug 23 12:37:08 UTC 2017
selfserv_9223 with PID 28080 started at Wed Aug 23 12:37:08 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9804: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28080 at Wed Aug 23 12:37:09 UTC 2017
kill -USR1 28080
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28080 killed at Wed Aug 23 12:37:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28136 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28136 found at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 with PID 28136 started at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9805: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28136 at Wed Aug 23 12:37:09 UTC 2017
kill -USR1 28136
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28136 killed at Wed Aug 23 12:37:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28204 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28204 found at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 with PID 28204 started at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9806: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28204 at Wed Aug 23 12:37:09 UTC 2017
kill -USR1 28204
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28204 killed at Wed Aug 23 12:37:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28260 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28260 found at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 with PID 28260 started at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9807: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28260 at Wed Aug 23 12:37:09 UTC 2017
kill -USR1 28260
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28260 killed at Wed Aug 23 12:37:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28316 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28316 found at Wed Aug 23 12:37:09 UTC 2017
selfserv_9223 with PID 28316 started at Wed Aug 23 12:37:09 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9808: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28316 at Wed Aug 23 12:37:10 UTC 2017
kill -USR1 28316
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28316 killed at Wed Aug 23 12:37:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28384 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28384 found at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 with PID 28384 started at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9809: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28384 at Wed Aug 23 12:37:10 UTC 2017
kill -USR1 28384
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28384 killed at Wed Aug 23 12:37:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28440 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28440 found at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 with PID 28440 started at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9810: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28440 at Wed Aug 23 12:37:10 UTC 2017
kill -USR1 28440
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28440 killed at Wed Aug 23 12:37:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28496 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28496 found at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 with PID 28496 started at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9811: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28496 at Wed Aug 23 12:37:10 UTC 2017
kill -USR1 28496
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28496 killed at Wed Aug 23 12:37:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28564 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28564 found at Wed Aug 23 12:37:10 UTC 2017
selfserv_9223 with PID 28564 started at Wed Aug 23 12:37:10 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9812: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28564 at Wed Aug 23 12:37:11 UTC 2017
kill -USR1 28564
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28564 killed at Wed Aug 23 12:37:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28621 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28621 found at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 with PID 28621 started at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9813: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28621 at Wed Aug 23 12:37:11 UTC 2017
kill -USR1 28621
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28621 killed at Wed Aug 23 12:37:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28678 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28678 found at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 with PID 28678 started at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9814: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28678 at Wed Aug 23 12:37:11 UTC 2017
kill -USR1 28678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28678 killed at Wed Aug 23 12:37:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28746 found at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 with PID 28746 started at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9815: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28746 at Wed Aug 23 12:37:11 UTC 2017
kill -USR1 28746
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28746 killed at Wed Aug 23 12:37:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28802 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28802 found at Wed Aug 23 12:37:11 UTC 2017
selfserv_9223 with PID 28802 started at Wed Aug 23 12:37:11 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9816: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28802 at Wed Aug 23 12:37:12 UTC 2017
kill -USR1 28802
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28802 killed at Wed Aug 23 12:37:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28859 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28859 found at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 with PID 28859 started at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9817: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28859 at Wed Aug 23 12:37:12 UTC 2017
kill -USR1 28859
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28859 killed at Wed Aug 23 12:37:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28927 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28927 found at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 with PID 28927 started at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9818: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 28927 at Wed Aug 23 12:37:12 UTC 2017
kill -USR1 28927
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28927 killed at Wed Aug 23 12:37:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28983 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 28983 found at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 with PID 28983 started at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9819: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 28983 at Wed Aug 23 12:37:12 UTC 2017
kill -USR1 28983
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 28983 killed at Wed Aug 23 12:37:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29039 found at Wed Aug 23 12:37:12 UTC 2017
selfserv_9223 with PID 29039 started at Wed Aug 23 12:37:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9820: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29039 at Wed Aug 23 12:37:13 UTC 2017
kill -USR1 29039
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29039 killed at Wed Aug 23 12:37:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:13 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29107 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29107 found at Wed Aug 23 12:37:13 UTC 2017
selfserv_9223 with PID 29107 started at Wed Aug 23 12:37:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9821: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29107 at Wed Aug 23 12:37:13 UTC 2017
kill -USR1 29107
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29107 killed at Wed Aug 23 12:37:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:13 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29165 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29165 found at Wed Aug 23 12:37:13 UTC 2017
selfserv_9223 with PID 29165 started at Wed Aug 23 12:37:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9822: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29165 at Wed Aug 23 12:37:13 UTC 2017
kill -USR1 29165
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29165 killed at Wed Aug 23 12:37:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:13 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29221 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29221 found at Wed Aug 23 12:37:13 UTC 2017
selfserv_9223 with PID 29221 started at Wed Aug 23 12:37:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9823: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29221 at Wed Aug 23 12:37:13 UTC 2017
kill -USR1 29221
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29221 killed at Wed Aug 23 12:37:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29289 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29289 found at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 with PID 29289 started at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9824: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29289 at Wed Aug 23 12:37:14 UTC 2017
kill -USR1 29289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29289 killed at Wed Aug 23 12:37:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29345 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29345 found at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 with PID 29345 started at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9825: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29345 at Wed Aug 23 12:37:14 UTC 2017
kill -USR1 29345
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29345 killed at Wed Aug 23 12:37:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29402 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29402 found at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 with PID 29402 started at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9826: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29402 at Wed Aug 23 12:37:14 UTC 2017
kill -USR1 29402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29402 killed at Wed Aug 23 12:37:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29470 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29470 found at Wed Aug 23 12:37:14 UTC 2017
selfserv_9223 with PID 29470 started at Wed Aug 23 12:37:14 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9827: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29470 at Wed Aug 23 12:37:15 UTC 2017
kill -USR1 29470
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29470 killed at Wed Aug 23 12:37:15 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29526 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29526 found at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 with PID 29526 started at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9828: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 29526 at Wed Aug 23 12:37:15 UTC 2017
kill -USR1 29526
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29526 killed at Wed Aug 23 12:37:15 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29582 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29582 found at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 with PID 29582 started at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9829: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29582 at Wed Aug 23 12:37:15 UTC 2017
kill -USR1 29582
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29582 killed at Wed Aug 23 12:37:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29650 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29650 found at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 with PID 29650 started at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9830: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29650 at Wed Aug 23 12:37:15 UTC 2017
kill -USR1 29650
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29650 killed at Wed Aug 23 12:37:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29706 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29706 found at Wed Aug 23 12:37:15 UTC 2017
selfserv_9223 with PID 29706 started at Wed Aug 23 12:37:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9831: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29706 at Wed Aug 23 12:37:16 UTC 2017
kill -USR1 29706
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29706 killed at Wed Aug 23 12:37:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29762 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29762 found at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 with PID 29762 started at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9832: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29762 at Wed Aug 23 12:37:16 UTC 2017
kill -USR1 29762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29762 killed at Wed Aug 23 12:37:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29830 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29830 found at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 with PID 29830 started at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9833: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29830 at Wed Aug 23 12:37:16 UTC 2017
kill -USR1 29830
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29830 killed at Wed Aug 23 12:37:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29886 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29886 found at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 with PID 29886 started at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9834: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29886 at Wed Aug 23 12:37:16 UTC 2017
kill -USR1 29886
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29886 killed at Wed Aug 23 12:37:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29942 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29942 found at Wed Aug 23 12:37:16 UTC 2017
selfserv_9223 with PID 29942 started at Wed Aug 23 12:37:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9835: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29942 at Wed Aug 23 12:37:17 UTC 2017
kill -USR1 29942
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29942 killed at Wed Aug 23 12:37:17 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30011 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30011 found at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 with PID 30011 started at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9836: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30011 at Wed Aug 23 12:37:17 UTC 2017
kill -USR1 30011
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30011 killed at Wed Aug 23 12:37:17 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30069 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30069 found at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 with PID 30069 started at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9837: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30069 at Wed Aug 23 12:37:17 UTC 2017
kill -USR1 30069
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30069 killed at Wed Aug 23 12:37:17 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30125 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30125 found at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 with PID 30125 started at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9838: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30125 at Wed Aug 23 12:37:17 UTC 2017
kill -USR1 30125
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30125 killed at Wed Aug 23 12:37:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30195 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30195 found at Wed Aug 23 12:37:17 UTC 2017
selfserv_9223 with PID 30195 started at Wed Aug 23 12:37:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9839: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30195 at Wed Aug 23 12:37:18 UTC 2017
kill -USR1 30195
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30195 killed at Wed Aug 23 12:37:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30251 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30251 found at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 with PID 30251 started at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9840: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30251 at Wed Aug 23 12:37:18 UTC 2017
kill -USR1 30251
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30251 killed at Wed Aug 23 12:37:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30307 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30307 found at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 with PID 30307 started at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9841: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30307 at Wed Aug 23 12:37:18 UTC 2017
kill -USR1 30307
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30307 killed at Wed Aug 23 12:37:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30375 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30375 found at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 with PID 30375 started at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9842: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30375 at Wed Aug 23 12:37:18 UTC 2017
kill -USR1 30375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30375 killed at Wed Aug 23 12:37:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30431 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30431 found at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 with PID 30431 started at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9843: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30431 at Wed Aug 23 12:37:18 UTC 2017
kill -USR1 30431
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30431 killed at Wed Aug 23 12:37:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30487 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30487 found at Wed Aug 23 12:37:18 UTC 2017
selfserv_9223 with PID 30487 started at Wed Aug 23 12:37:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9844: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30487 at Wed Aug 23 12:37:19 UTC 2017
kill -USR1 30487
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30487 killed at Wed Aug 23 12:37:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30555 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30555 found at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 with PID 30555 started at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9845: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30555 at Wed Aug 23 12:37:19 UTC 2017
kill -USR1 30555
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30555 killed at Wed Aug 23 12:37:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30612 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30612 found at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 with PID 30612 started at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9846: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 30612 at Wed Aug 23 12:37:19 UTC 2017
kill -USR1 30612
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30612 killed at Wed Aug 23 12:37:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30668 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30668 found at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 with PID 30668 started at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9847: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30668 at Wed Aug 23 12:37:19 UTC 2017
kill -USR1 30668
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30668 killed at Wed Aug 23 12:37:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30736 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30736 found at Wed Aug 23 12:37:19 UTC 2017
selfserv_9223 with PID 30736 started at Wed Aug 23 12:37:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9848: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30736 at Wed Aug 23 12:37:20 UTC 2017
kill -USR1 30736
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30736 killed at Wed Aug 23 12:37:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30792 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30792 found at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 with PID 30792 started at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9849: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30792 at Wed Aug 23 12:37:20 UTC 2017
kill -USR1 30792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30792 killed at Wed Aug 23 12:37:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30849 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30849 found at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 with PID 30849 started at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9850: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30849 at Wed Aug 23 12:37:20 UTC 2017
kill -USR1 30849
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30849 killed at Wed Aug 23 12:37:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30918 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30918 found at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 with PID 30918 started at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9851: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30918 at Wed Aug 23 12:37:20 UTC 2017
kill -USR1 30918
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30918 killed at Wed Aug 23 12:37:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30974 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30974 found at Wed Aug 23 12:37:20 UTC 2017
selfserv_9223 with PID 30974 started at Wed Aug 23 12:37:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9852: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30974 at Wed Aug 23 12:37:20 UTC 2017
kill -USR1 30974
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30974 killed at Wed Aug 23 12:37:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31030 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31030 found at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 with PID 31030 started at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9853: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 31030 at Wed Aug 23 12:37:21 UTC 2017
kill -USR1 31030
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31030 killed at Wed Aug 23 12:37:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31100 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31100 found at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 with PID 31100 started at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9854: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 31100 at Wed Aug 23 12:37:21 UTC 2017
kill -USR1 31100
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31100 killed at Wed Aug 23 12:37:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31157 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31157 found at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 with PID 31157 started at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9855: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 31157 at Wed Aug 23 12:37:21 UTC 2017
kill -USR1 31157
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31157 killed at Wed Aug 23 12:37:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31214 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31214 found at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 with PID 31214 started at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9856: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 31214 at Wed Aug 23 12:37:21 UTC 2017
kill -USR1 31214
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31214 killed at Wed Aug 23 12:37:21 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31291 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31291 found at Wed Aug 23 12:37:21 UTC 2017
selfserv_9223 with PID 31291 started at Wed Aug 23 12:37:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9857: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 31291 at Wed Aug 23 12:37:22 UTC 2017
kill -USR1 31291
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31291 killed at Wed Aug 23 12:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31347 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31347 found at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 with PID 31347 started at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9858: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 31347 at Wed Aug 23 12:37:22 UTC 2017
kill -USR1 31347
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31347 killed at Wed Aug 23 12:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31403 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31403 found at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 with PID 31403 started at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9859: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 31403 at Wed Aug 23 12:37:22 UTC 2017
kill -USR1 31403
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31403 killed at Wed Aug 23 12:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31471 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31471 found at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 with PID 31471 started at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9860: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31471 at Wed Aug 23 12:37:22 UTC 2017
kill -USR1 31471
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31471 killed at Wed Aug 23 12:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31527 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31527 found at Wed Aug 23 12:37:22 UTC 2017
selfserv_9223 with PID 31527 started at Wed Aug 23 12:37:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9861: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 31527 at Wed Aug 23 12:37:23 UTC 2017
kill -USR1 31527
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31527 killed at Wed Aug 23 12:37:23 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31583 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31583 found at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 with PID 31583 started at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9862: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31583 at Wed Aug 23 12:37:23 UTC 2017
kill -USR1 31583
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31583 killed at Wed Aug 23 12:37:23 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31651 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31651 found at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 with PID 31651 started at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9863: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31651 at Wed Aug 23 12:37:23 UTC 2017
kill -USR1 31651
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31651 killed at Wed Aug 23 12:37:23 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31707 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31707 found at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 with PID 31707 started at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9864: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31707 at Wed Aug 23 12:37:23 UTC 2017
kill -USR1 31707
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31707 killed at Wed Aug 23 12:37:23 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31763 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31763 found at Wed Aug 23 12:37:23 UTC 2017
selfserv_9223 with PID 31763 started at Wed Aug 23 12:37:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9865: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31763 at Wed Aug 23 12:37:24 UTC 2017
kill -USR1 31763
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31763 killed at Wed Aug 23 12:37:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31832 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31832 found at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 with PID 31832 started at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9866: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31832 at Wed Aug 23 12:37:24 UTC 2017
kill -USR1 31832
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31832 killed at Wed Aug 23 12:37:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31889 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31889 found at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 with PID 31889 started at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9867: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 31889 at Wed Aug 23 12:37:24 UTC 2017
kill -USR1 31889
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31889 killed at Wed Aug 23 12:37:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31945 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 31945 found at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 with PID 31945 started at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9868: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 31945 at Wed Aug 23 12:37:24 UTC 2017
kill -USR1 31945
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 31945 killed at Wed Aug 23 12:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32013 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32013 found at Wed Aug 23 12:37:24 UTC 2017
selfserv_9223 with PID 32013 started at Wed Aug 23 12:37:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9869: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 32013 at Wed Aug 23 12:37:25 UTC 2017
kill -USR1 32013
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32013 killed at Wed Aug 23 12:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32069 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32069 found at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 with PID 32069 started at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9870: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 32069 at Wed Aug 23 12:37:25 UTC 2017
kill -USR1 32069
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32069 killed at Wed Aug 23 12:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32125 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32125 found at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 with PID 32125 started at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9871: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 32125 at Wed Aug 23 12:37:25 UTC 2017
kill -USR1 32125
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32125 killed at Wed Aug 23 12:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32193 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32193 found at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 with PID 32193 started at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9872: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 32193 at Wed Aug 23 12:37:25 UTC 2017
kill -USR1 32193
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32193 killed at Wed Aug 23 12:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32249 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32249 found at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 with PID 32249 started at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9873: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 32249 at Wed Aug 23 12:37:25 UTC 2017
kill -USR1 32249
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32249 killed at Wed Aug 23 12:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32305 found at Wed Aug 23 12:37:25 UTC 2017
selfserv_9223 with PID 32305 started at Wed Aug 23 12:37:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9874: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 32305 at Wed Aug 23 12:37:26 UTC 2017
kill -USR1 32305
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32305 killed at Wed Aug 23 12:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32373 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32373 found at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 with PID 32373 started at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9875: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 32373 at Wed Aug 23 12:37:26 UTC 2017
kill -USR1 32373
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32373 killed at Wed Aug 23 12:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32429 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32429 found at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 with PID 32429 started at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9876: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 32429 at Wed Aug 23 12:37:26 UTC 2017
kill -USR1 32429
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32429 killed at Wed Aug 23 12:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32485 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32485 found at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 with PID 32485 started at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9877: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 32485 at Wed Aug 23 12:37:26 UTC 2017
kill -USR1 32485
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32485 killed at Wed Aug 23 12:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32553 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32553 found at Wed Aug 23 12:37:26 UTC 2017
selfserv_9223 with PID 32553 started at Wed Aug 23 12:37:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9878: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 32553 at Wed Aug 23 12:37:27 UTC 2017
kill -USR1 32553
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32553 killed at Wed Aug 23 12:37:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32609 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32609 found at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 with PID 32609 started at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9879: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 32609 at Wed Aug 23 12:37:27 UTC 2017
kill -USR1 32609
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32609 killed at Wed Aug 23 12:37:27 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32665 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32665 found at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 with PID 32665 started at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9880: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 32665 at Wed Aug 23 12:37:27 UTC 2017
kill -USR1 32665
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32665 killed at Wed Aug 23 12:37:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32733 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32733 found at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 with PID 32733 started at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9881: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 32733 at Wed Aug 23 12:37:27 UTC 2017
kill -USR1 32733
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32733 killed at Wed Aug 23 12:37:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 321 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 321 found at Wed Aug 23 12:37:27 UTC 2017
selfserv_9223 with PID 321 started at Wed Aug 23 12:37:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9882: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 321 at Wed Aug 23 12:37:28 UTC 2017
kill -USR1 321
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 321 killed at Wed Aug 23 12:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 377 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 377 found at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 with PID 377 started at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9883: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 377 at Wed Aug 23 12:37:28 UTC 2017
kill -USR1 377
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 377 killed at Wed Aug 23 12:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 445 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 445 found at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 with PID 445 started at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9884: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 445 at Wed Aug 23 12:37:28 UTC 2017
kill -USR1 445
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 445 killed at Wed Aug 23 12:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 505 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 505 found at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 with PID 505 started at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9885: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 505 at Wed Aug 23 12:37:28 UTC 2017
kill -USR1 505
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 505 killed at Wed Aug 23 12:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 562 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 562 found at Wed Aug 23 12:37:28 UTC 2017
selfserv_9223 with PID 562 started at Wed Aug 23 12:37:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9886: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 562 at Wed Aug 23 12:37:29 UTC 2017
kill -USR1 562
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 562 killed at Wed Aug 23 12:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 644 found at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 with PID 644 started at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9887: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 644 at Wed Aug 23 12:37:29 UTC 2017
kill -USR1 644
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 644 killed at Wed Aug 23 12:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 700 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 700 found at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 with PID 700 started at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9888: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 700 at Wed Aug 23 12:37:29 UTC 2017
kill -USR1 700
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 700 killed at Wed Aug 23 12:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 761 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 761 found at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 with PID 761 started at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9889: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 761 at Wed Aug 23 12:37:29 UTC 2017
kill -USR1 761
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 761 killed at Wed Aug 23 12:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 829 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 829 found at Wed Aug 23 12:37:29 UTC 2017
selfserv_9223 with PID 829 started at Wed Aug 23 12:37:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9890: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 829 at Wed Aug 23 12:37:30 UTC 2017
kill -USR1 829
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 829 killed at Wed Aug 23 12:37:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 889 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 889 found at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 with PID 889 started at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9891: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 889 at Wed Aug 23 12:37:30 UTC 2017
kill -USR1 889
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 889 killed at Wed Aug 23 12:37:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 953 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 953 found at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 with PID 953 started at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9892: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 953 at Wed Aug 23 12:37:30 UTC 2017
kill -USR1 953
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 953 killed at Wed Aug 23 12:37:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1039 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1039 found at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 with PID 1039 started at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9893: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1039 at Wed Aug 23 12:37:30 UTC 2017
kill -USR1 1039
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1039 killed at Wed Aug 23 12:37:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1113 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1113 found at Wed Aug 23 12:37:30 UTC 2017
selfserv_9223 with PID 1113 started at Wed Aug 23 12:37:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9894: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1113 at Wed Aug 23 12:37:31 UTC 2017
kill -USR1 1113
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1113 killed at Wed Aug 23 12:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:31 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1183 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1183 found at Wed Aug 23 12:37:31 UTC 2017
selfserv_9223 with PID 1183 started at Wed Aug 23 12:37:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9895: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1183 at Wed Aug 23 12:37:31 UTC 2017
kill -USR1 1183
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1183 killed at Wed Aug 23 12:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:31 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1254 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1254 found at Wed Aug 23 12:37:31 UTC 2017
selfserv_9223 with PID 1254 started at Wed Aug 23 12:37:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9896: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1254 at Wed Aug 23 12:37:31 UTC 2017
kill -USR1 1254
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1254 killed at Wed Aug 23 12:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:31 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1311 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1311 found at Wed Aug 23 12:37:31 UTC 2017
selfserv_9223 with PID 1311 started at Wed Aug 23 12:37:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9897: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1311 at Wed Aug 23 12:37:32 UTC 2017
kill -USR1 1311
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1311 killed at Wed Aug 23 12:37:32 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1367 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1367 found at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 with PID 1367 started at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9898: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1367 at Wed Aug 23 12:37:32 UTC 2017
kill -USR1 1367
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1367 killed at Wed Aug 23 12:37:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1436 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1436 found at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 with PID 1436 started at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9899: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1436 at Wed Aug 23 12:37:32 UTC 2017
kill -USR1 1436
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1436 killed at Wed Aug 23 12:37:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1492 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1492 found at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 with PID 1492 started at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9900: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1492 at Wed Aug 23 12:37:32 UTC 2017
kill -USR1 1492
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1492 killed at Wed Aug 23 12:37:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1548 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1548 found at Wed Aug 23 12:37:32 UTC 2017
selfserv_9223 with PID 1548 started at Wed Aug 23 12:37:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9901: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1548 at Wed Aug 23 12:37:33 UTC 2017
kill -USR1 1548
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1548 killed at Wed Aug 23 12:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1617 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1617 found at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 with PID 1617 started at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9902: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1617 at Wed Aug 23 12:37:33 UTC 2017
kill -USR1 1617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1617 killed at Wed Aug 23 12:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1673 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1673 found at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 with PID 1673 started at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9903: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1673 at Wed Aug 23 12:37:33 UTC 2017
kill -USR1 1673
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1673 killed at Wed Aug 23 12:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1738 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1738 found at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 with PID 1738 started at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9904: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1738 at Wed Aug 23 12:37:33 UTC 2017
kill -USR1 1738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1738 killed at Wed Aug 23 12:37:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1818 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1818 found at Wed Aug 23 12:37:33 UTC 2017
selfserv_9223 with PID 1818 started at Wed Aug 23 12:37:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9905: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1818 at Wed Aug 23 12:37:34 UTC 2017
kill -USR1 1818
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1818 killed at Wed Aug 23 12:37:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1882 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1882 found at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 with PID 1882 started at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9906: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1882 at Wed Aug 23 12:37:34 UTC 2017
kill -USR1 1882
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1882 killed at Wed Aug 23 12:37:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1950 found at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 with PID 1950 started at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9907: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 1950 at Wed Aug 23 12:37:34 UTC 2017
kill -USR1 1950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1950 killed at Wed Aug 23 12:37:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2018 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2018 found at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 with PID 2018 started at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9908: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2018 at Wed Aug 23 12:37:34 UTC 2017
kill -USR1 2018
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2018 killed at Wed Aug 23 12:37:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2074 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2074 found at Wed Aug 23 12:37:34 UTC 2017
selfserv_9223 with PID 2074 started at Wed Aug 23 12:37:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2074 at Wed Aug 23 12:37:35 UTC 2017
kill -USR1 2074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2074 killed at Wed Aug 23 12:37:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2130 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2130 found at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 with PID 2130 started at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9910: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2130 at Wed Aug 23 12:37:35 UTC 2017
kill -USR1 2130
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2130 killed at Wed Aug 23 12:37:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2198 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2198 found at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 with PID 2198 started at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9911: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2198 at Wed Aug 23 12:37:35 UTC 2017
kill -USR1 2198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2198 killed at Wed Aug 23 12:37:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2254 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2254 found at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 with PID 2254 started at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9912: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2254 at Wed Aug 23 12:37:35 UTC 2017
kill -USR1 2254
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2254 killed at Wed Aug 23 12:37:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2311 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2311 found at Wed Aug 23 12:37:35 UTC 2017
selfserv_9223 with PID 2311 started at Wed Aug 23 12:37:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9913: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2311 at Wed Aug 23 12:37:36 UTC 2017
kill -USR1 2311
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2311 killed at Wed Aug 23 12:37:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2379 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2379 found at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 with PID 2379 started at Wed Aug 23 12:37:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9914: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2379 at Wed Aug 23 12:37:36 UTC 2017
kill -USR1 2379
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2379 killed at Wed Aug 23 12:37:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2435 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2435 found at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 with PID 2435 started at Wed Aug 23 12:37:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9915: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 2435 at Wed Aug 23 12:37:36 UTC 2017
kill -USR1 2435
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2435 killed at Wed Aug 23 12:37:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2491 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2491 found at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 with PID 2491 started at Wed Aug 23 12:37:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9916: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2491 at Wed Aug 23 12:37:36 UTC 2017
kill -USR1 2491
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2491 killed at Wed Aug 23 12:37:36 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9223 starting at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:36 UTC 2017
selfserv_9223 with PID 2554 started at Wed Aug 23 12:37:36 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:36 UTC 2017
ssl.sh: #9917: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9918: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9919: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9920: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9921: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9922: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9923: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9924: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9925: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:37 UTC 2017
ssl.sh: #9926: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9927: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9928: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9929: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9930: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9931: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9932: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9933: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9934: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9935: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9936: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:38 UTC 2017
ssl.sh: #9937: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9938: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9939: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9940: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9941: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9942: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9943: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9944: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9945: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:39 UTC 2017
ssl.sh: #9946: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9947: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9948: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9949: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9950: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9951: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9952: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9953: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9954: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9955: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:40 UTC 2017
ssl.sh: #9956: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2554 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2554 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9957: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 2554 at Wed Aug 23 12:37:41 UTC 2017
kill -USR1 2554
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2554 killed at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
selfserv_9223 with PID 3982 started at Wed Aug 23 12:37:41 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9958: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9959: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9960: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9961: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9962: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9963: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9964: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9965: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9966: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:41 UTC 2017
ssl.sh: #9967: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9968: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9969: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9970: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9971: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9972: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9973: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9974: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9975: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9976: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9977: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:42 UTC 2017
ssl.sh: #9978: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9979: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9980: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9981: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9982: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9983: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9984: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9985: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9986: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9987: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9988: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9989: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:43 UTC 2017
ssl.sh: #9990: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9991: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9992: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9993: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9994: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9995: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9996: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9997: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3982 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 3982 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9998: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 3982 at Wed Aug 23 12:37:44 UTC 2017
kill -USR1 3982
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 3982 killed at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:44 UTC 2017
selfserv_9223 with PID 5408 started at Wed Aug 23 12:37:44 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:44 UTC 2017
ssl.sh: #9999: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10000: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10001: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10002: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10003: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10004: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10005: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10006: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10007: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:45 UTC 2017
ssl.sh: #10008: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10009: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10010: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10011: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10012: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10013: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10014: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10015: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10016: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10017: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:46 UTC 2017
ssl.sh: #10018: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10019: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10020: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10021: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10022: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10023: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10024: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10025: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10026: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:47 UTC 2017
ssl.sh: #10027: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10028: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10029: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10030: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10031: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10032: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10033: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10034: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10035: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10036: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:48 UTC 2017
ssl.sh: #10037: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10038: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5408 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5408 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10039: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 5408 at Wed Aug 23 12:37:49 UTC 2017
kill -USR1 5408
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 5408 killed at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
selfserv_9223 with PID 6834 started at Wed Aug 23 12:37:49 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10040: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10041: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10042: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10043: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10044: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10045: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:49 UTC 2017
ssl.sh: #10046: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10047: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10048: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10049: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10050: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10051: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10052: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10053: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10054: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10055: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:50 UTC 2017
ssl.sh: #10056: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10057: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10058: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10059: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10060: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10061: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10062: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10063: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10064: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10065: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
ssl.sh: #10066: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10067: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10068: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10069: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10070: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10071: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10072: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10073: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10074: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10075: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10076: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10077: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:52 UTC 2017
ssl.sh: #10078: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: #10079: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6834 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6834 found at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: #10080: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 6834 at Wed Aug 23 12:37:53 UTC 2017
kill -USR1 6834
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 6834 killed at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8260 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8260 found at Wed Aug 23 12:37:53 UTC 2017
selfserv_9223 with PID 8260 started at Wed Aug 23 12:37:53 UTC 2017
trying to kill selfserv_9223 with PID 8260 at Wed Aug 23 12:37:53 UTC 2017
kill -USR1 8260
./ssl.sh: line 197:  8260 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8260 killed at Wed Aug 23 12:37:53 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:37:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:53 UTC 2017
selfserv_9223 with PID 8294 started at Wed Aug 23 12:37:53 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: #10081: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: #10082: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: #10083: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: #10084: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:53 UTC 2017
ssl.sh: #10085: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10086: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10087: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10088: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10089: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10090: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10091: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10092: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:54 UTC 2017
ssl.sh: #10093: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10094: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
ssl.sh: #10095: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
ssl.sh: #10096: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
ssl.sh: #10097: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
ssl.sh: #10098: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
ssl.sh: #10099: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
ssl.sh: #10100: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:55 UTC 2017
ssl.sh: #10101: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
ssl.sh: #10102: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
ssl.sh: #10103: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
ssl.sh: #10104: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
ssl.sh: #10105: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
ssl.sh: #10106: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
ssl.sh: #10107: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10108: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:56 UTC 2017
ssl.sh: #10109: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10110: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10111: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10112: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10113: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10114: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10115: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10116: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10117: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:57 UTC 2017
ssl.sh: #10118: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:58 UTC 2017
ssl.sh: #10119: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:58 UTC 2017
ssl.sh: #10120: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8294 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8294 found at Wed Aug 23 12:37:58 UTC 2017
ssl.sh: #10121: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 8294 at Wed Aug 23 12:37:58 UTC 2017
kill -USR1 8294
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8294 killed at Wed Aug 23 12:37:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:37:58 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:37:58 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:58 UTC 2017
selfserv_9223 with PID 9718 started at Wed Aug 23 12:37:58 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:58 UTC 2017
ssl.sh: #10122: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:58 UTC 2017
ssl.sh: #10123: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:58 UTC 2017
ssl.sh: #10124: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10125: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10126: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10127: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10128: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10129: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10130: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10131: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:37:59 UTC 2017
ssl.sh: #10132: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10133: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10134: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10135: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10136: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10137: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10138: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10139: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10140: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:00 UTC 2017
ssl.sh: #10141: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
ssl.sh: #10142: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
ssl.sh: #10143: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
ssl.sh: #10144: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
ssl.sh: #10145: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
ssl.sh: #10146: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
ssl.sh: #10147: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
ssl.sh: #10148: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10149: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10150: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10151: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10152: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10153: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10154: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10155: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10156: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:02 UTC 2017
ssl.sh: #10157: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: #10158: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: #10159: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: #10160: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: #10161: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9718 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9718 found at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: #10162: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 9718 at Wed Aug 23 12:38:03 UTC 2017
kill -USR1 9718
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9718 killed at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:03 UTC 2017
selfserv_9223 with PID 11151 started at Wed Aug 23 12:38:03 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: #10163: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:03 UTC 2017
ssl.sh: #10164: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10165: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10166: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10167: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10168: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10169: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10170: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10171: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10172: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10173: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:04 UTC 2017
ssl.sh: #10174: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10175: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10176: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10177: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10178: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10179: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10180: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10181: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10182: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10183: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10184: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:05 UTC 2017
ssl.sh: #10185: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10186: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10187: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10188: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10189: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10190: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10191: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10192: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10193: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10194: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:06 UTC 2017
ssl.sh: #10195: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10196: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10197: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10198: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10199: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10200: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10201: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10202: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11151 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11151 found at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: #10203: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11151 at Wed Aug 23 12:38:07 UTC 2017
kill -USR1 11151
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11151 killed at Wed Aug 23 12:38:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:07 UTC 2017
selfserv_9223 with PID 12589 started at Wed Aug 23 12:38:07 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10204: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10205: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10206: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10207: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10208: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10209: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10210: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:08 UTC 2017
ssl.sh: #10211: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:09 UTC 2017
ssl.sh: #10212: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:09 UTC 2017
ssl.sh: #10213: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:09 UTC 2017
ssl.sh: #10214: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:09 UTC 2017
ssl.sh: #10215: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:09 UTC 2017
ssl.sh: #10216: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10217: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:09 UTC 2017
ssl.sh: #10218: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10219: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10220: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10221: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10222: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10223: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10224: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10225: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:10 UTC 2017
ssl.sh: #10226: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
ssl.sh: #10227: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
ssl.sh: #10228: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
ssl.sh: #10229: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
ssl.sh: #10230: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10231: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
ssl.sh: #10232: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
ssl.sh: #10233: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:11 UTC 2017
ssl.sh: #10234: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10235: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10236: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10237: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10238: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10239: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10240: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10241: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:12 UTC 2017
ssl.sh: #10242: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:13 UTC 2017
ssl.sh: #10243: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12589 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12589 found at Wed Aug 23 12:38:13 UTC 2017
ssl.sh: #10244: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12589 at Wed Aug 23 12:38:13 UTC 2017
kill -USR1 12589
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12589 killed at Wed Aug 23 12:38:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:13 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:13 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:13 UTC 2017
selfserv_9223 with PID 14019 started at Wed Aug 23 12:38:13 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:13 UTC 2017
ssl.sh: #10245: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:13 UTC 2017
ssl.sh: #10246: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:13 UTC 2017
ssl.sh: #10247: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:13 UTC 2017
ssl.sh: #10248: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10249: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10250: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10251: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10252: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10253: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10254: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10255: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:14 UTC 2017
ssl.sh: #10256: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
ssl.sh: #10257: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10258: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
ssl.sh: #10259: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
ssl.sh: #10260: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
ssl.sh: #10261: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
ssl.sh: #10262: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
ssl.sh: #10263: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:15 UTC 2017
ssl.sh: #10264: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:16 UTC 2017
ssl.sh: #10265: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:16 UTC 2017
ssl.sh: #10266: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:16 UTC 2017
ssl.sh: #10267: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:16 UTC 2017
ssl.sh: #10268: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:16 UTC 2017
ssl.sh: #10269: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:16 UTC 2017
ssl.sh: #10270: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:16 UTC 2017
ssl.sh: #10271: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10272: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
ssl.sh: #10273: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
ssl.sh: #10274: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
ssl.sh: #10275: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
ssl.sh: #10276: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
ssl.sh: #10277: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
ssl.sh: #10278: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:17 UTC 2017
ssl.sh: #10279: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: #10280: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: #10281: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: #10282: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: #10283: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: #10284: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14019 found at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: #10285: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14019 at Wed Aug 23 12:38:18 UTC 2017
kill -USR1 14019
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14019 killed at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:18 UTC 2017
selfserv_9223 with PID 15447 started at Wed Aug 23 12:38:18 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:18 UTC 2017
ssl.sh: #10286: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10287: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10288: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10289: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10290: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10291: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10292: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10293: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10294: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10295: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:19 UTC 2017
ssl.sh: #10296: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10297: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10298: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10299: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10300: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10301: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10302: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10303: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10304: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:20 UTC 2017
ssl.sh: #10305: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10306: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10307: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10308: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10309: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10310: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10311: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10312: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10313: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10314: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:21 UTC 2017
ssl.sh: #10315: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10316: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10317: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10318: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10319: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10320: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10321: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10322: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10323: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:22 UTC 2017
ssl.sh: #10324: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: #10325: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15447 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15447 found at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: #10326: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15447 at Wed Aug 23 12:38:23 UTC 2017
kill -USR1 15447
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15447 killed at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16872 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16872 found at Wed Aug 23 12:38:23 UTC 2017
selfserv_9223 with PID 16872 started at Wed Aug 23 12:38:23 UTC 2017
trying to kill selfserv_9223 with PID 16872 at Wed Aug 23 12:38:23 UTC 2017
kill -USR1 16872
./ssl.sh: line 197: 16872 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16872 killed at Wed Aug 23 12:38:23 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:38:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:23 UTC 2017
selfserv_9223 with PID 16906 started at Wed Aug 23 12:38:23 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: #10327: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: #10328: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: #10329: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: #10330: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:23 UTC 2017
ssl.sh: #10331: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10332: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10333: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10334: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10335: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10336: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10337: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10338: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:24 UTC 2017
ssl.sh: #10339: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10340: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
ssl.sh: #10341: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
ssl.sh: #10342: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
ssl.sh: #10343: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
ssl.sh: #10344: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
ssl.sh: #10345: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
ssl.sh: #10346: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:25 UTC 2017
ssl.sh: #10347: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
ssl.sh: #10348: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
ssl.sh: #10349: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
ssl.sh: #10350: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
ssl.sh: #10351: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
ssl.sh: #10352: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
ssl.sh: #10353: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10354: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:26 UTC 2017
ssl.sh: #10355: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10356: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10357: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10358: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10359: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10360: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10361: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10362: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10363: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:27 UTC 2017
ssl.sh: #10364: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:28 UTC 2017
ssl.sh: #10365: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:28 UTC 2017
ssl.sh: #10366: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16906 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16906 found at Wed Aug 23 12:38:28 UTC 2017
ssl.sh: #10367: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16906 at Wed Aug 23 12:38:28 UTC 2017
kill -USR1 16906
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16906 killed at Wed Aug 23 12:38:28 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:28 UTC 2017
selfserv_9223 with PID 18337 started at Wed Aug 23 12:38:28 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:28 UTC 2017
ssl.sh: #10368: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:28 UTC 2017
ssl.sh: #10369: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:28 UTC 2017
ssl.sh: #10370: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10371: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10372: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10373: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10374: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10375: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10376: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10377: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:29 UTC 2017
ssl.sh: #10378: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
ssl.sh: #10379: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
ssl.sh: #10380: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10381: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
ssl.sh: #10382: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
ssl.sh: #10383: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
ssl.sh: #10384: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
ssl.sh: #10385: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:30 UTC 2017
ssl.sh: #10386: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10387: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10388: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10389: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10390: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10391: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10392: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10393: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:31 UTC 2017
ssl.sh: #10394: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10395: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10396: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10397: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10398: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10399: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10400: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10401: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10402: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:32 UTC 2017
ssl.sh: #10403: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: #10404: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: #10405: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: #10406: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: #10407: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18337 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 18337 found at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: #10408: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 18337 at Wed Aug 23 12:38:33 UTC 2017
kill -USR1 18337
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 18337 killed at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:33 UTC 2017
selfserv_9223 with PID 19772 started at Wed Aug 23 12:38:33 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: #10409: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:33 UTC 2017
ssl.sh: #10410: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10411: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10412: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10413: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10414: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10415: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10416: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10417: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10418: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10419: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:34 UTC 2017
ssl.sh: #10420: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10421: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10422: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10423: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10424: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10425: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10426: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10427: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10428: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10429: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10430: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:35 UTC 2017
ssl.sh: #10431: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10432: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10433: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10434: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10435: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10436: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10437: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10438: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10439: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10440: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:36 UTC 2017
ssl.sh: #10441: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10442: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10443: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10444: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10445: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10446: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10447: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10448: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19772 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19772 found at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: #10449: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 19772 at Wed Aug 23 12:38:37 UTC 2017
kill -USR1 19772
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19772 killed at Wed Aug 23 12:38:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:37 UTC 2017
selfserv_9223 with PID 21201 started at Wed Aug 23 12:38:37 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10450: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10451: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10452: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10453: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10454: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10455: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10456: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:38 UTC 2017
ssl.sh: #10457: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:39 UTC 2017
ssl.sh: #10458: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:39 UTC 2017
ssl.sh: #10459: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:39 UTC 2017
ssl.sh: #10460: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:39 UTC 2017
ssl.sh: #10461: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:39 UTC 2017
ssl.sh: #10462: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10463: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:39 UTC 2017
ssl.sh: #10464: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10465: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10466: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10467: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10468: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10469: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10470: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10471: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:40 UTC 2017
ssl.sh: #10472: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
ssl.sh: #10473: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
ssl.sh: #10474: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
ssl.sh: #10475: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
ssl.sh: #10476: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10477: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
ssl.sh: #10478: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
ssl.sh: #10479: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:41 UTC 2017
ssl.sh: #10480: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:42 UTC 2017
ssl.sh: #10481: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:42 UTC 2017
ssl.sh: #10482: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:42 UTC 2017
ssl.sh: #10483: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:42 UTC 2017
ssl.sh: #10484: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:42 UTC 2017
ssl.sh: #10485: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:42 UTC 2017
ssl.sh: #10486: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:42 UTC 2017
ssl.sh: #10487: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: #10488: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: #10489: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21201 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 21201 found at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: #10490: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 21201 at Wed Aug 23 12:38:43 UTC 2017
kill -USR1 21201
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 21201 killed at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:43 UTC 2017
selfserv_9223 with PID 22644 started at Wed Aug 23 12:38:43 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: #10491: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: #10492: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: #10493: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:43 UTC 2017
ssl.sh: #10494: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:44 UTC 2017
ssl.sh: #10495: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:44 UTC 2017
ssl.sh: #10496: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:44 UTC 2017
ssl.sh: #10497: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:44 UTC 2017
ssl.sh: #10498: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:44 UTC 2017
ssl.sh: #10499: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:44 UTC 2017
ssl.sh: #10500: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:44 UTC 2017
ssl.sh: #10501: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
ssl.sh: #10502: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
ssl.sh: #10503: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10504: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
ssl.sh: #10505: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
ssl.sh: #10506: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
ssl.sh: #10507: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
ssl.sh: #10508: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:45 UTC 2017
ssl.sh: #10509: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10510: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10511: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10512: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10513: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10514: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10515: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10516: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:46 UTC 2017
ssl.sh: #10517: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10518: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
ssl.sh: #10519: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
ssl.sh: #10520: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
ssl.sh: #10521: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
ssl.sh: #10522: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
ssl.sh: #10523: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
ssl.sh: #10524: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:47 UTC 2017
ssl.sh: #10525: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:48 UTC 2017
ssl.sh: #10526: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:48 UTC 2017
ssl.sh: #10527: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:48 UTC 2017
ssl.sh: #10528: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:48 UTC 2017
ssl.sh: #10529: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:48 UTC 2017
ssl.sh: #10530: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22644 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22644 found at Wed Aug 23 12:38:48 UTC 2017
ssl.sh: #10531: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22644 at Wed Aug 23 12:38:48 UTC 2017
kill -USR1 22644
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22644 killed at Wed Aug 23 12:38:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:48 UTC 2017
selfserv_9223 with PID 24091 started at Wed Aug 23 12:38:48 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10532: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10533: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10534: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10535: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10536: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10537: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10538: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10539: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10540: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:49 UTC 2017
ssl.sh: #10541: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10542: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10543: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10544: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10545: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10546: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10547: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10548: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10549: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:50 UTC 2017
ssl.sh: #10550: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10551: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10552: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10553: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10554: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10555: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10556: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10557: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
ssl.sh: #10558: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10559: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10560: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10561: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10562: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10563: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10564: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10565: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10566: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10567: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10568: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:52 UTC 2017
ssl.sh: #10569: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:53 UTC 2017
ssl.sh: #10570: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:53 UTC 2017
ssl.sh: #10571: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24091 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 24091 found at Wed Aug 23 12:38:53 UTC 2017
ssl.sh: #10572: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 24091 at Wed Aug 23 12:38:53 UTC 2017
kill -USR1 24091
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 24091 killed at Wed Aug 23 12:38:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:38:53 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:38:53 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25518 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25518 found at Wed Aug 23 12:38:53 UTC 2017
selfserv_9223 with PID 25518 started at Wed Aug 23 12:38:53 UTC 2017
trying to kill selfserv_9223 with PID 25518 at Wed Aug 23 12:38:53 UTC 2017
kill -USR1 25518
./ssl.sh: line 197: 25518 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25518 killed at Wed Aug 23 12:38:53 UTC 2017
TIMESTAMP ssl END: Wed Aug 23 12:38:53 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed Aug 23 12:38:53 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v3.30054 -t Test2 -f ../tests.pw
merge.sh: #10573: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10574: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10575: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10576: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10577: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10578: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:21 2017
            Not After : Tue Aug 23 12:18:21 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:eb:5a:de:45:b5:3d:13:ce:f2:98:03:c4:43:e7:9e:
                    40:eb:32:e8:c1:6b:06:92:6d:3b:fb:eb:94:0d:97:e2:
                    de:3a:5b:b8:a5:0c:f6:8c:f0:46:bd:ee:09:3e:d2:e4:
                    f4:da:18:98:48:ad:6f:53:2f:67:29:c1:91:5e:17:44:
                    8a:e9:5b:89:2d:86:19:24:70:76:41:7f:af:2f:20:89:
                    b1:e1:76:0b:5a:57:94:ce:77:29:94:f9:f7:2f:b9:1c:
                    e7:27:86:f0:a4:75:5e:4f:88:c5:ed:32:32:30:6a:11:
                    8f:1d:98:9c:10:b2:09:c4:6e:77:31:ba:bd:11:36:4c:
                    ca:5a:9f:0d:53:b1:99:d6:86:9a:c2:4b:7d:e0:3b:56:
                    b9:ee:28:e7:88:87:cf:e7:b5:37:f0:7e:6a:ba:dd:11:
                    a7:eb:ac:0b:56:eb:f3:24:07:1e:3d:1b:ce:b2:af:47:
                    15:54:8b:21:58:5d:cc:03:47:8b:a9:7d:03:00:95:2f:
                    25:7a:92:99:1a:ba:cf:c8:2e:b9:12:46:79:78:c8:15:
                    4b:f9:70:bd:15:1d:91:d8:7d:63:89:4b:26:c5:7a:b4:
                    fb:82:40:c2:95:bf:59:fd:1c:d6:c8:5a:86:6f:67:56:
                    bd:69:ed:f0:1f:29:1d:34:13:1b:03:09:58:e7:91:a9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:6e:35:6a:1e:03:74:bb:5a:4f:a3:22:1e:2a:65:95:
        7e:f7:6d:c5:9d:78:11:0b:f5:68:42:52:79:a8:40:17:
        9a:b8:79:5f:45:e4:ce:e1:8a:13:a2:01:5c:af:b4:75:
        4a:d7:8c:28:09:9d:5b:6f:ce:7c:86:a2:e3:ca:3b:f5:
        93:c5:8a:7e:e5:f8:46:74:b3:3f:05:80:f3:44:a9:95:
        b4:71:f8:09:15:a1:c8:6d:55:3c:67:a2:67:eb:d0:cd:
        0a:bb:dc:0e:fd:7f:89:88:2d:24:c0:56:5f:3f:84:10:
        c8:e1:07:83:80:58:6c:0b:e5:5f:94:c6:90:ee:c6:7a:
        f1:89:32:73:c0:22:0a:d5:9e:80:a6:60:75:43:b5:15:
        5b:50:1a:91:d4:b7:40:f1:37:0c:58:55:6e:4e:91:8e:
        bb:68:be:06:3c:7e:fe:1d:31:99:88:ed:8e:ff:e5:3b:
        13:9c:b7:a1:ff:e2:7a:42:6c:98:d5:a2:ac:c0:88:c1:
        c2:4e:21:c1:00:1c:43:b2:89:00:8e:0c:d7:ea:8c:ee:
        aa:4d:2e:57:98:ff:2a:25:d0:21:dd:27:99:c6:3e:aa:
        ad:1f:17:87:8d:ea:69:d4:c1:f6:d4:f2:d4:92:8f:37:
        14:8f:59:91:80:0d:56:21:fc:6f:cf:20:f5:77:11:5c
    Fingerprint (SHA-256):
        53:9C:E7:1B:27:AD:A6:5D:08:8A:41:9C:8B:69:3A:4A:E0:09:88:6B:C9:4A:8E:32:78:12:A8:93:07:39:6F:FE
    Fingerprint (SHA1):
        34:E2:AA:E6:F6:91:6F:C6:7E:84:A1:92:77:15:B6:6F:FF:02:75:5F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10579: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:18:22 2017
            Not After : Tue Aug 23 12:18:22 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:cb:e1:9d:5e:80:46:e2:ce:77:47:3f:c4:78:d2:e7:
                    15:83:b4:11:48:37:5b:3b:82:bf:a8:19:a2:20:a7:88:
                    d6:01:eb:55:a6:e9:ab:3d:63:69:c4:e8:4d:11:5d:37:
                    15:02:91:2d:9f:e2:dd:3d:d4:09:e6:7f:aa:9e:81:07:
                    5f:85:0f:37:8b:45:df:fb:f8:d7:44:e9:44:9a:7c:03:
                    da:82:27:7d:0e:4b:8b:f2:e2:93:9d:a5:4f:24:ec:09:
                    9d:52:f5:f3:31:6b:f6:24:49:20:b9:0a:79:78:02:96:
                    18:17:b6:20:31:3d:7b:91:2a:ca:4d:0d:2c:8e:71:b0:
                    12:d8:78:4c:00:1a:06:ce:fa:ac:ed:51:c9:05:4e:ef:
                    30:af:64:4e:25:44:4a:b3:55:f8:9b:97:ae:97:16:cc:
                    c7:24:b0:17:8a:ad:58:f3:3d:61:49:cb:b0:e6:31:96:
                    a2:44:98:f1:51:f9:b8:6c:c8:07:c3:a4:f0:6c:ce:00:
                    dd:85:6a:64:c2:09:30:54:06:8a:5d:e7:b4:14:b1:a4:
                    d1:87:dd:7d:c8:ab:72:8b:63:3e:ff:52:43:34:9c:28:
                    eb:6d:79:47:4a:01:1b:30:cb:9f:c0:0c:32:57:c5:21:
                    52:57:51:de:9b:4d:f8:db:62:93:54:2a:60:d1:19:27
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:67:bb:83:cb:e5:a8:fa:05:38:49:a2:3b:76:f0:14:
        ce:4d:e9:5e:10:e2:4f:8a:c2:21:9e:ac:20:3f:0c:0f:
        e6:ea:a6:3f:ef:49:c2:00:5e:9e:2a:18:70:51:57:87:
        ee:44:d9:27:f4:d0:4b:e4:a2:6e:b6:45:6d:39:c8:39:
        98:a7:f2:bb:85:9f:ab:2c:2f:d8:02:60:01:37:3f:a5:
        4b:2d:18:3e:1b:d3:cf:28:64:d1:37:7b:ed:03:5f:15:
        19:b0:27:7c:af:af:ab:6a:db:72:23:e3:aa:73:f1:15:
        39:46:3b:df:33:d9:93:18:e5:d8:12:b7:b1:9e:32:4a:
        7f:2d:61:e9:6a:83:c8:39:21:2e:9e:42:59:35:23:be:
        c8:f5:56:9b:01:9c:0c:dd:79:30:e6:37:c6:54:5c:85:
        df:58:bf:dd:36:ac:f7:4d:7d:00:76:82:08:e9:73:2a:
        de:b4:07:86:18:d7:f1:d9:55:3f:32:de:5f:4b:83:3e:
        31:04:6f:61:b8:6d:e4:00:13:1b:67:ca:bd:9a:55:14:
        16:13:c7:ac:a6:fb:b5:36:1f:9d:39:56:5f:a0:47:8c:
        0c:fc:79:97:32:54:17:bd:11:9f:bc:d2:92:8e:6f:d1:
        cd:0c:53:50:14:78:0a:c7:c3:02:0f:d5:d6:37:80:96
    Fingerprint (SHA-256):
        9F:80:04:A0:CE:27:A3:63:1E:96:D2:36:3A:A1:C9:6E:B4:BC:44:CB:59:35:1E:E5:73:1E:F9:1C:3D:DA:48:40
    Fingerprint (SHA1):
        18:18:B3:0E:D1:1C:74:F1:3D:1E:B8:AA:97:AD:E4:B2:BA:51:A6:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10580: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10581: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
chain-2-clientCA-ec                                          ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v3.30054 -t Test2 -f ../tests.pw
merge.sh: #10582: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v1.30054 -t Test1 -f ../tests.pw
merge.sh: #10583: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10584: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10585: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10586: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed Aug 23 12:18:30 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:18:08 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed Aug 23 12:18:26 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10587: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Wed Aug 23 12:38:56 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed Aug 23 12:38:56 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed Aug 23 12:38:56 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #10588: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed Aug 23 12:38:56 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed Aug 23 12:38:56 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10589: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10590: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10591: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10592: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #10593: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #10594: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed Aug 23 12:38:58 UTC 2017
TIMESTAMP ec END: Wed Aug 23 12:38:58 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed Aug 23 12:38:58 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #10595: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #10596: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #10597: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #10598: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #10599: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #10600: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #10601: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #10602: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #10603: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #10604: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #10605: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #10606: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #10607: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #10608: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #10609: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #10610: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #10611: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (0 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (0 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (46 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (87 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (133 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (25 ms)
[----------] 1 test from Pkcs11RsaPssTest (25 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (0 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (0 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (158 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #10612: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #10613: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #10614: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #10615: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #10616: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #10617: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #10618: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #10619: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #10620: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #10621: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #10622: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #10623: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #10624: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #10625: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #10626: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #10627: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #10628: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #10629: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #10630: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #10631: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #10632: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #10633: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Wed Aug 23 12:38:59 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed Aug 23 12:38:59 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #10634: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10635: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10636: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10637: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10638: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10639: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10640: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10641: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10642: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10643: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10644: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10645: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10646: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10647: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10648: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (31 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (19 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (19 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (26 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (17 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (8 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (6 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (716 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (17 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (1 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (19 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (457 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (5 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (8 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (768 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (17 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (19 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (15 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (654 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (26 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (26 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (5 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (8 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (6 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (2423 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (26 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (17 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (26 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (17 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (8 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (6 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (1216 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (6 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (46 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301aec23160b7ea20ce41de3e15b496202fd58b91f6c4a07423009e...
record new: [1184] 020000510301aec23160b7ea20ce41de3e15b496202fd58b91f6c4a07423009e...
server: Original packet: [1189] 16030104a0020000510301aec23160b7ea20ce41de3e15b496202fd58b91f6c4...
server: Filtered packet: [1189] 16030104a0020000510301aec23160b7ea20ce41de3e15b496202fd58b91f6c4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103011fa5cff0ca6f54d652030b1e639501f3d16f4e467f12bba5c407...
record new: [1184] 0200005103011fa5cff0ca6f54d652030b1e639501f3d16f4e467f12bba5c407...
server: Original packet: [1189] 16030104a00200005103011fa5cff0ca6f54d652030b1e639501f3d16f4e467f...
server: Filtered packet: [1189] 16030104a00200005103011fa5cff0ca6f54d652030b1e639501f3d16f4e467f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103013c8dffadc99fc5aec452ea2bb555dd5d717f0f5cd22bc138bb19...
record new: [1184] 0200005103013c8dffadc99fc5aec452ea2bb555dd5d717f0f5cd22bc138bb19...
server: Original packet: [1189] 16030104a00200005103013c8dffadc99fc5aec452ea2bb555dd5d717f0f5cd2...
server: Filtered packet: [1189] 16030104a00200005103013c8dffadc99fc5aec452ea2bb555dd5d717f0f5cd2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301f81d82a8fca2f2ac4030cd0a9def833e07a95ad911c630fd6db5...
record new: [1184] 020000510301f81d82a8fca2f2ac4030cd0a9def833e07a95ad911c630fd6db5...
server: Original packet: [1189] 16030104a0020000510301f81d82a8fca2f2ac4030cd0a9def833e07a95ad911...
server: Filtered packet: [1189] 16030104a0020000510301f81d82a8fca2f2ac4030cd0a9def833e07a95ad911...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103014f69de82283b4ef044d2a050c91bdf9bc3aa031b12f6865d2650...
record new: [1184] 0200005103014f69de82283b4ef044d2a050c91bdf9bc3aa031b12f6865d2650...
server: Original packet: [1189] 16030104a00200005103014f69de82283b4ef044d2a050c91bdf9bc3aa031b12...
server: Filtered packet: [1189] 16030104a00200005103014f69de82283b4ef044d2a050c91bdf9bc3aa031b12...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301dd0b37ded7a7def9b89062dcb487a0d65883d0d68840302a2e63...
record new: [1184] 020000510301dd0b37ded7a7def9b89062dcb487a0d65883d0d68840302a2e63...
server: Original packet: [1189] 16030104a0020000510301dd0b37ded7a7def9b89062dcb487a0d65883d0d688...
server: Filtered packet: [1189] 16030104a0020000510301dd0b37ded7a7def9b89062dcb487a0d65883d0d688...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030169a57c84767c16ffdfab793e2c2e6b5e7b4e7632bf282a16cc5b...
record new: [1184] 02000051030169a57c84767c16ffdfab793e2c2e6b5e7b4e7632bf282a16cc5b...
server: Original packet: [1189] 16030104a002000051030169a57c84767c16ffdfab793e2c2e6b5e7b4e7632bf...
server: Filtered packet: [1189] 16030104a002000051030169a57c84767c16ffdfab793e2c2e6b5e7b4e7632bf...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103018fcc744268a5479555bb8957439ce31ddefeed0a3e06d575a23d...
record new: [1184] 0200005103018fcc744268a5479555bb8957439ce31ddefeed0a3e06d575a23d...
server: Original packet: [1189] 16030104a00200005103018fcc744268a5479555bb8957439ce31ddefeed0a3e...
server: Filtered packet: [1189] 16030104a00200005103018fcc744268a5479555bb8957439ce31ddefeed0a3e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d8d3775ef0a975185ca687893291575e69b0adfaf419e6153b89...
record new: [1185] 020000510301d8d3775ef0a975185ca687893291575e69b0adfaf419e6153b89...
server: Original packet: [1189] 16030104a0020000510301d8d3775ef0a975185ca687893291575e69b0adfaf4...
server: Filtered packet: [1190] 16030104a1020000510301d8d3775ef0a975185ca687893291575e69b0adfaf4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301caf1e8b84e442960559b9fcdf89266adc29355c6e87d4cc7334b...
record new: [1185] 020000510301caf1e8b84e442960559b9fcdf89266adc29355c6e87d4cc7334b...
server: Original packet: [1189] 16030104a0020000510301caf1e8b84e442960559b9fcdf89266adc29355c6e8...
server: Filtered packet: [1190] 16030104a1020000510301caf1e8b84e442960559b9fcdf89266adc29355c6e8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301189cd461f8b2c951cedc38db5609660dfce6e9bfa3be64b2a264...
record new: [1185] 020000510301189cd461f8b2c951cedc38db5609660dfce6e9bfa3be64b2a264...
server: Original packet: [1189] 16030104a0020000510301189cd461f8b2c951cedc38db5609660dfce6e9bfa3...
server: Filtered packet: [1190] 16030104a1020000510301189cd461f8b2c951cedc38db5609660dfce6e9bfa3...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103016403ca9b5fceb16d36cc6831842173e2ab82998e8695b217979b...
record new: [1185] 0200005103016403ca9b5fceb16d36cc6831842173e2ab82998e8695b217979b...
server: Original packet: [1189] 16030104a00200005103016403ca9b5fceb16d36cc6831842173e2ab82998e86...
server: Filtered packet: [1190] 16030104a10200005103016403ca9b5fceb16d36cc6831842173e2ab82998e86...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030299795a623a4d268fb6cc09b7137464e7cbe00bb05af12f60720e...
record new: [1184] 02000051030299795a623a4d268fb6cc09b7137464e7cbe00bb05af12f60720e...
server: Original packet: [1189] 16030204a002000051030299795a623a4d268fb6cc09b7137464e7cbe00bb05a...
server: Filtered packet: [1189] 16030204a002000051030299795a623a4d268fb6cc09b7137464e7cbe00bb05a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103025d6224fdb0ed445f21e8336a53e3dad75fc5311ea9c48ea4e74e...
record new: [1184] 0200005103025d6224fdb0ed445f21e8336a53e3dad75fc5311ea9c48ea4e74e...
server: Original packet: [1189] 16030204a00200005103025d6224fdb0ed445f21e8336a53e3dad75fc5311ea9...
server: Filtered packet: [1189] 16030204a00200005103025d6224fdb0ed445f21e8336a53e3dad75fc5311ea9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a5a461819652dd590cb239b6d3c5facd0e11ca43729e60ce53d0...
record new: [1184] 020000510302a5a461819652dd590cb239b6d3c5facd0e11ca43729e60ce53d0...
server: Original packet: [1189] 16030204a0020000510302a5a461819652dd590cb239b6d3c5facd0e11ca4372...
server: Filtered packet: [1189] 16030204a0020000510302a5a461819652dd590cb239b6d3c5facd0e11ca4372...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302e3b3a19b45578ad47fad31f21aaedb69e44d71f8f30352925c66...
record new: [1184] 020000510302e3b3a19b45578ad47fad31f21aaedb69e44d71f8f30352925c66...
server: Original packet: [1189] 16030204a0020000510302e3b3a19b45578ad47fad31f21aaedb69e44d71f8f3...
server: Filtered packet: [1189] 16030204a0020000510302e3b3a19b45578ad47fad31f21aaedb69e44d71f8f3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103022891226a8a8ccf93250d53d237df09f7d902e23e56526479163d...
record new: [1184] 0200005103022891226a8a8ccf93250d53d237df09f7d902e23e56526479163d...
server: Original packet: [1189] 16030204a00200005103022891226a8a8ccf93250d53d237df09f7d902e23e56...
server: Filtered packet: [1189] 16030204a00200005103022891226a8a8ccf93250d53d237df09f7d902e23e56...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302151eee824e458c2b9f862a2ea14b01409370b498dca3b17b7be9...
record new: [1184] 020000510302151eee824e458c2b9f862a2ea14b01409370b498dca3b17b7be9...
server: Original packet: [1189] 16030204a0020000510302151eee824e458c2b9f862a2ea14b01409370b498dc...
server: Filtered packet: [1189] 16030204a0020000510302151eee824e458c2b9f862a2ea14b01409370b498dc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030291fa25a12c7e6709e2bc52df63ac7c96c911e6117af647fd297f...
record new: [1184] 02000051030291fa25a12c7e6709e2bc52df63ac7c96c911e6117af647fd297f...
server: Original packet: [1189] 16030204a002000051030291fa25a12c7e6709e2bc52df63ac7c96c911e6117a...
server: Filtered packet: [1189] 16030204a002000051030291fa25a12c7e6709e2bc52df63ac7c96c911e6117a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302ee00abfa4e82651f19ff469b41f554aeb0bb49940d1bda01c76e...
record new: [1184] 020000510302ee00abfa4e82651f19ff469b41f554aeb0bb49940d1bda01c76e...
server: Original packet: [1189] 16030204a0020000510302ee00abfa4e82651f19ff469b41f554aeb0bb49940d...
server: Filtered packet: [1189] 16030204a0020000510302ee00abfa4e82651f19ff469b41f554aeb0bb49940d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030204316b20fe510f849e35e3777a37176380aaa51d0b97f8123b0f...
record new: [1185] 02000051030204316b20fe510f849e35e3777a37176380aaa51d0b97f8123b0f...
server: Original packet: [1189] 16030204a002000051030204316b20fe510f849e35e3777a37176380aaa51d0b...
server: Filtered packet: [1190] 16030204a102000051030204316b20fe510f849e35e3777a37176380aaa51d0b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302e5c3f734b2a17f32fb4d1a7c96e384316b4ed5f56d20cc1a77de...
record new: [1185] 020000510302e5c3f734b2a17f32fb4d1a7c96e384316b4ed5f56d20cc1a77de...
server: Original packet: [1189] 16030204a0020000510302e5c3f734b2a17f32fb4d1a7c96e384316b4ed5f56d...
server: Filtered packet: [1190] 16030204a1020000510302e5c3f734b2a17f32fb4d1a7c96e384316b4ed5f56d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021dd76f4de70ccf22f3de02f125960604374a65f88a21774f3abe...
record new: [1185] 0200005103021dd76f4de70ccf22f3de02f125960604374a65f88a21774f3abe...
server: Original packet: [1189] 16030204a00200005103021dd76f4de70ccf22f3de02f125960604374a65f88a...
server: Filtered packet: [1190] 16030204a10200005103021dd76f4de70ccf22f3de02f125960604374a65f88a...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302692eee0ba1bce47d54064872388bd4fe2a808934358135cb6e23...
record new: [1185] 020000510302692eee0ba1bce47d54064872388bd4fe2a808934358135cb6e23...
server: Original packet: [1189] 16030204a0020000510302692eee0ba1bce47d54064872388bd4fe2a80893435...
server: Filtered packet: [1190] 16030204a1020000510302692eee0ba1bce47d54064872388bd4fe2a80893435...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303871e4df2a120b8be04ba1db4af7544080c6ef520cf3544127ae8...
record new: [1186] 020000510303871e4df2a120b8be04ba1db4af7544080c6ef520cf3544127ae8...
server: Original packet: [1191] 16030304a2020000510303871e4df2a120b8be04ba1db4af7544080c6ef520cf...
server: Filtered packet: [1191] 16030304a2020000510303871e4df2a120b8be04ba1db4af7544080c6ef520cf...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030392e8a466b1c82c42c8a3aadb21117be2a2a71578a21d86666802...
record new: [1186] 02000051030392e8a466b1c82c42c8a3aadb21117be2a2a71578a21d86666802...
server: Original packet: [1191] 16030304a202000051030392e8a466b1c82c42c8a3aadb21117be2a2a71578a2...
server: Filtered packet: [1191] 16030304a202000051030392e8a466b1c82c42c8a3aadb21117be2a2a71578a2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103032e3946e929cf7c8d5a7ec370eb779c0643f1bf5b2f35c703b26d...
record new: [1186] 0200005103032e3946e929cf7c8d5a7ec370eb779c0643f1bf5b2f35c703b26d...
server: Original packet: [1191] 16030304a20200005103032e3946e929cf7c8d5a7ec370eb779c0643f1bf5b2f...
server: Filtered packet: [1191] 16030304a20200005103032e3946e929cf7c8d5a7ec370eb779c0643f1bf5b2f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103034d085def74ddeaaee083ff703345e6459a531176fff8c4e55623...
record new: [1186] 0200005103034d085def74ddeaaee083ff703345e6459a531176fff8c4e55623...
server: Original packet: [1191] 16030304a20200005103034d085def74ddeaaee083ff703345e6459a531176ff...
server: Filtered packet: [1191] 16030304a20200005103034d085def74ddeaaee083ff703345e6459a531176ff...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103034c1b51b50a92984ba553676ae607fbdea1a805ee452e4caf1256...
record new: [1186] 0200005103034c1b51b50a92984ba553676ae607fbdea1a805ee452e4caf1256...
server: Original packet: [1191] 16030304a20200005103034c1b51b50a92984ba553676ae607fbdea1a805ee45...
server: Filtered packet: [1191] 16030304a20200005103034c1b51b50a92984ba553676ae607fbdea1a805ee45...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030300fbe3dfb7146dc9b74baadecf8f1528d31412eb5c38aa50590c...
record new: [1186] 02000051030300fbe3dfb7146dc9b74baadecf8f1528d31412eb5c38aa50590c...
server: Original packet: [1191] 16030304a202000051030300fbe3dfb7146dc9b74baadecf8f1528d31412eb5c...
server: Filtered packet: [1191] 16030304a202000051030300fbe3dfb7146dc9b74baadecf8f1528d31412eb5c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303e05004ef3117b8d74c890c4f0f211922b56c92d79bb331b1559d...
record new: [1186] 020000510303e05004ef3117b8d74c890c4f0f211922b56c92d79bb331b1559d...
server: Original packet: [1191] 16030304a2020000510303e05004ef3117b8d74c890c4f0f211922b56c92d79b...
server: Filtered packet: [1191] 16030304a2020000510303e05004ef3117b8d74c890c4f0f211922b56c92d79b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103034b9bedc721b4e9582b325e8d6b8f3bfa50e087cfd9ac3866fd1a...
record new: [1186] 0200005103034b9bedc721b4e9582b325e8d6b8f3bfa50e087cfd9ac3866fd1a...
server: Original packet: [1191] 16030304a20200005103034b9bedc721b4e9582b325e8d6b8f3bfa50e087cfd9...
server: Filtered packet: [1191] 16030304a20200005103034b9bedc721b4e9582b325e8d6b8f3bfa50e087cfd9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f44fce390860a8ebc530230a7d3645f0edcfd8796378be4ec167...
record new: [1187] 020000510303f44fce390860a8ebc530230a7d3645f0edcfd8796378be4ec167...
server: Original packet: [1191] 16030304a2020000510303f44fce390860a8ebc530230a7d3645f0edcfd87963...
server: Filtered packet: [1192] 16030304a3020000510303f44fce390860a8ebc530230a7d3645f0edcfd87963...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303bed2dd3a106f7f134558739424134bd48bd5cf5c0c063b440088...
record new: [1187] 020000510303bed2dd3a106f7f134558739424134bd48bd5cf5c0c063b440088...
server: Original packet: [1191] 16030304a2020000510303bed2dd3a106f7f134558739424134bd48bd5cf5c0c...
server: Filtered packet: [1192] 16030304a3020000510303bed2dd3a106f7f134558739424134bd48bd5cf5c0c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103032bf6eded94b29a7499a2f15423f6a27a5e8d18a1f30ebd2186be...
record new: [1187] 0200005103032bf6eded94b29a7499a2f15423f6a27a5e8d18a1f30ebd2186be...
server: Original packet: [1191] 16030304a20200005103032bf6eded94b29a7499a2f15423f6a27a5e8d18a1f3...
server: Filtered packet: [1192] 16030304a30200005103032bf6eded94b29a7499a2f15423f6a27a5e8d18a1f3...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030326dcc58c2ca01b92ca9daa53bf41c1311907f6729ec14d96f659...
record new: [1187] 02000051030326dcc58c2ca01b92ca9daa53bf41c1311907f6729ec14d96f659...
server: Original packet: [1191] 16030304a202000051030326dcc58c2ca01b92ca9daa53bf41c1311907f6729e...
server: Filtered packet: [1192] 16030304a302000051030326dcc58c2ca01b92ca9daa53bf41c1311907f6729e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c6b6602ff8fb7225fb289f48d128cd6152ee0383d61bcf1c90ccb104f57d...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c6b6602ff8fb7225fb289f48d128cd6152ee0383d61bcf1c90cc...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100c6b6602ff8fb7225fb289f48d128cd6152ee0383d6...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c3c4bf862ebb6bc72ddabca1284d87ef942aaaebd7af11f7e6195f761354...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c3c4bf862ebb6bc72ddabca1284d87ef942aaaebd7af11f7e619...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100c3c4bf862ebb6bc72ddabca1284d87ef942aaaebd7...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004565924f5324132e29d21cc0cb76211d4975546f5c77c55ec16ed3078a76...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201004565924f5324132e29d21cc0cb76211d4975546f5c77c55ec16e...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201004565924f5324132e29d21cc0cb76211d4975546f5c...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e25f4c981b0ae651ed951f6621f55fbe6d94c3645d4625ad6b8815d7f1a0...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e25f4c981b0ae651ed951f6621f55fbe6d94c3645d4625ad6b88...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100e25f4c981b0ae651ed951f6621f55fbe6d94c3645d...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100991ceeb1fda195880b08020fc8b6454a8ba437e48b22d3df134084968917...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100991ceeb1fda195880b08020fc8b6454a8ba437e48b22d3df1340...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100991ceeb1fda195880b08020fc8b6454a8ba437e48b...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010058143ae538d1391fb343643232e82b0e7ba3d828d5a7584871403aabcd59...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010058143ae538d1391fb343643232e82b0e7ba3d828d5a758487140...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 160301010610000102010058143ae538d1391fb343643232e82b0e7ba3d828d5...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bf43b2ab2a61083c4ffa2c128f82752866276691541ca11628044cb5b643...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100bf43b2ab2a61083c4ffa2c128f82752866276691541ca1162804...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100bf43b2ab2a61083c4ffa2c128f8275286627669154...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ede1f6167f128d2444011a38ae44b0895c4cf74b29638d058e06eb3aa4fb...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100ede1f6167f128d2444011a38ae44b0895c4cf74b29638d058e06...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100ede1f6167f128d2444011a38ae44b0895c4cf74b29...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002cdc79d883431deeb1709028d7b327be1570776c88bf7be9a6737ac14d80...
handshake new: [259] 0101012cdc79d883431deeb1709028d7b327be1570776c88bf7be9a6737ac14d...
record old: [262] 1000010201002cdc79d883431deeb1709028d7b327be1570776c88bf7be9a673...
record new: [263] 100001030101012cdc79d883431deeb1709028d7b327be1570776c88bf7be9a6...
client: Original packet: [326] 16030101061000010201002cdc79d883431deeb1709028d7b327be1570776c88...
client: Filtered packet: [327] 1603010107100001030101012cdc79d883431deeb1709028d7b327be1570776c...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e6ccb4018484de28e7a712a00d01f3909f69ef6ab6bc1ed3c5b3521f702b...
handshake new: [259] 010101e6ccb4018484de28e7a712a00d01f3909f69ef6ab6bc1ed3c5b3521f70...
record old: [262] 100001020100e6ccb4018484de28e7a712a00d01f3909f69ef6ab6bc1ed3c5b3...
record new: [263] 10000103010101e6ccb4018484de28e7a712a00d01f3909f69ef6ab6bc1ed3c5...
client: Original packet: [326] 1603010106100001020100e6ccb4018484de28e7a712a00d01f3909f69ef6ab6...
client: Filtered packet: [327] 160301010710000103010101e6ccb4018484de28e7a712a00d01f3909f69ef6a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009649afa0fd5198baa489201c5d229f4aef70692c0e1404f515597308bc41...
handshake new: [259] 0101009649afa0fd5198baa489201c5d229f4aef70692c0e1404f515597308bc...
record old: [262] 1000010201009649afa0fd5198baa489201c5d229f4aef70692c0e1404f51559...
record new: [263] 100001030101009649afa0fd5198baa489201c5d229f4aef70692c0e1404f515...
client: Original packet: [326] 16030101061000010201009649afa0fd5198baa489201c5d229f4aef70692c0e...
client: Filtered packet: [327] 1603010107100001030101009649afa0fd5198baa489201c5d229f4aef70692c...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c3d9ba6ad40ac3a9bb43695555428745b8673fb25e7fe4295048d359da95...
handshake new: [259] 010100c3d9ba6ad40ac3a9bb43695555428745b8673fb25e7fe4295048d359da...
record old: [262] 100001020100c3d9ba6ad40ac3a9bb43695555428745b8673fb25e7fe4295048...
record new: [263] 10000103010100c3d9ba6ad40ac3a9bb43695555428745b8673fb25e7fe42950...
client: Original packet: [326] 1603010106100001020100c3d9ba6ad40ac3a9bb43695555428745b8673fb25e...
client: Filtered packet: [327] 160301010710000103010100c3d9ba6ad40ac3a9bb43695555428745b8673fb2...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000339851871845302bdfb6a425be20f3c404993d888d05909f4620065e723...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201000339851871845302bdfb6a425be20f3c404993d888d05909f462...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201000339851871845302bdfb6a425be20f3c404993d888...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007388c25dae6e769a20d399a77033f687623effa1e1af2e396be469beb767...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201007388c25dae6e769a20d399a77033f687623effa1e1af2e396be4...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201007388c25dae6e769a20d399a77033f687623effa1e1...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002c6567b2b84c113a2eb82d51921fdf6c16a4dad8f466381a2bf6b8cfc578...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201002c6567b2b84c113a2eb82d51921fdf6c16a4dad8f466381a2bf6...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201002c6567b2b84c113a2eb82d51921fdf6c16a4dad8f4...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100afda804477601352fb683238431b847724478e6009568bc7532c13a8cd67...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100afda804477601352fb683238431b847724478e6009568bc7532c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100afda804477601352fb683238431b847724478e6009...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c8cd5b9efb7cea7e2ba7d87ba6b72a88a0e2f811ed558a867ee4fcf8a5dc...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100c8cd5b9efb7cea7e2ba7d87ba6b72a88a0e2f811ed558a867ee4...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100c8cd5b9efb7cea7e2ba7d87ba6b72a88a0e2f811ed...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009f2eee216e6b78a0fd7ad27487a03f65239164781195270e312d9d10c21f...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201009f2eee216e6b78a0fd7ad27487a03f65239164781195270e312d...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 16030201061000010201009f2eee216e6b78a0fd7ad27487a03f652391647811...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002d12cc3662eec8ff417406853ea4b5618f59c6fca3027995f9f9396b56cd...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201002d12cc3662eec8ff417406853ea4b5618f59c6fca3027995f9f9...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 16030201061000010201002d12cc3662eec8ff417406853ea4b5618f59c6fca3...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100cb244b9416427fdd2b5a0ba474cccbed46ce929b4be31c8c3ffdb5a7b44d...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100cb244b9416427fdd2b5a0ba474cccbed46ce929b4be31c8c3ffd...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100cb244b9416427fdd2b5a0ba474cccbed46ce929b4b...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003b2b22fcc4841c1663eb7c84b356e6e0c9e3f8e30ad2d5cecac4597f8f03...
handshake new: [259] 0101013b2b22fcc4841c1663eb7c84b356e6e0c9e3f8e30ad2d5cecac4597f8f...
record old: [262] 1000010201003b2b22fcc4841c1663eb7c84b356e6e0c9e3f8e30ad2d5cecac4...
record new: [263] 100001030101013b2b22fcc4841c1663eb7c84b356e6e0c9e3f8e30ad2d5ceca...
client: Original packet: [342] 16030201061000010201003b2b22fcc4841c1663eb7c84b356e6e0c9e3f8e30a...
client: Filtered packet: [343] 1603020107100001030101013b2b22fcc4841c1663eb7c84b356e6e0c9e3f8e3...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010080c57fcf1750692b6c065db13f030651855593b619ca729d2a05c4374651...
handshake new: [259] 01010180c57fcf1750692b6c065db13f030651855593b619ca729d2a05c43746...
record old: [262] 10000102010080c57fcf1750692b6c065db13f030651855593b619ca729d2a05...
record new: [263] 1000010301010180c57fcf1750692b6c065db13f030651855593b619ca729d2a...
client: Original packet: [342] 160302010610000102010080c57fcf1750692b6c065db13f030651855593b619...
client: Filtered packet: [343] 16030201071000010301010180c57fcf1750692b6c065db13f030651855593b6...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002a606e0509f3674f533703af25e3d6e6ca65c74bc4f728fa7833df281225...
handshake new: [259] 0101002a606e0509f3674f533703af25e3d6e6ca65c74bc4f728fa7833df2812...
record old: [262] 1000010201002a606e0509f3674f533703af25e3d6e6ca65c74bc4f728fa7833...
record new: [263] 100001030101002a606e0509f3674f533703af25e3d6e6ca65c74bc4f728fa78...
client: Original packet: [342] 16030201061000010201002a606e0509f3674f533703af25e3d6e6ca65c74bc4...
client: Filtered packet: [343] 1603020107100001030101002a606e0509f3674f533703af25e3d6e6ca65c74b...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (10 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a9bfa3387c95f149121bd3a25ae7f40d5c9228fee85151ed84a4b1785054...
handshake new: [259] 010100a9bfa3387c95f149121bd3a25ae7f40d5c9228fee85151ed84a4b17850...
record old: [262] 100001020100a9bfa3387c95f149121bd3a25ae7f40d5c9228fee85151ed84a4...
record new: [263] 10000103010100a9bfa3387c95f149121bd3a25ae7f40d5c9228fee85151ed84...
client: Original packet: [342] 1603020106100001020100a9bfa3387c95f149121bd3a25ae7f40d5c9228fee8...
client: Filtered packet: [343] 160302010710000103010100a9bfa3387c95f149121bd3a25ae7f40d5c9228fe...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009c9749c3a18fba9d142f731618293f43d5df7ab5141ea44a8ee066e9deaa...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201009c9749c3a18fba9d142f731618293f43d5df7ab5141ea44a8ee0...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201009c9749c3a18fba9d142f731618293f43d5df7ab514...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010025dee08cf135d78f711e45e20c861ac5e07a714c2a9ed593cdc845aa2a50...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010025dee08cf135d78f711e45e20c861ac5e07a714c2a9ed593cdc8...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010025dee08cf135d78f711e45e20c861ac5e07a714c2a...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004575e9f054ebc973da190b2368280d5b8f160d0c6997799a7fb7b959839e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201004575e9f054ebc973da190b2368280d5b8f160d0c6997799a7fb7...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201004575e9f054ebc973da190b2368280d5b8f160d0c69...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010012ba70d5d3192c279069794cb58260df1a99298a59159ed2a9b677dfed12...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010012ba70d5d3192c279069794cb58260df1a99298a59159ed2a9b6...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010012ba70d5d3192c279069794cb58260df1a99298a59...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005616dd42a98eb51fe724550646dfdef6a6eae16a589b6c1b7e4cc2fb32b9...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201005616dd42a98eb51fe724550646dfdef6a6eae16a589b6c1b7e4c...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201005616dd42a98eb51fe724550646dfdef6a6eae16a58...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010097debeaafd282e98805738431b4bf29862444053c3afb86875bb9442581a...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010097debeaafd282e98805738431b4bf29862444053c3afb86875bb...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 160303010610000102010097debeaafd282e98805738431b4bf29862444053c3...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002a540667173c3e663fc735678f30511ae6889005ee599a04c61cd2b7449f...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201002a540667173c3e663fc735678f30511ae6889005ee599a04c61c...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 16030301061000010201002a540667173c3e663fc735678f30511ae6889005ee...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100607a3305bab2d71853007c186f894c17c9a1dbeb9256a9741be4db421057...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100607a3305bab2d71853007c186f894c17c9a1dbeb9256a9741be4...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100607a3305bab2d71853007c186f894c17c9a1dbeb92...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100376e6edc16b8712050f510de693844427838b853d5563a7def394bdb7800...
handshake new: [259] 010101376e6edc16b8712050f510de693844427838b853d5563a7def394bdb78...
record old: [262] 100001020100376e6edc16b8712050f510de693844427838b853d5563a7def39...
record new: [263] 10000103010101376e6edc16b8712050f510de693844427838b853d5563a7def...
client: Original packet: [318] 1603030106100001020100376e6edc16b8712050f510de693844427838b853d5...
client: Filtered packet: [319] 160303010710000103010101376e6edc16b8712050f510de693844427838b853...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c0c9085c910690a6e9dc0e86a10de681b6f0b541ed4bba2eeb8c8399fd43...
handshake new: [259] 010101c0c9085c910690a6e9dc0e86a10de681b6f0b541ed4bba2eeb8c8399fd...
record old: [262] 100001020100c0c9085c910690a6e9dc0e86a10de681b6f0b541ed4bba2eeb8c...
record new: [263] 10000103010101c0c9085c910690a6e9dc0e86a10de681b6f0b541ed4bba2eeb...
client: Original packet: [318] 1603030106100001020100c0c9085c910690a6e9dc0e86a10de681b6f0b541ed...
client: Filtered packet: [319] 160303010710000103010101c0c9085c910690a6e9dc0e86a10de681b6f0b541...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010073696805132b6330207357cab26c68da635ca28fcc3e29e0ef4b935db3a5...
handshake new: [259] 01010073696805132b6330207357cab26c68da635ca28fcc3e29e0ef4b935db3...
record old: [262] 10000102010073696805132b6330207357cab26c68da635ca28fcc3e29e0ef4b...
record new: [263] 1000010301010073696805132b6330207357cab26c68da635ca28fcc3e29e0ef...
client: Original packet: [318] 160303010610000102010073696805132b6330207357cab26c68da635ca28fcc...
client: Filtered packet: [319] 16030301071000010301010073696805132b6330207357cab26c68da635ca28f...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010027eb873dbf6ea00baae361aefefdd5bc0167ff9558f2f3770f34b01fdb89...
handshake new: [259] 01010027eb873dbf6ea00baae361aefefdd5bc0167ff9558f2f3770f34b01fdb...
record old: [262] 10000102010027eb873dbf6ea00baae361aefefdd5bc0167ff9558f2f3770f34...
record new: [263] 1000010301010027eb873dbf6ea00baae361aefefdd5bc0167ff9558f2f3770f...
client: Original packet: [318] 160303010610000102010027eb873dbf6ea00baae361aefefdd5bc0167ff9558...
client: Filtered packet: [319] 16030301071000010301010027eb873dbf6ea00baae361aefefdd5bc0167ff95...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (9 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (520 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0982866740...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0982866740...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff522272f6cc...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff522272f6cc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff20b49c8cea...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff20b49c8cea...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc6fed0d1b0...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc6fed0d1b0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff33ef8bbb88...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff33ef8bbb88...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff2ad7896f2...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff2ad7896f2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc7e661c4a7...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc7e661c4a7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff47260354d0...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff47260354d0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefffd205729a3...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051fefffd205729a3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0a0d382f04...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff0a0d382f04...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5b69a38218...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff5b69a38218...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3cd80f0e04...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff3cd80f0e04...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefddfe7c4b72e...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefddfe7c4b72e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc3d0634f12...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc3d0634f12...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8eb0d1787b...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8eb0d1787b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8a4d8ed78b...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8a4d8ed78b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd67ad0bd026...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd67ad0bd026...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8b108cc13f...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8b108cc13f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4a6032a8f3...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4a6032a8f3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf67e7674c4...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf67e7674c4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2d2deb2ee5...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd2d2deb2ee5...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc7a8a37afa...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdc7a8a37afa...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2cb594c90e...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd2cb594c90e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd893174718c...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd893174718c...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fece8098e7b3f6da27105a9839d7632d349506371b995fbb3d35f5715262...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100fece8098e7b3f6da27105a9839d7632d3495...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100fece8098e7...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010093624f7974d2af5026746dece4e23447043ddbbe9b4683a83526be728a7b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010093624f7974d2af5026746dece4e23447043d...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010093624f7974...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009a3ee1e8058689cfd6454e618207470218b4cb7b1913a88368e68101837a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201009a3ee1e8058689cfd6454e618207470218b4...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201009a3ee1e805...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010005fe48e69566c7cc3653c946b97e68f6be9d89d417aa96da65c7460c73e1...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010005fe48e69566c7cc3653c946b97e68f6be9d...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010005fe48e695...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b498e91e70a116034fe471fd0a22e7d34019ff39e62fbe4d4f1c0ac6b6ff...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100b498e91e70a116034fe471fd0a22e7d34019...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100b498e91e70...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ac221f12fd91cb8239082de795b54d842ea2e79a32f8ebece6bd38970786...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100ac221f12fd91cb8239082de795b54d842ea2...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ac221f12fd...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010086e6c59a098fce2de847cc9c04657eb45dddea52e58183444192861382f7...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 100001020001000000000102010086e6c59a098fce2de847cc9c04657eb45ddd...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010086e6c59a09...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a9237423ae94a677fa64a2fa29c483988ef0e5456355cd3e58f90a144891...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100a9237423ae94a677fa64a2fa29c483988ef0...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100a9237423ae...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009e6055e7ef78ad13e422a5bbe55966823fb91de1ceaf8da01302c159d575...
handshake new: [259] 0101019e6055e7ef78ad13e422a5bbe55966823fb91de1ceaf8da01302c159d5...
record old: [270] 10000102000100000000010201009e6055e7ef78ad13e422a5bbe55966823fb9...
record new: [271] 1000010300010000000001030101019e6055e7ef78ad13e422a5bbe55966823f...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201009e6055e7ef...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101019e6055e7...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fb0dd1a2cef524d7f109742b9fe3c5ac30574e460f52bc2cfb25f6c42404...
handshake new: [259] 010101fb0dd1a2cef524d7f109742b9fe3c5ac30574e460f52bc2cfb25f6c424...
record old: [270] 1000010200010000000001020100fb0dd1a2cef524d7f109742b9fe3c5ac3057...
record new: [271] 100001030001000000000103010101fb0dd1a2cef524d7f109742b9fe3c5ac30...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100fb0dd1a2ce...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101fb0dd1a2...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fc78acea07acc150a9919d8ec792fedfac865ae854d3a5cbd36fb454dbbb...
handshake new: [259] 010100fc78acea07acc150a9919d8ec792fedfac865ae854d3a5cbd36fb454db...
record old: [270] 1000010200010000000001020100fc78acea07acc150a9919d8ec792fedfac86...
record new: [271] 100001030001000000000103010100fc78acea07acc150a9919d8ec792fedfac...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100fc78acea07...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100fc78acea...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010028d407743f34a6a28f9f2b818dccbf26ea267725c13b08a5d91105d13f6e...
handshake new: [259] 01010028d407743f34a6a28f9f2b818dccbf26ea267725c13b08a5d91105d13f...
record old: [270] 100001020001000000000102010028d407743f34a6a28f9f2b818dccbf26ea26...
record new: [271] 10000103000100000000010301010028d407743f34a6a28f9f2b818dccbf26ea...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010028d407743f...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010028d40774...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e7bdd05b15f0dcfb76291374edd2fc8b45195bcaee446b1261bef1541015...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100e7bdd05b15f0dcfb76291374edd2fc8b4519...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100e7bdd05b15...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b80298b941b3172977522c174761989ac4f39b85a77b3944d7a5bc557ed5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100b80298b941b3172977522c174761989ac4f3...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100b80298b941...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010043069c30c8127016c27481ed8b2c83f545a5abd1e158724a29dcdb9997ed...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010043069c30c8127016c27481ed8b2c83f545a5...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010043069c30c8...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b59c0ee1dfd14cbbfe717ee925e86c3eddfc91d0ad5f81d46f6eb64129cd...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100b59c0ee1dfd14cbbfe717ee925e86c3eddfc...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100b59c0ee1df...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100746cecd35864115f140fdc60252c548e984c79c1956f09753c08bb7de578...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100746cecd35864115f140fdc60252c548e984c...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100746cecd358...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004b3202c8f57cf63b185632a47881ebef6789ac8b29ca340451d521da305b...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201004b3202c8f57cf63b185632a47881ebef6789...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201004b3202c8f5...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000236cba6ae0ae755c4783e1d4bd3e3651aced70f42791fe7e824b453f574...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201000236cba6ae0ae755c4783e1d4bd3e3651ace...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201000236cba6ae...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008739c244f3514d7ee63f5a79e7ff2dcc992084706f99fda35796fb42dfe8...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201008739c244f3514d7ee63f5a79e7ff2dcc9920...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201008739c244f3...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010006b91126cc1b604ba33d4ddbcfe1447a72b761f8de6d8082ec2fa36946ea...
handshake new: [259] 01010106b91126cc1b604ba33d4ddbcfe1447a72b761f8de6d8082ec2fa36946...
record old: [270] 100001020001000000000102010006b91126cc1b604ba33d4ddbcfe1447a72b7...
record new: [271] 10000103000100000000010301010106b91126cc1b604ba33d4ddbcfe1447a72...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010006b91126cc...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010106b91126...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010053b8f5fade05d8b6e6d7bbf107d7477116a29ba90177d7bb103b37097220...
handshake new: [259] 01010153b8f5fade05d8b6e6d7bbf107d7477116a29ba90177d7bb103b370972...
record old: [270] 100001020001000000000102010053b8f5fade05d8b6e6d7bbf107d7477116a2...
record new: [271] 10000103000100000000010301010153b8f5fade05d8b6e6d7bbf107d7477116...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010053b8f5fade...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010153b8f5fa...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100709cc61f589459f45d3d7ba32860f1935d1b706a42fb4ecffa75212de79f...
handshake new: [259] 010100709cc61f589459f45d3d7ba32860f1935d1b706a42fb4ecffa75212de7...
record old: [270] 1000010200010000000001020100709cc61f589459f45d3d7ba32860f1935d1b...
record new: [271] 100001030001000000000103010100709cc61f589459f45d3d7ba32860f1935d...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100709cc61f58...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100709cc61f...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010061a4558768d35e9236a6c15cd1a4efa49782fb600de1da9e78b5ab8d4cc6...
handshake new: [259] 01010061a4558768d35e9236a6c15cd1a4efa49782fb600de1da9e78b5ab8d4c...
record old: [270] 100001020001000000000102010061a4558768d35e9236a6c15cd1a4efa49782...
record new: [271] 10000103000100000000010301010061a4558768d35e9236a6c15cd1a4efa497...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010061a4558768...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010061a45587...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (9 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (347 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (6 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (6 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (12 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (19 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (14 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (8 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (9 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (218 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (3 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510301b3ecb28e315c90937abfc6ca1bc0006abebbeb2fa67cc42c48fe...
record new: [89] 020000510301b3ecb28e315c90937abfc6ca1bc0006abebbeb2fa67cc42c48fe...
server: Original packet: [536] 1603010213020000510301b3ecb28e315c90937abfc6ca1bc0006abebbeb2fa6...
server: Filtered packet: [94] 1603010059020000510301b3ecb28e315c90937abfc6ca1bc0006abebbeb2fa6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301bd36d2519724316f55153ec0885af48634039074738abf07cade...
record new: [265] 020000570301bd36d2519724316f55153ec0885af48634039074738abf07cade...
server: Original packet: [712] 16030102c3020000570301bd36d2519724316f55153ec0885af4863403907473...
server: Filtered packet: [270] 1603010109020000570301bd36d2519724316f55153ec0885af4863403907473...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301b7c23a65e28c89b0eee97977b77495b78db055be708fd0b807b7...
record new: [265] 020000570301b7c23a65e28c89b0eee97977b77495b78db055be708fd0b807b7...
server: Original packet: [712] 16030102c3020000570301b7c23a65e28c89b0eee97977b77495b78db055be70...
server: Filtered packet: [270] 1603010109020000570301b7c23a65e28c89b0eee97977b77495b78db055be70...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 020000570301069ceaa921de168eaf0cdf9fc21d82f5a4435e1b9eee2b1fa476...
record new: [207] 020000570301069ceaa921de168eaf0cdf9fc21d82f5a4435e1b9eee2b1fa476...
server: Original packet: [528] 160301020b020000570301069ceaa921de168eaf0cdf9fc21d82f5a4435e1b9e...
server: Filtered packet: [212] 16030100cf020000570301069ceaa921de168eaf0cdf9fc21d82f5a4435e1b9e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 0200005703010e2c52a5b9dc85940e7e08c59971bf65b40efea1100699a8c9cf...
record new: [537] 0200005703010e2c52a5b9dc85940e7e08c59971bf65b40efea1100699a8c9cf...
server: Original packet: [712] 16030102c30200005703010e2c52a5b9dc85940e7e08c59971bf65b40efea110...
server: Filtered packet: [542] 16030102190200005703010e2c52a5b9dc85940e7e08c59971bf65b40efea110...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 02000057030161623c01ae75e37e4221971f188c66f0d411bc2a39d7795f7dab...
record new: [411] 02000057030161623c01ae75e37e4221971f188c66f0d411bc2a39d7795f7dab...
server: Original packet: [529] 160301020c02000057030161623c01ae75e37e4221971f188c66f0d411bc2a39...
server: Filtered packet: [416] 160301019b02000057030161623c01ae75e37e4221971f188c66f0d411bc2a39...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301ba0a7236c0e30c3928d30074ce9a0272065a74d899b5b7eac5ca...
record new: [265] 020000570301ba0a7236c0e30c3928d30074ce9a0272065a74d899b5b7eac5ca...
Dropping handshake: 12
record old: [265] 020000570301ba0a7236c0e30c3928d30074ce9a0272065a74d899b5b7eac5ca...
record new: [95] 020000570301ba0a7236c0e30c3928d30074ce9a0272065a74d899b5b7eac5ca...
server: Original packet: [712] 16030102c3020000570301ba0a7236c0e30c3928d30074ce9a0272065a74d899...
server: Filtered packet: [100] 160301005f020000570301ba0a7236c0e30c3928d30074ce9a0272065a74d899...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 02000057030150cc90f949479958f0f1c7e9389a34c39f77c8e00895405609f5...
record new: [209] 02000057030150cc90f949479958f0f1c7e9389a34c39f77c8e00895405609f5...
Dropping handshake: 12
record old: [209] 02000057030150cc90f949479958f0f1c7e9389a34c39f77c8e00895405609f5...
record new: [95] 02000057030150cc90f949479958f0f1c7e9389a34c39f77c8e00895405609f5...
server: Original packet: [530] 160301020d02000057030150cc90f949479958f0f1c7e9389a34c39f77c8e008...
server: Filtered packet: [100] 160301005f02000057030150cc90f949479958f0f1c7e9389a34c39f77c8e008...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (4 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (38 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510302e0e148dd3289766a2713cd5af15e3e5e3be93c2abed1c09eeabf...
record new: [89] 020000510302e0e148dd3289766a2713cd5af15e3e5e3be93c2abed1c09eeabf...
server: Original packet: [536] 1603020213020000510302e0e148dd3289766a2713cd5af15e3e5e3be93c2abe...
server: Filtered packet: [94] 1603020059020000510302e0e148dd3289766a2713cd5af15e3e5e3be93c2abe...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510303fd94e581c9bcc738574c475049ba0e6b3c440dbc72850660c314...
record new: [89] 020000510303fd94e581c9bcc738574c475049ba0e6b3c440dbc72850660c314...
server: Original packet: [536] 1603030213020000510303fd94e581c9bcc738574c475049ba0e6b3c440dbc72...
server: Filtered packet: [94] 1603030059020000510303fd94e581c9bcc738574c475049ba0e6b3c440dbc72...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feff3c80ea9c35...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feff3c80ea9c35...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefd292a468c77...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefd292a468c77...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703027889b695956f2c72807caf5a5f4e302c9b313de90f38811aef13...
record new: [265] 0200005703027889b695956f2c72807caf5a5f4e302c9b313de90f38811aef13...
server: Original packet: [712] 16030202c30200005703027889b695956f2c72807caf5a5f4e302c9b313de90f...
server: Filtered packet: [270] 16030201090200005703027889b695956f2c72807caf5a5f4e302c9b313de90f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303d27cd0ea9d9f9763d187ebee1a66e95f3537ca37a7172a06fcd1...
record new: [267] 020000570303d27cd0ea9d9f9763d187ebee1a66e95f3537ca37a7172a06fcd1...
server: Original packet: [714] 16030302c5020000570303d27cd0ea9d9f9763d187ebee1a66e95f3537ca37a7...
server: Filtered packet: [272] 160303010b020000570303d27cd0ea9d9f9763d187ebee1a66e95f3537ca37a7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [178] 0c0000a600010000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff77b11878c2...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff77b11878c2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [180] 0c0000a800010000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd470837b52d...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd470837b52d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302a9888670299fc732dd6391b728539d8f00ab548b0a4db50b6607...
record new: [265] 020000570302a9888670299fc732dd6391b728539d8f00ab548b0a4db50b6607...
server: Original packet: [712] 16030202c3020000570302a9888670299fc732dd6391b728539d8f00ab548b0a...
server: Filtered packet: [270] 1603020109020000570302a9888670299fc732dd6391b728539d8f00ab548b0a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303cd6dd639df19d8a01e15e54c12ef35261acb79ec01c6b9acebe7...
record new: [267] 020000570303cd6dd639df19d8a01e15e54c12ef35261acb79ec01c6b9acebe7...
server: Original packet: [714] 16030302c5020000570303cd6dd639df19d8a01e15e54c12ef35261acb79ec01...
server: Filtered packet: [272] 160303010b020000570303cd6dd639df19d8a01e15e54c12ef35261acb79ec01...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [178] 0c0000a600010000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff6df25316a1...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff6df25316a1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [180] 0c0000a800010000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd083d4fcd92...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd083d4fcd92...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570302642d00de7e79b6b0fa6cf1a8e51c12cade6a571354a90fbeec82...
record new: [209] 020000570302642d00de7e79b6b0fa6cf1a8e51c12cade6a571354a90fbeec82...
server: Original packet: [530] 160302020d020000570302642d00de7e79b6b0fa6cf1a8e51c12cade6a571354...
server: Filtered packet: [214] 16030200d1020000570302642d00de7e79b6b0fa6cf1a8e51c12cade6a571354...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570303ade382f7a9248b599957ed32ad2f2a6edcc3a0c33287d1d8e3f2...
record new: [210] 020000570303ade382f7a9248b599957ed32ad2f2a6edcc3a0c33287d1d8e3f2...
server: Original packet: [531] 160303020e020000570303ade382f7a9248b599957ed32ad2f2a6edcc3a0c332...
server: Filtered packet: [215] 16030300d2020000570303ade382f7a9248b599957ed32ad2f2a6edcc3a0c332...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [122] 0c00006e000100000000006e03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feffd4b4b93095...
server: Filtered packet: [285] 16feff00000000000000000063020000570000000000000057feffd4b4b93095...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [124] 0c000070000200000000007003001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [124] 0c000070000100000000007003001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd64fce680b1...
server: Filtered packet: [287] 16fefd00000000000000000063020000570000000000000057fefd64fce680b1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570302fbf99f19cf546798d94b9a48d761ee5703398ba1cb50620a5a0a...
record new: [537] 020000570302fbf99f19cf546798d94b9a48d761ee5703398ba1cb50620a5a0a...
server: Original packet: [712] 16030202c3020000570302fbf99f19cf546798d94b9a48d761ee5703398ba1cb...
server: Filtered packet: [542] 1603020219020000570302fbf99f19cf546798d94b9a48d761ee5703398ba1cb...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 02000057030352ce48c610a89b6b5a942d13b16539a13eb52945b8ca25d13b20...
record new: [537] 02000057030352ce48c610a89b6b5a942d13b16539a13eb52945b8ca25d13b20...
server: Original packet: [714] 16030302c502000057030352ce48c610a89b6b5a942d13b16539a13eb52945b8...
server: Filtered packet: [542] 160303021902000057030352ce48c610a89b6b5a942d13b16539a13eb52945b8...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff1973d71fa4...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff1973d71fa4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdbc14dc47ac...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefdbc14dc47ac...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 020000570302ba1cab6aa70a3f50c9a0a28cc2c41f174976d6693fe9304b3d23...
record new: [411] 020000570302ba1cab6aa70a3f50c9a0a28cc2c41f174976d6693fe9304b3d23...
server: Original packet: [529] 160302020c020000570302ba1cab6aa70a3f50c9a0a28cc2c41f174976d6693f...
server: Filtered packet: [416] 160302019b020000570302ba1cab6aa70a3f50c9a0a28cc2c41f174976d6693f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [526] 0200005703033a5924eb0e5040d0ba0f5f47d1aa1a3f5c69847d38c01b384b97...
record new: [411] 0200005703033a5924eb0e5040d0ba0f5f47d1aa1a3f5c69847d38c01b384b97...
server: Original packet: [531] 160303020e0200005703033a5924eb0e5040d0ba0f5f47d1aa1a3f5c69847d38...
server: Filtered packet: [416] 160303019b0200005703033a5924eb0e5040d0ba0f5f47d1aa1a3f5c69847d38...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [121] 0c00006d000200000000006d03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feffe811fc1a92...
server: Filtered packet: [487] 16feff00000000000000000063020000570000000000000057feffe811fc1a92...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [123] 0c00006f000200000000006f03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefd65ca3a4f4d...
server: Filtered packet: [487] 16fefd00000000000000000063020000570000000000000057fefd65ca3a4f4d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030205de8325ae3e394505a5074c973423f5622d4065cdb8dfdc6f10...
record new: [265] 02000057030205de8325ae3e394505a5074c973423f5622d4065cdb8dfdc6f10...
Dropping handshake: 12
record old: [265] 02000057030205de8325ae3e394505a5074c973423f5622d4065cdb8dfdc6f10...
record new: [95] 02000057030205de8325ae3e394505a5074c973423f5622d4065cdb8dfdc6f10...
server: Original packet: [712] 16030202c302000057030205de8325ae3e394505a5074c973423f5622d4065cd...
server: Filtered packet: [100] 160302005f02000057030205de8325ae3e394505a5074c973423f5622d4065cd...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703032715715b014651fe759c30e51b8866c4bc2ea2a8d74c8d437b0b...
record new: [267] 0200005703032715715b014651fe759c30e51b8866c4bc2ea2a8d74c8d437b0b...
Dropping handshake: 12
record old: [267] 0200005703032715715b014651fe759c30e51b8866c4bc2ea2a8d74c8d437b0b...
record new: [95] 0200005703032715715b014651fe759c30e51b8866c4bc2ea2a8d74c8d437b0b...
server: Original packet: [714] 16030302c50200005703032715715b014651fe759c30e51b8866c4bc2ea2a8d7...
server: Filtered packet: [100] 160303005f0200005703032715715b014651fe759c30e51b8866c4bc2ea2a8d7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [178] 0c0000a600010000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff52cb5bc358...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff52cb5bc358...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [180] 0c0000a800010000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd550e7bde9a...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd550e7bde9a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 02000057030210cd37370d2b25bf4a1d2c7640d0711012fe7fdd8edeccad4725...
record new: [207] 02000057030210cd37370d2b25bf4a1d2c7640d0711012fe7fdd8edeccad4725...
Dropping handshake: 12
record old: [207] 02000057030210cd37370d2b25bf4a1d2c7640d0711012fe7fdd8edeccad4725...
record new: [95] 02000057030210cd37370d2b25bf4a1d2c7640d0711012fe7fdd8edeccad4725...
server: Original packet: [528] 160302020b02000057030210cd37370d2b25bf4a1d2c7640d0711012fe7fdd8e...
server: Filtered packet: [100] 160302005f02000057030210cd37370d2b25bf4a1d2c7640d0711012fe7fdd8e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 02000057030309a12185f0dd6aba5b88e790319ae01cb38c681ecfdf6f6ae649...
record new: [210] 02000057030309a12185f0dd6aba5b88e790319ae01cb38c681ecfdf6f6ae649...
Dropping handshake: 12
record old: [210] 02000057030309a12185f0dd6aba5b88e790319ae01cb38c681ecfdf6f6ae649...
record new: [95] 02000057030309a12185f0dd6aba5b88e790319ae01cb38c681ecfdf6f6ae649...
server: Original packet: [531] 160303020e02000057030309a12185f0dd6aba5b88e790319ae01cb38c681ecf...
server: Filtered packet: [100] 160303005f02000057030309a12185f0dd6aba5b88e790319ae01cb38c681ecf...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [120] 0c00006c000200000000006c03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [120] 0c00006c000100000000006c03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [120] 0c00006c000100000000006c03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [607] 16feff00000000000000000063020000570000000000000057feff20f8ebcc21...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff20f8ebcc21...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [122] 0c00006e000100000000006e03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [122] 0c00006e000100000000006e03001d20c5767bd94bce8ffc37b4f8a89ebd8e34...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefd47a47cce36...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd47a47cce36...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (5 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (153 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (0 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (7572 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #10649: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #10650: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10651: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10652: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10653: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10654: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10655: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10656: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10657: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10658: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10659: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10660: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10661: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10662: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10663: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10664: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10665: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10666: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10667: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10668: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10669: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10670: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10671: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10672: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10673: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10674: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10675: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10676: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10677: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10678: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10679: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10680: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10681: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10682: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10683: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10684: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10685: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10686: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10687: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10688: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10689: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10690: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10691: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10692: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10693: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10694: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10695: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10696: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10697: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10698: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10699: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10700: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10701: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10702: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10703: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10704: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10705: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10706: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10707: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10708: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10709: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10710: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10711: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10712: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10713: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10714: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10715: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10716: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10717: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10718: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10719: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10720: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10721: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10722: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10723: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10724: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10725: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10726: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10727: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10728: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10729: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10730: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10731: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10732: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10733: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10734: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10735: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10736: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10737: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10738: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10739: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10740: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10741: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10742: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10743: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10744: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10745: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10746: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10747: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10748: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10749: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10750: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10751: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10752: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10753: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10754: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10755: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10756: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10757: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10758: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10759: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10760: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10761: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10762: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10763: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10764: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10765: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10766: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10767: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10768: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10769: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10770: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10771: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10772: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10773: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10774: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10775: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10776: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10777: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10778: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10779: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10780: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10781: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10782: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10783: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10784: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10785: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10786: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10787: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10788: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10789: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10790: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10791: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10792: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10793: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10794: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10795: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10796: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10797: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10798: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10799: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10800: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10801: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10802: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10803: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10804: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10805: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10806: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10807: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10808: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10809: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10810: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10811: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10812: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10813: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10814: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10815: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10816: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10817: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10818: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10819: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10820: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10821: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10822: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10823: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10824: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10825: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10826: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10827: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10828: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10829: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10830: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10831: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10832: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10833: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10834: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10835: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10836: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10837: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10838: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10839: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10840: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10841: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10842: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10843: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10844: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10845: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10846: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10847: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10848: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10849: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10850: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10851: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10852: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10853: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10854: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10855: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10856: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10857: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10858: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10859: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10860: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10861: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10862: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10863: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10864: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10865: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10866: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10867: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10868: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10869: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10870: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10871: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10872: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10873: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10874: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10875: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10876: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10877: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10878: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10879: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10880: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10881: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10882: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10883: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10884: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10885: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10886: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10887: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10888: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10889: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10890: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10891: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10892: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10893: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10894: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10895: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10896: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10897: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10898: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10899: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10900: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10901: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10902: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10903: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10904: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10905: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10906: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10907: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10908: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10909: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10910: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10911: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10912: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10913: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10914: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10915: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10916: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10917: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10918: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10919: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10920: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10921: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10922: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10923: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10924: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10925: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10926: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10927: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10928: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10929: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10930: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10931: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10932: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10933: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10934: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10935: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10936: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10937: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10938: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10939: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10940: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10941: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10942: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10943: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10944: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10945: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10946: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10947: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10948: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10949: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10950: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10951: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10952: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10953: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10954: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10955: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10956: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10957: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10958: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10959: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10960: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10961: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10962: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10963: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10964: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10965: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10966: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10967: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10968: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10969: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10970: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10971: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10972: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10973: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10974: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10975: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10976: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10977: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10978: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10979: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10980: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10981: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10982: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10983: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10984: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10985: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10986: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10987: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10988: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10989: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10990: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10991: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10992: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10993: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10994: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10995: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10996: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10997: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10998: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10999: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11000: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11001: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11002: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11003: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11004: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11005: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11006: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11007: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11008: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11009: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11010: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11011: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11012: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11013: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11014: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11015: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11016: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11017: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11018: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11019: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11020: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11021: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11022: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11023: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11024: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11025: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11026: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11027: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11028: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11029: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11030: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11031: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11032: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11033: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11034: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11035: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11036: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11037: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11038: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11039: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11040: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11041: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11042: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11043: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11044: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11045: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11046: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11047: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11048: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11049: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11050: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11051: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11052: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11053: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11054: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11055: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11056: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11057: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11058: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11059: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11060: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11061: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11062: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11063: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11064: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11065: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11066: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11067: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11068: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11069: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11070: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11071: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11072: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11073: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11074: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11075: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11076: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11077: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11078: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11079: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11080: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11081: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11082: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11083: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11084: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11085: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11086: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11087: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11088: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11089: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11090: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11091: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11092: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11093: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11094: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11095: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11096: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11097: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11098: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11099: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11100: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11101: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11102: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11103: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11104: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11105: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11106: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11107: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11108: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11109: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11110: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11111: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11112: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11113: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11114: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11115: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11116: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11117: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11118: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11119: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11120: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11121: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11122: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11123: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11124: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11125: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11126: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11127: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11128: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11129: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11130: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11131: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11132: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11133: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11134: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11135: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11136: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11137: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11138: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11139: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11140: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11141: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11142: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11143: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11144: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11145: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11146: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11147: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11148: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11149: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11150: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11151: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11152: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11153: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11154: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11155: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11156: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11157: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11158: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11159: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11160: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11161: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11162: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11163: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11164: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11165: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11166: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11167: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11168: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11169: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11170: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11171: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11172: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11173: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11174: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11175: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11176: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11177: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11178: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11179: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11180: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11181: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11182: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #11183: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11184: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #11185: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11186: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11187: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11188: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11189: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11190: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #11191: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #11192: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #11193: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #11194: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #11195: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #11196: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #11197: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #11198: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #11199: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #11200: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #11201: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #11202: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11203: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11204: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11205: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11206: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11207: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11208: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11209: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11210: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11211: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11212: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11213: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11214: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11215: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11216: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11217: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11218: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11219: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11220: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11221: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11222: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11223: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11224: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11225: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11226: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #11227: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #11228: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #11229: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #11230: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #11231: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #11232: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #11233: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #11234: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #11235: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #11236: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #11237: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #11238: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11239: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11240: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11241: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11242: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11243: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11244: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11245: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11246: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11247: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11248: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11249: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11250: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11251: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11252: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11253: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11254: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11255: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11256: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11257: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11258: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11259: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11260: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11261: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11262: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11263: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11264: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11265: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11266: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11267: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11268: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11269: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11270: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11271: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11272: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11273: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11274: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11275: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11276: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11277: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11278: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11279: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11280: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11281: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11282: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11283: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11284: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11285: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11286: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11287: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11288: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11289: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11290: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11291: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11292: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11293: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11294: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11295: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11296: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11297: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11298: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11299: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11300: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11301: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11302: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11303: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11304: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11305: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11306: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11307: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11308: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11309: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11310: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #11311: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #11312: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11313: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11314: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11315: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11316: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11317: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11318: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11319: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11320: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11321: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11322: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11323: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11324: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11325: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11326: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11327: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11328: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #11329: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #11330: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #11331: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #11332: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #11333: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #11334: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #11335: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #11336: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #11337: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #11338: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #11339: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #11340: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #11341: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #11342: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #11343: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #11344: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #11345: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #11346: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #11347: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #11348: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #11349: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #11350: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #11351: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #11352: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #11353: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #11354: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #11355: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #11356: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #11357: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #11358: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #11359: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #11360: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #11361: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #11362: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #11363: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #11364: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #11365: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #11366: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #11367: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #11368: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #11369: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #11370: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #11371: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #11372: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #11373: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #11374: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #11375: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #11376: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #11377: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #11378: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #11379: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #11380: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #11381: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #11382: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #11383: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #11384: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #11385: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #11386: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #11387: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #11388: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #11389: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #11390: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #11391: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #11392: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #11393: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #11394: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #11395: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #11396: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #11397: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #11398: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #11399: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #11400: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #11401: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #11402: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #11403: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #11404: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #11405: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #11406: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #11407: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #11408: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #11409: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #11410: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #11411: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #11412: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #11413: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #11414: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #11415: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #11416: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11417: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11418: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11419: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11420: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11421: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11422: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11423: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11424: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11425: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11426: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11427: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11428: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11429: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11430: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11431: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11432: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11433: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11434: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11435: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11436: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11437: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11438: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11439: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11440: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11441: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11442: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11443: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11444: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11445: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11446: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11447: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11448: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11449: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11450: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11451: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11452: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11453: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11454: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11455: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11456: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #11457: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #11458: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #11459: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #11460: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #11461: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #11462: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #11463: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #11464: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #11465: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Wed Aug 23 12:39:18 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Wed Aug 23 12:39:18 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #11466: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #11467: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11468: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11469: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #11470: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #11471: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11472: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11473: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11474: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11475: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11476: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11477: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11478: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #11479: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11480: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11481: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11482: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11483: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11484: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11485: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11486: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11487: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11488: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11489: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11490: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11491: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11492: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11493: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11494: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11495: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11496: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11497: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11498: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11499: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11500: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11501: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #11502: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11503: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11504: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11505: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11506: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11507: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11508: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11509: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11510: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11511: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11512: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11513: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11514: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #11515: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11516: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11517: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #11518: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11519: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #11520: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11521: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #11522: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11523: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #11524: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11525: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #11526: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11527: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11528: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #11529: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11530: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #11531: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11532: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #11533: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11534: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #11535: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11536: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11537: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #11538: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11539: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11540: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #11541: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11542: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11543: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #11544: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11545: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11546: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #11547: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11548: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #11549: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11550: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #11551: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11552: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #11553: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11554: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #11555: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11556: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11557: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #11558: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11559: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #11560: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11561: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #11562: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11563: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #11564: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11565: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11566: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #11567: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11568: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11569: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #11570: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11571: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11572: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #11573: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11574: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #11575: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11576: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #11577: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11578: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #11579: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11580: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11581: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #11582: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11583: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11584: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #11585: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11586: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11587: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #11588: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11589: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11590: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #11591: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11592: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11593: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11594: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #11595: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11596: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #11597: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11598: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #11599: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11600: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11601: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #11602: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11603: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11604: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #11605: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11606: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11607: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #11608: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11609: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11610: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #11611: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11612: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11613: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #11614: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11615: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11616: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #11617: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11618: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11619: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #11620: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11621: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11622: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #11623: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11624: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11625: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #11626: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11627: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11628: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11629: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11630: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #11631: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11632: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #11633: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11634: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #11635: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11636: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #11637: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11638: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11639: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #11640: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11641: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11642: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #11643: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11644: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11645: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #11646: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11647: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11648: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #11649: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11650: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #11651: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11652: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #11653: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11654: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #11655: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11656: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #11657: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11658: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11659: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #11660: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11661: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11662: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #11663: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11664: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11665: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #11666: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11667: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11668: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #11669: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11670: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #11671: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11672: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #11673: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11674: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #11675: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11676: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #11677: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11678: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11679: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #11680: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11681: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11682: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #11683: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11684: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11685: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #11686: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11687: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11688: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #11689: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11690: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #11691: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11692: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #11693: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11694: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #11695: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11696: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11697: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11698: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11699: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11700: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11701: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11702: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11703: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11704: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11705: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11706: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11707: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11708: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11709: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11710: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #11711: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #11712: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #11713: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #11714: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #11715: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #11716: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #11717: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #11718: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #11719: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11720: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #11721: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11722: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #11723: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11724: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #11725: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11726: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #11727: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11728: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11729: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #11730: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11731: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11732: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #11733: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11734: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #11735: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11736: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #11737: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11738: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #11739: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11740: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #11741: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11742: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11743: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #11744: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11745: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11746: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #11747: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11748: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11749: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #11750: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11751: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11752: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #11753: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11754: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:70
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:16 2017
            Not After : Thu Nov 23 12:40:16 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:c4:43:27:0c:9f:32:42:89:2f:1a:ed:85:f9:5f:60:
                    80:93:f7:e3:cb:6e:7a:06:b7:c5:e1:6c:e8:c4:ee:1a:
                    9e:87:c2:d8:44:5c:5f:43:ac:50:c9:b5:56:37:e1:55:
                    76:72:ce:c3:95:d6:da:1f:90:ff:5b:df:db:55:43:5c:
                    8f:75:e0:96:38:00:22:76:a0:bf:77:67:b1:8f:35:ff:
                    a5:52:05:93:f0:24:81:81:1f:83:92:56:18:4c:c0:f1:
                    07:57:fb:66:59:1b:86:8e:5c:e8:3e:12:2c:be:25:49:
                    94:24:d4:db:8a:d5:f2:81:bc:b4:22:3f:d2:d9:b0:cb:
                    d2:5f:63:09:79:e5:9c:b4:79:fb:af:cd:b4:41:40:d9:
                    3d:d8:19:f9:cc:0f:18:04:98:37:30:0a:9e:25:e6:9d:
                    1f:f2:75:b0:c3:b7:a9:cc:d4:64:cb:78:a4:aa:d9:8f:
                    f8:7c:f7:77:ce:3c:63:cb:9a:8b:f5:8f:1f:f5:56:d3:
                    c9:90:f5:b0:ec:61:a6:4a:9d:50:66:61:da:fb:b0:7a:
                    63:95:2e:7b:6c:bc:29:43:2c:de:c3:fa:11:ed:09:b2:
                    62:14:86:49:3c:ad:28:c5:3b:21:3c:0e:c0:55:fe:a9:
                    ae:5a:11:0e:c4:b2:55:cd:a4:06:28:9c:31:39:fd:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:b7:d5:72:53:d4:c2:76:1e:91:e8:ad:04:81:b6:26:
        62:60:13:d4:fc:39:d9:e7:05:65:74:ce:58:3c:f8:45:
        78:a0:b0:41:a6:f2:37:cb:68:c7:71:19:d6:f2:74:b6:
        9e:52:f4:91:ba:46:4d:31:d9:c9:8c:50:d3:fc:e5:9c:
        86:f9:80:bc:91:1c:15:ae:82:fb:b5:68:47:6e:d7:9c:
        1a:b5:ef:e4:fe:25:bc:c8:b4:99:6e:5f:f3:87:34:b9:
        93:f9:97:a1:8e:94:4b:1e:19:02:8b:42:62:67:5e:31:
        a8:25:b1:a8:6a:64:d5:f5:cd:c2:7b:26:cf:95:80:2b:
        47:e6:ef:d5:e9:10:61:f3:c7:0e:14:34:18:39:e1:1c:
        71:7e:47:0d:b6:54:e3:99:3f:84:2a:26:92:aa:a4:f9:
        ef:a9:08:1a:13:8c:ff:51:45:b6:0c:b3:3e:1c:41:20:
        f8:28:80:89:fb:22:6d:ce:25:9a:c0:84:bd:b0:7f:b6:
        8d:96:7b:93:87:c7:16:3c:72:ed:33:8e:98:a2:d1:19:
        97:b0:21:5a:59:b4:f1:96:71:f3:e2:a1:69:d6:0c:b9:
        a5:c9:ad:94:a9:d7:5b:17:9a:41:7a:ca:84:60:50:df:
        7b:22:24:1b:8a:4a:e6:4a:c2:0c:a9:c4:e7:06:62:c3
    Fingerprint (SHA-256):
        77:46:93:BD:E9:0E:F3:EB:84:A7:70:41:43:24:41:4A:5B:17:A0:4F:E2:6F:D5:94:66:B4:B2:57:40:4B:68:1B
    Fingerprint (SHA1):
        31:59:65:F9:58:6E:C5:05:8A:22:7D:94:E1:C2:93:2F:0B:58:95:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11755: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:72
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:17 2017
            Not After : Thu Nov 23 12:40:17 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:96:e0:4a:8c:c8:4c:a7:af:e8:7f:15:9e:29:6d:dd:
                    c8:0d:95:59:86:2f:66:ec:a7:d8:6d:25:7c:63:06:f4:
                    27:04:71:1a:b4:9b:3b:ed:51:29:54:91:56:2c:90:19:
                    1f:c4:48:8f:90:d0:46:25:03:78:74:f6:19:39:8d:1c:
                    d9:0a:bb:e0:d0:9e:b5:5f:92:c9:1c:bd:a1:52:00:61:
                    23:b9:94:8f:f5:fd:ba:cd:18:87:e0:3e:ee:61:a1:51:
                    ae:cc:fe:c6:b9:1c:0a:dc:66:53:38:6b:16:67:6b:bd:
                    65:7f:a1:00:d3:a1:2f:3e:a9:0c:e9:85:7d:a4:07:2f:
                    a8:de:e9:6c:95:19:de:38:17:62:64:71:22:21:26:5a:
                    d3:ef:ed:be:06:e8:95:40:f6:18:3f:82:37:38:59:6b:
                    4c:76:35:2e:2e:6c:1e:3d:89:ff:fc:2c:7f:bd:05:cf:
                    f2:1a:54:9f:8d:0c:2e:94:cd:93:0a:42:55:7c:68:97:
                    f4:61:c2:60:15:c1:7b:73:58:89:d7:cb:e4:c0:32:77:
                    16:a0:70:23:17:c7:99:2d:03:a6:46:4a:a8:d9:c1:c2:
                    58:af:fc:c9:3f:b0:5c:d4:e6:2d:af:1e:74:13:41:48:
                    8e:c0:f1:60:12:be:f4:dc:ca:96:ca:1b:ae:b7:5f:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:bc:8e:80:bc:c1:b7:93:b7:65:02:e9:77:5e:53:87:
        fc:a4:51:32:03:32:66:dd:32:65:93:96:27:f9:76:63:
        86:05:70:5a:4e:cd:7e:ec:27:6e:1e:9c:fe:51:63:75:
        49:98:9f:5b:34:65:a3:98:7c:2c:5c:f5:aa:77:f0:88:
        fa:06:74:d2:c1:50:be:bb:43:ca:cc:f6:00:b4:4b:e8:
        65:40:c4:be:f5:20:c3:3e:f0:bb:a6:09:12:37:8e:12:
        e3:e4:b0:f5:5a:f8:2e:5f:e1:0e:a6:44:73:fe:34:a2:
        05:2c:c2:3b:3e:57:f5:aa:3d:6b:01:0f:10:94:7c:3b:
        9d:85:6f:d4:00:49:dc:20:e7:67:32:89:53:eb:f3:e0:
        76:0b:ff:a8:58:95:f5:26:0a:8f:40:69:dd:ab:d9:d8:
        ab:b1:db:2e:2c:2e:db:81:7d:d8:a9:cc:8e:9f:b7:ee:
        6c:4e:9c:d2:c5:d4:ed:85:9d:a8:a9:5d:1c:42:8d:f1:
        10:22:18:93:f8:21:6b:94:a8:d2:3b:9f:cd:3e:c5:ae:
        18:a7:78:a3:33:e8:bf:39:b6:f2:92:25:20:5c:36:98:
        e5:66:7c:aa:6e:10:5c:0b:49:0c:e1:77:92:79:ec:13:
        71:e4:ed:fb:a8:62:ed:41:59:19:76:b0:73:9e:89:c4
    Fingerprint (SHA-256):
        E2:9F:5C:8F:2A:E6:0B:73:E1:3C:4A:9F:D9:FE:01:98:2C:E1:D8:18:D3:73:6B:1E:EB:68:F1:28:80:D6:7F:9B
    Fingerprint (SHA1):
        05:7F:22:E7:F3:3C:8E:B1:BA:0B:0C:FC:23:ED:2C:57:88:FC:30:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11756: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:73
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:17 2017
            Not After : Thu Nov 23 12:40:17 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:12:8b:c6:74:c5:18:71:8d:6d:83:9c:59:71:e2:f2:
                    c7:00:8a:cb:0f:b7:68:12:a7:fc:06:e3:76:4b:e7:9e:
                    88:61:f6:de:bd:74:9f:bf:8f:49:7b:c9:a8:02:cc:47:
                    90:fa:24:f0:cb:7a:c2:3e:31:37:0e:70:68:5e:34:04:
                    90:79:93:c9:8b:1a:e0:a2:01:c4:57:9c:94:5d:73:ef:
                    32:59:38:fa:d3:22:86:57:af:b4:98:3b:ee:d0:55:98:
                    34:70:c1:bb:a0:a4:c7:00:ca:8a:1e:88:f6:ae:e2:13:
                    ef:2f:50:b5:c7:34:6c:29:6b:fa:de:d5:12:9a:72:a2:
                    ed:de:7d:7a:fc:37:7b:be:f0:db:9d:13:64:42:4b:19:
                    64:f2:0a:db:4b:d9:60:25:8b:4e:f7:07:32:6f:69:e1:
                    f7:18:b0:13:64:b1:8a:fe:17:ab:2f:af:d3:b9:9c:72:
                    c0:d7:92:30:22:dd:c9:40:ca:67:06:a6:c3:a4:14:0b:
                    96:45:da:a3:e4:89:94:9c:3b:92:38:19:42:8e:a2:af:
                    73:03:c3:b6:6e:da:d2:a9:8a:44:a9:47:3b:65:93:f2:
                    bd:3c:37:be:a1:ad:44:0a:4f:06:b9:a8:1d:d4:93:56:
                    cb:87:94:fd:6a:9d:11:53:b8:0b:b6:4a:9b:bf:d7:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:09:6e:1c:c3:57:60:57:f2:cc:28:46:c6:6f:0b:a7:
        8f:83:23:d9:f7:6e:1d:54:8f:70:13:2b:f1:c4:a4:ea:
        5a:24:e4:89:2f:8b:52:ce:d1:82:85:b9:cb:02:2e:6e:
        d6:89:bb:53:9f:a7:e7:1c:9b:77:62:5c:6b:bd:24:f3:
        6c:b0:dd:d4:0d:1f:46:5e:4d:dd:57:22:73:3c:7b:34:
        5b:b9:c6:75:ef:c0:b7:b9:a5:85:2b:4b:74:78:d5:3a:
        e3:50:18:b7:95:01:78:25:1e:90:1a:27:fc:77:b0:62:
        fb:6e:4b:4c:ae:1a:14:41:53:db:7f:77:33:d9:30:2e:
        e0:fb:8e:47:6f:9d:61:e3:a7:56:a2:32:66:00:6a:64:
        a4:d8:ce:c5:b9:b7:2f:bc:69:a3:f4:0b:96:9a:09:d8:
        1d:8c:76:03:76:64:48:dc:f3:5d:35:c0:3e:c1:70:60:
        e2:76:cf:43:53:1f:17:3d:99:14:23:41:9e:71:aa:f3:
        9c:b5:e8:43:41:2a:f6:02:9a:e8:d4:e5:a4:2c:bc:19:
        e7:b4:89:24:7c:4b:8e:10:83:c2:24:cd:90:94:9e:5e:
        44:68:2f:c2:83:50:f3:a1:ba:43:13:08:08:2c:e2:8e:
        c5:c0:7c:f8:b6:d8:1b:2f:f4:01:cf:32:09:20:e7:b6
    Fingerprint (SHA-256):
        96:EA:45:BA:3A:8C:81:57:B6:FC:F1:3A:C0:52:70:54:28:A5:4B:AC:89:F9:91:55:FD:98:D7:9A:B9:79:E5:7C
    Fingerprint (SHA1):
        B4:78:8A:69:8E:D9:7D:CF:04:43:1B:D6:F2:8F:29:40:44:36:68:B3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11757: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:74
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:18 2017
            Not After : Thu Nov 23 12:40:18 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:76:33:66:1d:a6:e2:88:96:7a:27:53:ee:a0:69:f3:
                    bd:90:29:39:59:2a:c4:c2:dc:b9:e5:40:4e:55:8d:61:
                    c0:9b:57:52:d1:2c:5a:af:e9:d4:2f:14:ab:33:49:36:
                    ad:b8:5c:69:17:ed:fa:7f:8d:36:55:4c:f9:d0:6d:73:
                    0c:d7:a1:93:a5:7c:5a:ad:b7:13:eb:b6:44:ee:9e:3b:
                    df:ac:db:76:ba:d1:3f:ca:44:ba:c8:8c:8c:20:ee:7f:
                    30:17:d3:d6:e5:eb:f0:16:67:52:d6:a8:b5:ad:a6:d8:
                    38:b6:fd:7d:d0:57:21:ab:0d:4c:69:2a:3d:52:80:0f:
                    fc:a0:61:ef:e2:dd:56:ec:91:3e:a7:b3:a4:b7:ad:1e:
                    55:97:c2:87:d8:03:f1:45:a8:f9:78:3b:09:03:84:89:
                    1a:da:0a:04:df:b1:48:85:37:bd:db:a8:03:f7:8a:67:
                    74:85:88:9e:34:06:32:f1:74:5e:62:b0:94:22:72:41:
                    1f:0b:f5:b1:88:d8:fb:0d:f9:c3:40:00:4a:51:3c:45:
                    16:f2:49:9d:0e:33:57:1f:20:78:23:e6:8d:4d:cd:cc:
                    4f:58:19:6c:fe:6c:2a:15:a8:2b:10:69:bc:05:42:a4:
                    04:9e:b8:48:f9:cc:56:6e:ea:14:09:8b:e0:15:84:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:df:da:77:90:12:a4:36:13:35:a6:b0:84:49:a6:be:
        e8:6d:c4:17:85:8e:96:66:1b:ef:f9:c6:ed:5f:10:0f:
        49:82:a0:74:92:c6:4a:d4:cc:1c:ab:a1:7a:a7:3d:49:
        ec:fe:ee:05:8e:e6:e3:2c:80:ad:31:fc:30:0b:67:3b:
        f2:df:ed:21:d0:8f:b0:3f:6f:1d:dd:51:0f:63:c2:71:
        e3:7a:c9:0a:c3:d1:96:3c:b4:f2:45:b3:ac:be:25:4a:
        ed:ea:c8:6a:79:c3:19:a6:e5:f6:f9:1d:34:0b:1a:a7:
        39:ca:1d:9b:be:32:eb:e6:4f:33:9a:d1:0f:fc:11:fe:
        b2:5e:6b:a4:6b:58:4e:0d:89:09:c6:9b:65:71:58:88:
        e8:a5:74:1d:dd:f8:ce:64:b1:5a:01:01:e2:79:44:14:
        9b:0d:7b:bc:b2:3d:ae:b2:a4:37:5b:66:a6:ec:ca:eb:
        4b:04:7e:0e:b8:85:f2:26:a2:93:0d:65:06:5c:f3:ac:
        19:90:f7:7b:20:2e:ab:5e:71:f8:5c:0f:0e:37:0b:2e:
        58:ad:c6:d1:63:3e:2c:3a:b6:29:d7:17:5f:ff:48:7c:
        a1:ea:a8:73:f9:bb:01:06:13:8e:31:10:36:1b:c9:9b:
        b3:22:e6:7c:11:b4:bf:e3:56:bf:03:6c:b9:55:3c:cd
    Fingerprint (SHA-256):
        56:1D:B9:09:BD:C7:2F:47:F3:7E:07:AB:6D:5B:C2:D2:97:FB:2B:46:AA:F2:89:7F:CA:38:52:CC:8E:05:99:DD
    Fingerprint (SHA1):
        B1:73:64:57:41:F5:FC:39:DD:D1:D6:9C:8D:A7:6B:0A:5C:9F:17:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11758: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:76
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:19 2017
            Not After : Thu Nov 23 12:40:19 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:82:1d:e3:1f:00:d2:cc:c1:7e:6f:45:99:68:07:e7:
                    48:5b:bc:09:d2:f9:2e:5b:aa:70:30:53:d1:d6:d5:a1:
                    6f:f1:07:ab:15:87:8a:bf:36:de:02:1c:20:e7:13:45:
                    8a:18:8f:f3:4e:e6:9f:b0:79:88:aa:07:e0:4b:9a:ef:
                    ae:d8:a5:ac:a8:a2:c5:9d:bd:85:40:52:ad:d0:92:3f:
                    f7:bb:a8:ad:cf:93:16:7e:6c:10:75:4e:82:79:05:d5:
                    72:f3:2d:f2:a2:59:6a:e8:b6:d4:43:37:13:5f:86:a1:
                    c4:b1:72:ef:c6:6f:ee:62:56:8c:01:53:ca:1b:73:5b:
                    29:61:9a:b5:b1:4f:77:b6:7a:b7:3e:34:b0:ae:04:63:
                    64:aa:97:53:51:b9:c6:55:fb:7a:f9:e9:39:79:da:71:
                    ea:58:60:5a:77:97:42:45:cb:e4:a9:e4:6f:59:cf:a1:
                    c3:3d:65:40:c9:c3:8a:7c:2b:0e:3c:c7:27:33:23:3f:
                    91:48:fc:8b:af:d9:44:18:0b:bd:9d:6f:71:7d:fc:34:
                    4c:c9:59:d8:0c:c7:de:a3:01:db:0a:42:45:49:ed:e6:
                    c2:7f:6f:c0:ac:f7:ae:97:9e:9f:72:23:e7:df:ed:6c:
                    0f:41:9b:06:a0:79:2d:a8:f7:ea:2e:8d:d6:8c:44:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:5f:96:e7:88:9d:fa:b4:fb:35:e9:c7:61:42:26:2d:
        34:58:54:7c:0c:a7:77:bf:b2:ab:7b:b2:75:31:cb:be:
        18:e7:af:34:5c:7b:07:9f:2e:71:4b:b8:b3:b7:02:15:
        c7:4f:9e:70:ca:2f:f0:74:96:31:97:0d:14:53:8d:cb:
        c7:b4:00:a9:bd:ed:ca:89:13:da:0d:67:00:e1:5b:7c:
        e1:55:71:03:98:96:d1:1e:3f:48:48:93:d0:53:fe:04:
        37:c0:54:f5:88:d3:42:5d:c5:ed:61:44:64:ef:98:c9:
        e0:2b:8a:2a:00:16:91:9b:85:a8:5b:ee:c6:56:e4:3f:
        a2:a8:59:b3:5b:b3:82:bc:81:51:b5:2b:de:4c:c8:38:
        b4:a8:d5:d3:36:8d:e6:94:0f:b7:f7:e8:ec:00:65:9e:
        f2:9b:4d:6e:5c:6f:c5:b8:fb:57:c2:f4:9b:af:b1:cb:
        b5:74:b2:88:e2:aa:f2:13:b0:4c:e1:01:4c:90:4d:35:
        83:ba:3e:83:89:45:5e:e4:fc:1e:26:45:55:ee:0f:dc:
        ba:e0:d3:0e:cb:96:80:20:0d:73:a1:42:8f:59:45:c0:
        74:c7:7e:a5:00:d3:5f:25:ee:7a:e8:23:ab:95:55:00:
        2b:f6:ca:33:94:9c:87:40:cd:b7:02:be:b2:73:35:c5
    Fingerprint (SHA-256):
        9D:95:F2:84:AD:CB:1F:2C:FC:66:A5:AE:1B:6C:92:52:07:BC:BF:9E:A7:26:5F:7B:DA:09:A0:FF:C2:BD:63:8E
    Fingerprint (SHA1):
        4B:15:37:F1:57:7F:8A:BB:16:8E:B2:18:BD:4E:A2:3B:1C:68:12:70
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11759: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:77
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:19 2017
            Not After : Thu Nov 23 12:40:19 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:6e:60:ca:c1:8a:24:be:e4:03:e0:8d:85:21:4e:8f:
                    bb:d5:2e:40:4a:16:31:1a:90:63:51:25:03:1c:6b:12:
                    14:4f:75:11:3f:ca:3c:54:18:1c:50:d7:02:5e:e7:aa:
                    20:48:1e:58:c1:eb:60:37:d7:dc:94:2e:c7:d0:5f:4f:
                    fd:b9:7e:76:c4:98:be:c6:77:c8:cd:4a:45:f4:bb:90:
                    e2:2d:24:a5:e0:43:24:ab:a1:82:3a:25:b6:7c:06:79:
                    19:54:c9:70:77:31:23:02:e8:80:2a:58:f9:49:ff:1a:
                    fd:8f:9e:15:df:92:0c:6d:c8:a1:ae:84:e1:28:0e:30:
                    9e:bd:20:53:87:a0:29:2c:03:f8:4f:ce:12:a7:72:c9:
                    30:a9:ac:7c:49:12:6e:7a:52:46:4a:07:35:b2:1a:fe:
                    9b:6c:cc:59:5e:ea:2f:1d:7c:d2:35:df:00:81:42:13:
                    90:62:d6:18:c4:a2:cc:56:a3:b2:d2:3f:f7:f0:b6:4c:
                    57:3e:ff:80:89:2c:cb:88:bb:6d:46:b5:c0:e4:04:2a:
                    9d:85:e5:4b:1a:69:51:17:2f:8d:b7:fb:a8:14:ff:c3:
                    99:16:17:c4:d4:11:09:a6:c2:8b:a6:08:97:16:fa:2c:
                    ba:35:29:cd:7a:8a:45:86:e6:2f:0a:70:b8:24:2d:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:9d:e2:12:05:ad:84:e0:68:32:fb:29:73:17:9a:a9:
        ea:ac:56:1c:8a:57:bd:13:e8:a6:cc:ac:fc:7a:c3:8a:
        cc:d2:c5:c6:da:83:6f:5c:5b:7f:40:96:67:e7:68:60:
        16:56:ce:7f:38:05:d9:97:f8:c5:a7:e2:22:cd:61:a5:
        7b:16:76:42:d2:54:80:6f:16:b2:fb:1e:1b:28:fb:c3:
        fc:6d:4b:3a:6d:f2:af:83:c5:a2:dd:8d:81:a6:01:a9:
        6c:2f:7a:cd:1d:f4:a7:51:09:61:75:18:52:f2:16:f2:
        dc:51:76:f0:47:86:5b:f5:bc:56:c6:5d:0b:4b:69:16:
        12:f4:52:a6:bf:d7:8c:c9:2d:23:8a:9a:7e:c8:a0:59:
        84:59:3d:50:52:14:c8:14:f0:7b:ba:21:43:ea:17:d1:
        c9:04:8e:a7:24:c5:25:52:13:1f:ac:b6:9c:48:0f:d1:
        15:ed:82:d0:3a:ff:7b:aa:56:5a:f6:53:6e:3e:f2:20:
        12:02:aa:ea:2c:28:83:45:4c:9c:c7:98:b0:87:ab:af:
        31:0a:8f:35:e0:ef:46:d2:53:4e:bc:80:f6:bc:b5:da:
        9a:60:f1:a0:99:87:51:19:7a:79:0e:e6:1f:48:9a:a4:
        8f:e4:22:3b:ec:f0:4f:e1:66:b9:e8:3d:6d:bb:de:9e
    Fingerprint (SHA-256):
        B7:E0:3C:B2:69:4F:7B:CE:E0:75:8D:EA:0B:BB:DC:CD:67:B9:8B:26:CA:5F:CC:B0:ED:7D:D6:45:E9:D8:26:48
    Fingerprint (SHA1):
        21:60:4F:CD:59:05:7F:4F:AC:46:9E:EA:AF:88:93:32:8B:61:3F:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11760: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:78
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:20 2017
            Not After : Thu Nov 23 12:40:20 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:c8:0f:38:9e:d6:da:5a:7d:ba:38:08:5f:6f:85:00:
                    6e:a6:86:14:55:b2:c8:94:a2:b1:ae:67:fb:ab:dc:25:
                    f4:37:c4:4c:2a:56:8c:bc:c5:78:ea:7a:66:34:30:5c:
                    60:7f:ad:71:3b:27:01:97:43:66:ac:ee:a3:87:aa:5c:
                    38:c0:ed:36:4a:3b:06:49:3c:7b:65:41:07:9a:71:a1:
                    85:93:9e:80:56:97:9c:58:31:e3:c9:42:43:dd:2f:07:
                    d7:a8:9e:d2:cd:04:e4:ec:47:61:6a:83:93:5a:b9:94:
                    08:9c:c8:08:6d:0d:80:c3:93:f2:75:9f:dd:2e:2f:e4:
                    8a:ef:59:b9:94:c9:08:45:eb:f3:ee:7e:cf:5e:11:53:
                    8e:c7:64:12:27:96:69:21:be:0a:65:bc:6a:f9:12:75:
                    cf:52:47:ba:bc:79:23:b4:47:22:83:e3:d8:30:8b:24:
                    69:71:ea:a7:ae:3b:78:25:6f:a6:f0:95:cd:92:3b:62:
                    6a:e1:35:2e:2e:f6:fd:58:e9:a3:d3:65:50:74:d7:75:
                    09:39:30:d0:7c:a0:fd:47:08:3f:f2:8c:c3:3b:74:bf:
                    92:5f:fd:9e:eb:49:ad:96:78:f2:0f:d3:8c:47:d9:ec:
                    a1:a7:f7:b1:fb:c4:b7:84:29:3c:fb:fa:58:ec:54:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:20:cf:d0:ec:d7:5d:ba:cc:12:91:58:66:7a:60:0e:
        6e:da:77:50:f6:d8:67:47:30:b8:c1:4c:e2:d9:ff:62:
        31:98:5a:6d:fe:e7:e5:4c:a2:a8:c6:46:bd:25:99:a5:
        aa:72:73:7f:e4:96:c8:0c:cc:1c:48:bf:f1:54:b5:d5:
        2a:5a:59:82:a6:29:62:8f:4c:70:90:ba:3d:93:05:41:
        23:33:70:f1:ef:78:1a:07:4b:f6:c8:fa:cc:3b:18:c2:
        30:b1:c9:2f:e5:5a:d0:0f:8c:59:75:89:cf:2c:77:3c:
        a4:9d:75:68:87:02:61:16:7b:ea:40:9a:b0:57:b1:86:
        b3:9e:77:33:8c:3e:ef:36:71:4b:9d:73:03:ac:57:ae:
        35:b2:df:5a:71:02:63:98:d1:f7:7f:70:58:aa:79:a0:
        29:17:7f:8e:ff:d8:40:1d:55:24:8a:95:36:ec:d6:3e:
        62:26:2e:30:0b:d8:0a:5c:82:7e:ac:61:c6:87:64:d8:
        bb:7c:1d:03:72:eb:d2:93:d0:45:25:1d:7e:4f:f7:92:
        6f:04:a7:97:f3:62:51:42:a0:a4:df:22:fe:92:fd:25:
        46:63:8c:4f:0f:2b:10:5a:9e:8f:cf:a8:ca:e4:7a:32:
        94:ab:53:7f:de:cb:0d:e7:03:ad:33:66:8b:8c:d0:dd
    Fingerprint (SHA-256):
        FF:B4:CF:94:23:96:35:54:C3:A3:0A:DD:BD:11:B7:42:A7:47:6E:3C:53:D3:50:35:D7:F2:D1:7A:0B:24:41:BE
    Fingerprint (SHA1):
        B2:A4:66:09:68:A7:18:39:84:54:64:E2:AB:11:A4:BF:14:26:DD:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11761: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:7a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:21 2017
            Not After : Thu Nov 23 12:40:21 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:27:71:58:f2:3b:92:e3:0a:b6:67:c6:73:ed:c0:b5:
                    a4:a0:31:4b:7a:33:48:f1:f4:68:50:4e:b8:1f:10:76:
                    31:17:0a:5d:53:a2:8c:1a:62:1a:27:1c:5c:9e:22:a8:
                    62:ef:ff:b9:6a:cc:6f:43:cc:10:f4:f7:56:a4:d4:48:
                    42:20:ea:e3:93:a3:78:c3:56:55:c0:7a:15:16:09:12:
                    53:30:92:78:a7:97:0b:38:57:d8:81:e6:ca:2d:fe:f0:
                    ad:05:f2:9f:6b:73:3d:8d:6d:01:48:79:bb:3c:e9:4d:
                    43:00:96:df:a6:2d:31:97:d8:96:a0:3b:44:49:34:8d:
                    83:cc:82:89:93:27:32:d9:3c:1d:46:20:15:46:39:48:
                    83:54:65:e7:c3:df:fc:58:0f:e3:e7:a4:bf:73:08:00:
                    c2:ad:3c:a2:f6:d9:df:2d:ce:cf:85:13:eb:02:e1:d9:
                    99:ed:44:a7:f3:e1:05:ff:20:68:63:aa:01:a1:a4:d9:
                    d3:c3:c6:48:e4:93:bf:f9:6f:b8:4a:7d:36:a5:42:31:
                    c9:a1:d9:9d:b2:33:cd:9b:8f:fc:43:00:33:d0:4a:8c:
                    69:0f:4d:9d:1e:b2:e6:f4:33:76:6f:98:16:45:44:6a:
                    ce:24:14:48:be:1f:08:d1:40:1d:c4:85:43:1b:03:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:70:11:4f:11:12:cc:52:c3:e9:e2:cf:b3:40:8d:21:
        fe:00:ee:64:b5:0f:9b:25:53:ac:67:7b:9b:1a:e6:39:
        44:17:69:7b:f8:8a:f2:b7:d6:db:c8:1a:67:fd:b5:c0:
        c3:44:c1:3c:41:3c:b6:6b:39:ce:2a:34:74:ae:cc:f8:
        1e:8e:de:6b:1e:6a:1f:75:f7:b2:14:20:82:2a:f8:7d:
        22:28:7f:2e:1a:95:37:1a:7e:59:55:23:47:74:10:44:
        b8:fe:73:d7:b2:5f:73:fd:1a:04:de:a0:98:9e:13:95:
        ce:d0:30:12:d3:58:93:38:89:18:bc:a3:e9:96:10:d3:
        69:4b:ad:8b:51:b8:10:ca:5c:ca:0e:81:6f:4c:54:ef:
        03:d0:52:5b:ef:f4:62:96:fa:81:8f:74:f1:85:c2:0a:
        dc:e5:0b:b8:be:f4:e1:14:e8:75:a8:37:41:03:49:2c:
        36:76:e0:82:81:f7:a2:7e:7d:f6:9a:6f:63:5f:79:c3:
        05:da:57:d1:cd:70:8a:92:54:70:51:57:eb:a0:72:c4:
        e6:93:39:87:2d:68:0d:ca:46:1c:19:45:95:3f:c4:97:
        76:0d:8b:6d:a0:ad:45:94:ba:a0:84:e2:9f:f0:a0:3c:
        49:25:54:cd:14:07:c3:d6:20:6a:b8:9a:27:89:bc:0f
    Fingerprint (SHA-256):
        2A:CE:B1:14:85:0C:CC:6D:B9:2F:C1:5C:FF:F8:A2:84:A1:1F:88:E7:17:DB:A4:20:4A:DE:F5:71:D1:F6:42:E7
    Fingerprint (SHA1):
        C1:6B:B8:9C:A9:38:F9:C8:C7:E5:CD:F9:A1:BB:8E:F6:3D:64:65:DB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11762: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:7b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:22 2017
            Not After : Thu Nov 23 12:40:22 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:c8:dc:10:f4:ac:1b:67:90:6d:4f:ee:2c:f2:42:54:
                    d7:ca:cc:af:c7:b1:53:fe:06:67:b2:19:72:61:aa:c0:
                    8e:ee:8b:b5:d1:81:47:77:40:17:4a:74:be:cb:7e:ec:
                    ec:f7:12:77:b2:c9:99:de:54:35:eb:0b:de:71:33:15:
                    45:a0:67:f7:f5:89:ba:87:5a:27:58:91:36:c4:12:4d:
                    65:07:31:f9:30:ab:47:46:91:c3:6b:0a:63:c5:a6:5f:
                    ab:37:64:dd:6f:f4:f2:ab:2c:15:39:f5:b1:8f:b5:66:
                    31:2b:25:ae:e0:ff:31:09:c2:6b:84:e2:ff:3c:c8:2d:
                    0e:01:d8:0f:d4:f2:0b:88:3d:fa:de:9d:8e:24:ea:b6:
                    bf:2a:4d:82:7f:15:ef:2b:53:71:00:61:1b:5c:4d:f2:
                    34:f5:66:95:da:bf:5a:d7:5d:02:d9:9c:dc:cf:b6:c6:
                    41:5f:95:21:88:02:7c:ed:fc:9f:2f:ad:52:a1:1c:82:
                    16:c4:85:fb:32:8e:a6:d7:06:b3:98:17:c7:b6:1c:70:
                    4e:55:eb:32:25:d2:43:0d:12:f8:d7:30:5f:53:5c:ce:
                    4b:63:bc:b9:db:96:33:47:d5:01:d9:ce:b2:93:82:71:
                    0f:ba:df:d6:84:38:82:8e:cb:93:2e:b6:f4:62:e2:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:36:b9:95:50:0e:aa:76:e6:34:58:bd:6b:12:1b:ff:
        54:93:80:f5:5a:57:a4:22:6e:4b:62:8b:bc:e3:6a:c4:
        9e:a9:07:cd:f4:56:15:bc:d1:5e:24:ec:1b:90:16:3d:
        c8:7f:1b:a6:ea:17:3f:bf:ec:d4:1b:10:a8:c7:0f:35:
        d0:c4:23:a1:67:dd:56:b1:b8:7e:ae:5a:47:70:04:7c:
        90:28:fb:c4:d0:a8:78:e6:32:0d:2d:48:50:62:e9:10:
        2e:b9:5f:04:a2:37:64:b6:c9:12:59:76:96:8e:d0:12:
        1a:f3:56:d7:22:42:f0:31:3a:cc:fb:33:e9:40:e6:0f:
        42:d9:5e:17:b8:3d:a3:8f:51:81:46:1c:ca:48:ab:03:
        1b:6b:19:87:da:6a:5c:61:c3:e5:9b:88:d3:18:ad:4b:
        42:34:66:19:91:04:6c:99:88:04:8c:48:54:58:2b:99:
        fb:19:5c:62:41:18:3d:fd:76:2e:f9:e4:c7:b1:9e:d7:
        42:bf:c2:5f:6d:9c:1a:0b:ad:a5:19:72:2e:65:61:ce:
        60:1f:b2:fe:15:48:99:f2:e8:23:8d:82:07:f0:c4:4b:
        97:3d:e0:34:98:7c:74:4e:52:26:61:20:94:ef:70:57:
        80:ca:db:be:42:67:74:2a:b4:f2:77:67:b1:ba:c3:91
    Fingerprint (SHA-256):
        4D:A7:4F:3A:0D:D2:66:65:7A:18:48:46:79:02:15:18:9E:60:35:D8:E4:1A:3C:2E:BA:84:B8:EF:01:A1:3D:55
    Fingerprint (SHA1):
        C9:78:1D:6F:24:4A:38:C2:4B:6A:2E:7E:47:F6:CF:80:F9:A4:64:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11763: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:7d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:22 2017
            Not After : Thu Nov 23 12:40:22 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f1:8c:78:57:8f:88:9f:23:85:29:02:b8:6f:8b:23:
                    ff:dd:91:d9:48:1f:46:c0:49:9b:24:e4:75:d9:2f:11:
                    7c:04:b7:3b:07:d6:50:06:94:17:7c:5c:c1:fb:1d:ae:
                    ba:b2:8a:4c:96:f2:3f:a7:6f:20:25:bd:5d:d8:0b:6b:
                    10:5b:27:5c:97:c0:50:4a:69:f4:6e:af:e3:cf:58:58:
                    e6:69:82:7f:93:34:0d:13:d8:ce:1e:5f:f2:19:ac:16:
                    9b:93:2c:85:99:1d:e6:3a:89:7c:8b:fb:e2:d4:12:80:
                    fb:3a:58:45:ba:2c:0b:29:0a:83:c7:26:b2:9c:ad:34:
                    d5:44:72:2c:9c:8b:3e:59:33:88:e8:cc:0a:58:48:76:
                    27:dd:30:29:4d:49:16:52:83:c7:6e:d5:b5:c3:f6:c4:
                    37:2b:17:21:01:2f:80:23:77:c5:cd:ff:b8:0b:6b:40:
                    7a:ba:54:82:f0:7c:79:36:ec:1e:b4:05:20:96:2b:c2:
                    4c:5a:04:16:c2:2b:14:b8:68:a4:21:7c:dc:23:3d:cf:
                    eb:87:a3:68:a0:69:6c:f5:25:61:49:37:f6:2b:ca:b2:
                    d1:9c:ea:7c:ec:00:b5:4a:6a:ad:af:14:bf:74:40:21:
                    6e:56:d3:c2:ba:df:58:d3:c4:a6:ef:43:e1:cf:33:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:a9:47:15:57:28:a0:5a:e7:6c:7c:d2:f7:c8:c0:cb:
        6e:b6:34:b7:2f:6b:9a:ea:9b:c0:16:2e:dc:62:cd:04:
        b2:03:23:4e:38:c4:97:ba:ef:eb:eb:f6:a4:dc:ad:45:
        37:56:23:50:be:94:ae:f9:52:7b:11:98:00:88:41:44:
        6e:ac:63:14:3e:84:56:df:d5:f0:1c:6b:af:cc:b0:b8:
        4f:87:6b:29:b5:8c:c3:b9:d8:3b:04:51:0e:06:5c:a1:
        37:90:f0:ec:be:99:2e:a5:f2:4a:8f:d5:ad:30:d1:09:
        25:a7:2b:0a:00:3b:76:07:e5:58:cc:7f:fd:75:b4:65:
        c8:bf:4f:bc:4d:ac:8b:23:ff:13:67:ae:85:da:fd:42:
        1f:06:f1:ef:b0:39:46:23:4b:1f:02:b3:27:e5:09:0e:
        f4:2d:bb:97:34:f5:2e:16:34:4c:b2:fb:5f:97:6a:93:
        17:09:9b:db:b8:7e:13:05:e1:c4:d3:ec:db:78:65:06:
        ce:f4:e7:42:76:6d:ae:22:1c:91:ee:5d:86:b0:95:eb:
        d0:4c:42:d7:97:3c:27:5a:45:da:d9:6d:f5:9b:60:07:
        fb:00:94:27:6b:24:45:44:93:08:b6:2d:ae:3a:fa:60:
        bd:86:02:90:0e:74:07:53:3c:34:7a:8a:df:54:48:54
    Fingerprint (SHA-256):
        23:D2:55:D7:54:D0:44:2B:DF:4A:91:DB:FA:A4:73:6F:53:1B:6A:D6:24:48:60:0F:2C:93:A6:48:C5:11:4C:4C
    Fingerprint (SHA1):
        2B:96:B4:6C:08:BD:59:BE:6B:34:90:DE:7E:40:46:A9:CA:AF:2C:78
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11764: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:7e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed Aug 23 12:40:23 2017
            Not After : Thu Nov 23 12:40:23 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:6b:a1:51:72:da:d9:46:84:f1:3a:0c:b3:59:f9:81:
                    9c:f9:cf:71:c7:ce:9e:c9:a7:c1:76:0d:ab:2a:63:ed:
                    48:5d:c1:d8:24:f6:4d:9c:5d:74:f9:97:4c:27:27:0a:
                    ae:9c:45:ca:b3:f2:f7:d4:4a:08:b8:69:45:ce:8e:3b:
                    14:95:ab:5a:80:d2:ad:44:d1:b3:0a:88:48:8f:fc:23:
                    e0:0e:6a:62:ad:ba:9c:05:88:39:cd:5d:1c:76:fb:cd:
                    bb:8b:be:31:b7:32:63:65:6f:1e:0f:a9:70:4a:b5:1f:
                    6e:3d:1f:a1:65:c2:af:00:af:b9:cb:3d:d9:55:6f:bf:
                    fd:85:49:ff:16:71:05:ae:81:f6:27:68:9b:3a:55:d4:
                    81:ec:f2:7f:58:48:d0:21:65:54:6c:e1:94:6f:02:2b:
                    f4:88:95:fa:62:05:1e:86:3f:6c:ca:78:4c:1d:9f:62:
                    35:c9:72:b6:32:c2:6d:ba:bc:07:db:4c:33:b0:ef:1e:
                    9b:1d:b5:b0:38:22:78:2c:f4:ed:49:af:53:83:f3:a5:
                    5e:b1:f1:88:0b:24:e4:fd:50:05:c7:d0:f1:18:e0:62:
                    a9:b5:11:05:fc:66:08:21:f4:f6:12:6e:db:cd:41:8f:
                    5c:42:b9:95:21:63:f5:31:fc:46:63:8c:e2:96:e3:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:70:a5:69:c5:1f:96:05:4d:b4:79:6a:f7:8e:e3:71:
        2a:45:e8:cf:4a:2d:ec:dd:0f:a7:09:48:2e:85:4e:41:
        3d:5e:bb:bc:58:32:4a:0d:cb:a3:40:df:f0:5c:32:bd:
        96:40:be:55:0b:29:99:ca:90:be:d1:a7:0c:af:a8:a9:
        5a:1b:cf:7e:61:9f:04:6c:b0:3e:b9:03:3a:c9:c1:e7:
        0b:1d:33:82:ca:b1:01:2d:f0:fa:7d:cc:38:99:33:4a:
        ee:39:a3:76:ec:13:d8:8a:71:fe:17:0f:93:ee:de:a0:
        f2:b2:69:c8:90:dc:22:50:b3:88:6e:98:92:e6:98:60:
        f5:e0:88:78:01:58:bd:dc:4b:da:a1:50:21:02:90:f1:
        f1:02:4b:ce:b1:af:be:18:f0:12:6d:a7:2b:2a:b9:65:
        01:0e:97:ca:38:ad:dc:4b:37:9f:9d:e6:06:64:52:5d:
        03:56:fb:94:b3:2d:08:24:33:a0:61:51:0f:82:fc:a2:
        c0:fb:1a:e8:b8:2b:7c:89:41:ed:81:69:f7:5d:0b:99:
        9d:fc:81:da:0d:19:f0:21:a4:41:6d:00:e5:12:e6:ce:
        d0:20:1f:03:c2:d0:d9:2d:f8:1e:bf:7a:23:25:79:c4:
        8c:be:8f:4b:17:dd:34:eb:a9:2c:29:56:03:09:11:58
    Fingerprint (SHA-256):
        FD:CF:CC:C5:6C:28:FF:1F:A4:12:60:34:05:47:6F:FD:FB:7A:79:DF:23:A6:52:56:E8:AF:20:EA:4F:09:08:A2
    Fingerprint (SHA1):
        99:17:D5:6D:69:EE:7C:5E:05:A3:80:8B:4D:67:B7:8D:18:87:A2:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11765: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #11766: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #11767: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #11768: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:82
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed Aug 23 12:40:25 2017
            Not After : Thu Nov 23 12:40:25 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:0d:7e:59:3b:be:8f:64:c6:2a:b2:7e:1f:78:07:b8:
                    48:43:6c:af:e0:ae:4b:fb:4e:18:6e:32:ec:a9:b8:c1:
                    a5:8b:04:6e:e5:6a:0b:9d:4c:9e:75:6e:dd:71:91:ce:
                    6c:bb:25:81:13:e0:9c:91:12:10:31:69:cd:95:e6:e3:
                    00:b0:28:b7:2e:fc:5b:ac:27:51:b3:0e:4c:7d:84:1c:
                    88:1e:b2:ba:4a:1b:5b:5e:b1:38:6a:4a:0b:c0:fb:ba:
                    1b:7b:86:fb:9d:12:e9:8b:1b:e4:df:20:e5:c2:a0:c9:
                    52:83:e2:4f:6c:7e:fc:1e:c3:94:1f:8a:17:5c:18:8a:
                    bf:ee:f0:bc:6a:7e:f0:d0:b0:53:bd:32:ce:7e:6f:9f:
                    bd:60:af:65:90:73:fa:c8:1a:63:98:f1:af:11:f2:f7:
                    6d:49:e9:03:c4:d4:8e:1b:55:14:2d:6e:52:58:e8:1b:
                    fe:27:60:0f:6f:10:6d:ac:cc:08:b5:aa:9a:14:16:31:
                    28:f4:48:a2:fc:36:e3:c7:f6:7e:78:9e:33:b9:1b:cb:
                    88:58:60:8c:8f:80:fb:82:6d:cb:ee:a8:97:d1:60:b2:
                    77:5c:6a:33:2d:7d:d4:90:ea:c3:79:ab:d5:80:7a:d9:
                    63:be:33:fe:c6:2d:b4:c4:bd:e3:c9:73:98:e6:4c:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:c2:27:8f:be:30:23:78:1d:03:a8:75:57:ee:7b:d5:
        9b:8c:17:99:6d:09:8a:48:10:f8:06:ce:9a:c8:34:d5:
        86:a8:66:6c:cb:2b:01:0e:a1:d2:57:07:95:b0:05:79:
        7b:a8:f6:c5:73:8e:6c:31:ef:d3:da:2a:3f:1c:36:ab:
        81:be:4d:25:f8:91:48:91:15:04:40:a2:7f:b9:16:73:
        6c:08:d7:91:63:fe:ad:a3:ec:51:7e:58:e9:e0:af:15:
        bb:3b:31:be:56:93:6b:2d:0a:c1:79:55:0e:79:1b:51:
        6f:4e:fe:bf:61:3e:17:3d:07:f6:64:7a:80:15:12:34:
        ae:f9:a9:fd:f8:69:fa:ed:97:6f:e8:94:b5:fd:4f:32:
        06:65:ce:91:83:9d:4c:59:c6:79:82:af:e4:c8:02:71:
        fd:7f:d8:a2:35:0f:df:62:5d:b7:0e:c3:20:10:e0:e4:
        c8:fb:e6:d1:26:f0:46:a8:cf:c6:b6:af:60:79:25:9d:
        08:83:06:4d:b8:0a:5f:ae:00:10:dd:b2:2e:8b:a8:39:
        60:dd:f2:6e:83:11:25:94:6b:d8:43:fd:70:65:e7:cb:
        a8:f6:90:ff:7d:00:d5:6d:12:a4:a7:0f:c8:dd:7d:40:
        26:35:df:93:5f:90:96:c0:d9:56:06:aa:39:7e:c8:e2
    Fingerprint (SHA-256):
        43:25:1D:08:13:F7:03:A7:06:9E:1A:D8:C4:45:61:2C:26:D5:82:AE:9B:A5:11:97:5B:D1:E8:4B:56:9A:FE:BE
    Fingerprint (SHA1):
        70:47:01:D3:ED:54:05:E9:E8:2C:FA:4F:03:76:02:60:1B:D8:D1:98
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11769: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #11770: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #11771: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #11772: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11773: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11774: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11775: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #11776: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:aa:ed:60:88
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed Aug 23 12:40:28 2017
            Not After : Thu Nov 23 12:40:28 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:5a:cd:f6:61:39:23:1d:5e:7f:3c:51:e0:1c:eb:05:
                    b2:53:cb:3a:9c:b9:4e:9f:e1:18:b6:b2:13:b5:cc:c1:
                    11:06:7a:0a:9b:f1:5a:ac:58:05:c2:fc:81:c2:6f:56:
                    9b:95:bd:58:98:e4:80:51:a9:fe:5b:ba:17:41:5b:fb:
                    c0:f9:e8:08:94:cb:a4:5a:7e:51:8a:27:9a:d8:aa:4c:
                    40:1b:49:e9:f9:aa:93:58:3b:14:5a:96:39:c6:2b:dd:
                    5b:26:d1:20:8a:58:d3:8a:60:3c:b1:0b:d5:73:5f:37:
                    10:f3:8a:6b:18:9a:33:be:75:d8:36:1e:3e:b6:a3:a9:
                    4b:55:c1:ba:a4:6a:a3:56:82:b5:ef:c4:08:a2:0a:2f:
                    9f:f5:ed:78:c5:8b:05:35:41:ed:94:65:a1:2a:76:d1:
                    22:c1:85:e1:6d:b9:fc:77:f3:ac:89:7a:44:8a:f9:75:
                    09:46:8a:c0:d7:d5:17:ea:e3:61:40:d1:d0:0b:f0:21:
                    96:48:0f:97:06:fd:a0:26:1c:df:53:ad:5e:6e:c7:cc:
                    70:09:21:51:8b:11:b3:08:43:f6:14:f3:d4:ad:94:5f:
                    64:2a:66:a8:1c:90:e8:25:47:89:58:64:f8:27:18:34:
                    9e:61:fe:b7:79:69:20:2b:30:bb:3c:48:e2:8a:6f:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:fb:a8:27:a8:f5:de:5d:2f:bb:9c:ce:cb:23:4a:61:
        72:7b:dc:2a:d3:ae:6a:f3:82:e9:57:dd:66:64:71:03:
        52:b0:0a:17:44:76:1c:c5:61:d7:b9:e5:bb:4c:d8:5c:
        d9:13:e6:a6:5a:4a:06:84:25:55:73:aa:60:49:1a:51:
        16:ac:1d:6b:b1:fb:76:0b:58:54:60:d2:10:4e:b1:9c:
        e4:80:e6:a3:b0:ee:a8:2d:d7:b4:f6:45:d8:97:0b:d1:
        cf:7b:0c:51:33:82:a5:ab:1a:76:88:9e:2f:6f:8a:9e:
        ab:26:91:b4:17:3d:ac:e1:fd:91:27:35:97:07:31:5e:
        b4:33:fe:9e:c1:ad:0f:80:72:be:c1:4b:4c:08:c7:e3:
        33:3c:a7:2a:36:61:76:85:4e:78:10:35:44:14:d8:e0:
        93:f5:0f:33:dc:be:b1:5d:da:9c:bc:e2:47:48:12:0b:
        c5:ff:ca:2a:70:21:51:1f:a9:af:8e:e3:74:5f:f2:4c:
        0e:61:84:8b:23:5a:51:72:be:6c:34:0a:6d:7b:23:39:
        e1:ac:e7:c1:44:43:55:ee:c2:72:b9:ba:70:9e:55:a0:
        4b:aa:d5:fe:92:d3:b8:fc:41:88:b4:a4:fc:60:0c:f1:
        35:8b:ad:ca:87:31:80:b6:8c:f1:71:4a:17:53:37:89
    Fingerprint (SHA-256):
        89:A0:75:23:EF:58:86:C5:29:D0:A5:A5:55:66:0B:D7:BA:95:2C:7E:0B:7A:C1:8D:A7:FD:17:28:45:E1:05:DB
    Fingerprint (SHA1):
        05:12:40:4C:02:2B:2D:AC:ED:E2:92:7C:58:E7:A3:2E:93:00:C4:37
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11777: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #11778: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #11779: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #11780: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11781: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11782: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #11783: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #11784: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11785: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #11786: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #11787: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11788: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #11789: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11790: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #11791: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11792: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #11793: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11794: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11795: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #11796: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11797: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11798: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #11799: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11800: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11801: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #11802: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11803: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11804: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #11805: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11806: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #11807: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #11808: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #11809: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #11810: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11811: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #11812: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11813: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11814: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11815: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11816: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11817: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11818: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11819: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11820: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11821: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11822: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11823: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11824: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11825: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #11826: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11827: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #11828: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11829: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11830: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #11831: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11832: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11833: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #11834: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11835: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11836: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #11837: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11838: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11839: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #11840: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11841: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11842: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #11843: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11844: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11845: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #11846: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11847: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11848: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #11849: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11850: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11851: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #11852: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11853: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11854: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #11855: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11856: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11857: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #11858: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11859: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11860: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #11861: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11862: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11863: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #11864: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11865: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11866: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #11867: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11868: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11869: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #11870: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11871: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11872: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #11873: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11874: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11875: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #11876: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11877: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11878: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #11879: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11880: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11881: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #11882: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11883: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11884: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #11885: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11886: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11887: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #11888: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11889: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11890: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #11891: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11892: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11893: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #11894: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11895: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11896: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #11897: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11898: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11899: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #11900: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11901: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11902: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #11903: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11904: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11905: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #11906: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11907: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11908: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #11909: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11910: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11911: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #11912: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11913: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11914: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #11915: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11916: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11917: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #11918: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11919: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11920: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #11921: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11922: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11923: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #11924: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11925: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11926: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #11927: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11928: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11929: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #11930: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11931: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11932: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #11933: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11934: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11935: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #11936: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11937: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11938: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #11939: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11940: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11941: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #11942: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11943: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11944: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #11945: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11946: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11947: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #11948: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11949: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11950: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #11951: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11952: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11953: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #11954: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11955: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11956: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #11957: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11958: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11959: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #11960: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11961: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11962: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #11963: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11964: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11965: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #11966: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11967: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11968: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #11969: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11970: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11971: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #11972: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11973: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11974: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #11975: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11976: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11977: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #11978: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11979: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11980: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #11981: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11982: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11983: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #11984: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11985: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11986: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #11987: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11988: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11989: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #11990: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11991: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11992: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #11993: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11994: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11995: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #11996: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11997: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11998: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #11999: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12000: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12001: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #12002: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12003: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12004: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #12005: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12006: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12007: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #12008: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12009: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12010: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #12011: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12012: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12013: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #12014: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12015: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12016: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #12017: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12018: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12019: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #12020: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12021: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #12022: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #12023: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #12024: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #12025: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #12026: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #12027: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #12028: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #12029: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #12030: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #12031: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #12032: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #12033: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #12034: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #12035: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #12036: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #12037: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #12038: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed Aug 23 12:41:25 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Wed Aug 23 12:41:25 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12039: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12040: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #12041: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12042: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12043: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #12044: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #12045: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #12046: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #12047: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #12048: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #12049: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #12050: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #12051: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x 2 mockbuild mockbuild   4096 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
-r--r----- 1 mockbuild mockbuild   1225 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r----- 1 mockbuild mockbuild   1425 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r----- 1 mockbuild mockbuild    581 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r----- 1 mockbuild mockbuild    705 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r----- 1 mockbuild mockbuild    870 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r-------- 1 mockbuild mockbuild 205824 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r-------- 1 mockbuild mockbuild 102400 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r-------- 1 mockbuild mockbuild    629 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r----- 1 mockbuild mockbuild    395 Aug 23 12:41 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #12052: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:57 2017
            Not After : Tue Aug 23 12:39:57 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:cf:a0:ee:08:0d:fa:10:c3:cf:8c:83:56:05:cc:35:
                    4b:0f:17:33:8c:68:f9:8d:3c:a9:ea:a5:c2:e7:38:9b:
                    53:18:61:b2:09:f1:f4:b4:3d:c6:5e:62:19:ff:2a:62:
                    8b:de:dd:61:cb:24:74:7e:ef:5c:07:62:f9:c7:bf:e3:
                    f0:c6:50:c6:4c:4f:78:16:2b:62:1d:bb:fe:cc:16:ae:
                    a6:bc:2b:56:9b:db:01:da:d4:40:16:4c:4e:d3:7e:4f:
                    f2:dc:b8:e4:17:89:07:f8:a6:89:8f:19:c2:8a:84:8b:
                    6a:38:18:78:b7:f6:c3:8f:e2:6a:ef:5b:7a:7c:d8:cd:
                    30:3c:af:c2:5e:b8:3c:cb:f6:fa:89:e0:a4:30:59:69:
                    b4:e6:f8:6c:59:a2:c0:6d:a0:c5:b8:10:87:81:26:12:
                    3e:51:98:c4:fa:17:71:59:c5:75:65:2d:a6:5c:d1:c3:
                    f7:da:6b:fe:37:f9:28:c3:65:f9:ca:8a:f5:c8:45:b3:
                    12:c1:54:37:2e:cf:7c:ae:4c:47:41:f4:01:b7:18:c5:
                    aa:81:d9:5d:69:22:bb:ff:79:83:d5:e6:80:fc:a3:ca:
                    e3:97:80:58:21:8a:2d:ce:41:94:63:48:40:ae:71:e4:
                    b5:30:82:cf:f2:03:a0:ab:25:f2:fa:28:50:95:f7:5f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:7f:ea:2c:9a:aa:2b:14:83:52:d4:dc:b6:e6:3c:95:
        db:1e:45:79:1e:08:66:f4:b5:36:71:9d:0d:b9:0b:2f:
        c1:cd:11:a2:82:ba:03:c6:73:ea:cf:e3:24:ad:03:14:
        34:cd:0c:0e:32:28:4a:4a:ed:6d:b7:db:69:81:ec:1b:
        43:c3:03:37:20:46:82:08:b6:e9:2b:03:24:d8:ff:3f:
        e3:b4:ac:03:32:48:c2:e9:2f:04:49:ed:21:6e:94:68:
        16:97:50:2f:9a:b7:4d:02:f6:8f:77:b3:d3:bc:4c:60:
        7e:3e:06:3a:4b:b9:9e:28:c2:d7:1b:eb:2e:6e:70:56:
        3e:97:f4:66:4a:53:1d:16:ab:6a:0a:c3:1f:9b:09:ca:
        71:d7:55:f1:5b:b4:3d:c7:ca:00:db:79:26:34:d6:0d:
        51:a2:c9:1f:75:e1:3e:e1:a5:ce:6f:1c:c6:39:0d:a6:
        4c:7f:10:45:24:19:00:4f:af:2b:bb:86:3c:92:6f:bb:
        1a:19:82:fc:77:cc:a6:07:5e:3e:dd:f4:6c:0d:0a:85:
        ff:12:ba:43:70:41:b4:7a:63:3f:c4:2b:12:c6:46:c6:
        ef:4e:34:69:ec:62:87:ae:2d:d5:79:e9:1d:43:ac:0c:
        21:3a:be:e2:60:99:3c:1d:44:e8:22:dc:25:89:e6:bc
    Fingerprint (SHA-256):
        1D:D3:24:99:69:13:98:9D:3E:F9:22:C4:9B:C8:6B:25:C3:0A:ED:27:68:A5:C1:C2:ED:EE:AB:25:2C:33:87:89
    Fingerprint (SHA1):
        57:F4:41:3E:95:5D:16:16:5F:78:93:22:C9:EE:13:A8:01:26:59:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #12053: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Wed Aug 23 12:41:27 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed Aug 23 12:41:27 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12054: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d1:fe:0f:5d:25:f4:40:8a:fb:1b:d1:cd:a9:f9:9b:97
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12055: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12056: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12057: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12058: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                51:fb:89:a0:11:2d:f9:3d:55:5f:6a:63:e2:ee:cd:8b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:39:27 2017
            Not After : Tue Aug 23 12:39:27 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:ff:4d:b5:62:0e:32:98:16:77:5f:bc:1c:22:ce:
                    84:9e:90:8c:31:cc:70:38:be:fa:5c:aa:62:39:cf:cb:
                    23:9f:c8:41:23:99:ac:97:d7:a2:c4:80:8c:75:02:de:
                    f1:f0:d0:9b:5e:d3:05:48:a5:3f:a1:97:42:0a:06:b6:
                    4e:8e:a1:00:17:f7:31:53:5c:61:5e:03:d3:3f:72:26:
                    b3:79:d2:52:34:33:f3:88:ec:3d:da:a8:3b:3b:da:46:
                    d9:6a:3c:d0:68:5e:f6:1a:c4:3a:22:ac:08:c2:c7:43:
                    6e:aa:2a:e8:db:9a:57:4a:2a:c8:f5:fb:d3:3e:b8:1b:
                    3b:bb:7c:5a:f0
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:41:5e:bf:a7:34:89:09:e8:2e:f4:8f:15:
        50:10:03:58:8a:86:80:27:8a:c8:e6:43:66:2b:54:45:
        14:35:f6:97:28:96:ec:80:e6:41:a7:7d:c5:40:c3:c9:
        92:d8:ab:55:fc:48:4b:10:af:c5:4c:d5:bb:34:5d:92:
        1d:84:8a:80:b5:2c:02:42:00:c2:ee:67:dc:be:81:63:
        ec:d3:c1:96:6d:1e:e3:a8:10:79:11:77:19:f4:25:b6:
        55:47:de:1b:c7:f4:98:3e:51:d4:ea:ef:c5:4a:59:58:
        a2:92:06:0a:74:a8:b7:9b:4c:ec:fc:dd:0e:03:a7:2c:
        55:fe:91:01:00:8e:cd:62:39:73
    Fingerprint (SHA-256):
        4C:F5:93:91:5A:9A:99:CF:E4:0F:23:37:6C:D5:97:E2:1F:DB:72:42:D6:CB:ED:FC:D4:3B:A7:60:58:6B:31:88
    Fingerprint (SHA1):
        AB:F6:8F:1A:72:13:8A:74:9C:8F:2A:DF:5C:5A:7E:3E:24:FB:FF:DE
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed Aug 23 12:39:55 2017
            Not After : Tue Aug 23 12:39:55 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:e9:ea:84:fa:e2:58:06:ae:30:54:e0:5b:c2:59:e2:
                    95:9c:09:f3:15:17:fd:6f:28:d2:bd:5d:ce:23:c6:6e:
                    19:cd:5a:a6:a1:d5:3f:38:14:4b:c1:4c:67:dd:9b:dd:
                    8b:c8:d5:83:18:2e:e5:56:36:80:47:a2:df:cf:d8:88:
                    e8:80:cd:b2:26:33:63:f2:8a:38:53:af:69:c5:6e:f3:
                    72:6a:62:46:14:eb:db:ee:f6:cc:d0:41:76:b4:02:2b:
                    75
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:29:de:51:67:37:17:51:6f:c7:f6:
        78:02:48:60:55:43:ce:a6:1b:65:c2:a6:3d:ff:89:93:
        34:e2:4a:b1:bf:be:4e:ab:88:7a:15:d6:bd:3c:4c:13:
        c0:7e:d9:25:0e:18:a4:f1:68:57:04:00:c5:64:1f:64:
        2a:5b:97:5d:69:d2:6f:02:42:01:6a:93:2a:8a:3b:39:
        f1:9c:cb:db:b8:d3:01:32:f3:b8:cc:8c:53:17:98:70:
        60:d3:2c:e1:ed:a3:4b:ec:c5:66:75:40:94:99:c1:b8:
        ef:6d:9b:3f:44:8b:f5:2d:8a:21:1d:d7:92:23:68:81:
        20:58:10:7d:7d:2b:9d:26:8b:37:95
    Fingerprint (SHA-256):
        A7:4B:F8:2E:88:F9:BB:4D:CB:55:87:4F:1B:D7:2B:FB:19:D9:F2:0B:CA:DC:F5:4A:AA:67:F2:92:D9:C6:A0:AC
    Fingerprint (SHA1):
        A0:39:B3:CF:51:E7:94:2F:00:8F:B7:C9:75:49:52:54:B5:72:B6:5B
    Friendly Name: Alice-ec
tools.sh: #12059: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12060: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c3:83:5d:24:f0:3f:83:b4:33:0e:d8:99:97:61:97:22
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12061: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12062: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12063: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                2e:76:76:d7:f0:4b:8d:44:82:d8:9a:20:8c:bd:a1:91
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12064: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12065: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12066: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                57:d2:f6:cf:78:3d:68:61:ea:26:7e:83:99:1c:22:93
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12067: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12068: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12069: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c3:b4:84:71:ce:36:c7:b1:1b:e9:de:cd:ec:71:2c:c7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12070: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12071: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12072: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                a9:10:19:81:a2:a3:77:a5:f3:da:b8:c0:dd:7c:46:60
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12073: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12074: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12075: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c6:7b:ea:78:c1:10:82:c7:55:b0:c2:89:ec:a4:e8:f3
            Iteration Count: 2000 (0x7d0)
tools.sh: #12076: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12077: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12078: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a9:9b:a4:a0:d6:0a:7a:53:ff:a7:00:cc:cd:db:ef:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12079: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12080: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12081: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6e:85:81:78:e3:cb:31:fc:4f:c8:63:99:81:81:4c:34
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12082: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12083: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12084: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a2:e2:49:e0:43:3f:83:70:37:84:80:2a:23:c0:9d:7a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12085: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12086: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12087: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e7:57:ba:b2:41:f7:c5:7b:00:c3:a8:59:08:e5:df:30
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12088: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12089: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12090: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                14:a5:a6:6d:fb:af:03:44:fd:4b:91:3d:6d:32:80:d0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12091: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12092: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12093: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                65:54:b9:46:43:14:b6:33:a7:d6:a6:12:c0:86:af:56
            Iteration Count: 2000 (0x7d0)
tools.sh: #12094: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12095: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12096: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7c:4f:a3:8d:14:d3:2b:ca:5d:da:b5:7c:63:33:5b:7f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:19:17:e8:91:16:cc:f5:cc:dc:e7:6a:95:85:59:
                    9e:b9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12097: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12098: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12099: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        51:5d:8c:f2:1e:6e:33:0d:86:d4:d0:99:ea:c1:ce:2f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:b6:66:f6:06:12:d0:36:64:ca:52:57:04:b5:cb:
                    7b:40
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12100: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12101: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12102: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        46:ce:4a:4a:be:28:ab:11:fc:38:a2:b0:2f:d2:d7:cb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:c5:ac:37:1c:40:11:74:f7:24:d2:9d:3a:1c:c2:
                    d5:0b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12103: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12104: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12105: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        db:55:ce:7a:74:00:5b:ab:67:d8:cf:6a:09:7b:00:05
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:9a:a1:11:d5:d4:88:85:15:36:69:1a:ce:4c:47:
                    0f:75
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12106: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12107: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12108: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c4:12:3c:6c:77:99:2d:10:92:5a:da:b7:06:69:be:60
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:ab:7a:20:f6:eb:2d:67:67:61:19:a8:37:86:ec:
                    81:68
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12109: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12110: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12111: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        79:f5:ea:05:cf:a6:21:7f:6a:c1:b9:c5:38:f8:e4:08
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:5e:f4:8d:7c:58:77:9e:75:21:22:c8:36:78:c3:
                    07:42
tools.sh: #12112: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12113: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12114: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        80:d7:48:82:56:31:9c:e1:7c:f1:2a:4a:12:b1:6c:7a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:1e:62:16:00:ac:d5:a7:0d:ae:35:75:74:fb:f8:
                    6b:fb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12115: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12116: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12117: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        74:6a:4d:00:76:e4:30:e1:c3:4c:f6:c1:9c:ae:81:33
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:5a:a6:0b:14:52:9d:2f:ac:23:a0:ed:7f:1b:12:
                    44:db
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12118: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12119: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12120: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        81:b3:82:a1:1a:2d:63:e1:45:9e:22:d5:c2:92:20:8b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:8e:2b:c4:c0:7a:a6:7a:9d:33:3d:5a:93:9f:97:
                    ea:66
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12121: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12122: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12123: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:90:8f:94:e0:fc:58:35:51:1d:18:f4:ea:dc:f3:b3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:9f:b8:16:aa:fa:c6:eb:b8:8c:d7:9b:a6:50:36:
                    98:de
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12124: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12125: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12126: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        81:fc:04:3f:aa:69:fa:9c:a3:57:a6:00:ba:6e:c5:52
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:8d:dd:7c:a3:78:53:5f:47:44:0b:e2:75:5a:43:
                    9e:f2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12127: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12128: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12129: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        63:8c:00:be:cf:09:2a:90:d7:49:5f:eb:c0:44:5d:a5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:4d:b0:02:74:fd:62:c5:35:bd:45:de:64:e6:49:
                    c2:96
tools.sh: #12130: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12131: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12132: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        47:24:59:c2:8f:de:48:0b:02:dd:d9:af:a8:e2:d8:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ab:b2:19:d2:15:d2:7a:e2:67:b2:4a:85:20:c3:
                    27:7c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12133: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12134: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12135: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        48:c6:2b:fb:4a:95:4b:a4:23:00:72:c4:15:42:79:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:7b:c4:45:ea:05:e0:b2:19:20:74:7e:76:a6:60:
                    d0:ff
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12136: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12137: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12138: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bf:12:33:b2:d8:7a:c7:35:1b:b4:b8:e2:6a:60:c0:31
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:f2:ad:ca:d5:bd:6e:e7:3d:d8:ab:29:ac:1f:81:
                    b6:c5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12139: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12140: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12141: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d2:12:ee:de:28:93:79:a4:ea:2c:92:62:94:75:ef:a1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:15:64:f8:cd:27:a9:1e:76:0d:04:67:d0:46:d9:
                    53:75
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12142: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12143: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12144: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a0:a1:76:d1:4b:12:e1:10:0d:b6:9e:9d:0b:29:45:65
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:0a:fe:c9:af:be:10:01:63:75:cc:58:f8:10:34:
                    1b:e1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12145: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12146: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12147: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        38:2f:3d:6a:ba:89:96:34:29:8a:89:af:a9:42:a9:55
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:78:24:4e:19:c5:60:cd:40:f5:46:fd:66:40:d4:
                    09:ea
tools.sh: #12148: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12149: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12150: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        78:75:05:8a:98:04:8d:c1:a9:38:32:99:66:b7:96:e7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:f5:30:58:36:b8:a2:42:60:33:50:1e:a9:0c:05:
                    41:e2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12151: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12152: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12153: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        60:75:10:58:20:f3:a4:5c:b9:8a:04:f0:e1:d0:83:df
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:d1:06:30:43:6a:4f:a0:13:05:27:62:cf:6b:8c:
                    01:58
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12154: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12155: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12156: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2d:4b:c3:fa:9b:91:5f:58:3a:a9:1c:41:a4:80:88:22
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:8c:f4:db:31:73:7c:5e:b9:77:7f:17:c4:f2:ff:
                    5d:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12157: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12158: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12159: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e9:b1:df:24:df:33:ad:a2:37:f5:44:32:c9:3b:c4:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:35:db:a9:a9:ae:85:10:0c:12:5f:80:47:dc:87:
                    58:70
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12160: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12161: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12162: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a3:04:fa:43:47:f4:60:01:28:0d:d1:5e:58:0d:46:6f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:b5:78:91:d9:22:90:f9:ea:43:e9:5c:b3:d3:73:
                    b6:bb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12163: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12164: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12165: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d5:79:0a:e1:68:14:b0:84:67:ce:84:fc:f4:fc:34:72
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:cf:af:af:01:b8:f0:c4:d9:ab:dc:c2:99:11:36:
                    77:de
tools.sh: #12166: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12167: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12168: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4c:81:08:cd:f9:1e:ae:35:d8:1c:e4:ce:1a:fd:45:06
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:97:b5:dd:51:7f:b4:67:76:db:fd:5d:84:5b:1e:
                    cc:b0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12169: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12170: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12171: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f7:56:3d:08:72:06:11:a6:0b:92:35:d5:5b:df:2a:af
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:0a:ca:f4:89:05:5c:18:0f:11:25:6d:8e:22:22:
                    c4:1d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12172: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12173: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12174: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b9:9b:1f:0c:7a:21:c9:31:8b:19:b9:31:2c:dc:5e:20
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:6e:07:24:64:70:e4:3c:e1:d7:5a:fc:f5:b8:3c:
                    4c:9c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12175: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12176: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12177: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d5:9e:3d:66:9b:21:b7:9d:81:f6:7a:bb:4a:c1:97:fa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:0e:db:df:65:13:59:b7:a5:dd:3b:ba:82:d7:69:
                    54:2e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12178: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12179: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12180: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9e:77:05:46:d5:5c:4d:b5:4d:25:2f:54:3e:07:53:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:24:6b:3a:bb:e4:e5:ec:02:79:37:cc:44:66:1f:
                    23:67
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12181: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12182: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12183: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        52:57:3c:3c:b6:cc:46:7a:6a:1b:d5:5b:a5:ab:32:95
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:31:ac:dd:4d:b3:a6:2e:8b:86:25:dc:e1:43:e4:
                    a7:40
tools.sh: #12184: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12185: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12186: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        19:1d:b3:88:57:b5:6f:22:c1:06:f0:5d:4e:23:7a:5b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f1:f0:6e:bd:8f:7c:cb:74:32:dc:e6:02:57:66:
                    a8:92
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12187: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12188: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12189: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        08:e2:f5:b0:11:53:d8:4c:af:7f:61:54:dd:88:5b:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:43:57:3c:03:3f:f1:ab:bd:5b:01:d8:94:c5:83:
                    1c:a1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12190: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12191: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12192: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d4:50:dc:35:fb:9f:eb:75:0a:52:e0:65:e2:f4:d5:1a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ed:cc:1d:0e:d5:4e:17:e0:1e:59:87:89:31:ee:
                    38:95
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12193: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12194: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12195: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0a:54:99:df:6d:ac:b6:3e:54:57:57:92:f0:45:6f:5c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c1:de:ea:0f:5c:ad:0a:06:fa:4f:f8:0c:2a:e0:
                    cd:6a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12196: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12197: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12198: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        46:02:f8:12:a5:8e:32:bf:8d:6a:59:6b:d0:7c:ad:b7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:88:4b:60:e1:7d:8c:7a:bd:4c:0d:ce:e0:a2:e7:
                    b4:a2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12199: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12200: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12201: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c7:26:0f:31:5a:dc:94:34:a2:67:d4:d5:cd:1d:79:df
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:db:63:d8:ce:cd:4d:00:e1:11:b7:d0:a4:63:c3:
                    f2:fa
tools.sh: #12202: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12203: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12204: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a5:8e:06:55:7d:a6:6f:12:da:48:26:32:f9:f4:52:7a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12205: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12206: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12207: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                74:a5:e7:5f:dc:1c:de:03:96:65:76:54:cc:c3:5c:df
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12208: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12209: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12210: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                aa:14:fb:73:46:62:a2:da:97:34:06:2c:de:90:79:7b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12211: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12212: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12213: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                98:76:c8:47:d0:3f:08:fe:a1:db:a1:1c:84:53:2c:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12214: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12215: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12216: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                f8:d5:aa:df:76:54:d1:dd:74:ea:27:48:c3:c4:b9:17
            Iteration Count: 2000 (0x7d0)
tools.sh: #12217: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12218: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12219: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                04:a5:db:4a:fa:27:ca:83:9a:c6:12:ba:1b:58:d5:2e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12220: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12221: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12222: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                79:8e:ae:a1:f1:c7:19:5b:a4:66:31:e8:eb:a1:0f:4b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12223: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12224: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12225: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                42:bc:0c:cd:d1:67:9b:bb:fd:7b:66:0e:4b:51:34:76
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12226: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12227: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12228: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                36:35:b0:0a:4d:07:58:ff:28:5e:d0:59:01:53:3e:e1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12229: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12230: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12231: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e3:85:46:17:9a:6f:bd:74:c2:ed:07:1c:cf:f2:01:db
            Iteration Count: 2000 (0x7d0)
tools.sh: #12232: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12233: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12234: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                6d:57:3c:b4:4a:88:7b:6a:89:77:cb:e8:b0:6d:da:30
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12235: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12236: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12237: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                a4:7d:7a:bc:8e:ae:7a:4d:6a:a2:87:b4:dc:fd:61:3c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12238: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12239: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12240: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                79:23:3c:10:de:c0:55:af:bc:8a:d7:e5:2b:02:b4:0e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12241: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12242: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12243: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f2:06:f1:2e:22:dc:ef:58:94:1a:05:04:03:2e:d7:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12244: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12245: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12246: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                8c:5a:46:b5:8d:be:c5:dc:aa:ea:d4:ff:fa:68:33:1d
            Iteration Count: 2000 (0x7d0)
tools.sh: #12247: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12248: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12249: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                59:88:a4:31:9b:9d:06:ae:93:d5:10:0b:00:f6:be:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12250: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12251: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12252: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                58:bc:99:81:d6:3e:96:93:5f:95:fe:83:7b:47:e4:86
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12253: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12254: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12255: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d0:7b:ce:8c:0d:2b:ac:a2:7a:06:2d:27:20:71:2a:37
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12256: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12257: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12258: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8b:cd:fa:f5:29:91:f5:d5:36:33:63:7f:bf:b3:d2:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12259: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12260: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12261: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d0:92:a0:5f:83:d0:e0:bc:c1:73:e2:01:04:1c:67:ad
            Iteration Count: 2000 (0x7d0)
tools.sh: #12262: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12263: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12264: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b6:c3:4b:4d:09:53:c3:b6:49:97:e1:8e:b7:3d:3a:5e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12265: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12266: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12267: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ad:8c:09:81:bd:6b:bc:c3:be:31:99:5e:6e:64:c1:d9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12268: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12269: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12270: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a3:bd:66:97:de:ab:30:e8:59:bd:14:b1:af:b8:61:10
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12271: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12272: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12273: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e2:ef:d0:0e:2c:a1:b7:ce:31:76:8a:13:2c:78:e6:9d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12274: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12275: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12276: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                83:67:e2:4e:c9:77:52:e8:fa:00:67:7c:93:2c:7d:7b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12277: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12278: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12279: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                47:4b:9b:e0:9d:ef:93:c2:45:54:77:f8:31:d3:eb:3a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12280: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12281: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12282: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                08:bf:3c:85:46:0d:de:7d:8d:48:38:7e:ea:d3:59:b9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12283: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12284: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12285: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                05:4d:8f:6f:10:3a:f8:c5:50:4e:83:bc:cf:42:68:45
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12286: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12287: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12288: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9b:86:7c:a0:4e:31:68:57:0a:6b:79:1d:67:a0:f6:62
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12289: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12290: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12291: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5b:48:87:45:c0:20:b2:f8:c8:c8:3a:63:f2:cc:f7:25
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:19 2017
            Not After : Tue Aug 23 12:39:19 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:ef:54:8f:89:71:9f:c3:96:a1:04:82:c7:65:02:f9:
                    6a:a6:87:7b:5e:38:89:f4:28:6d:17:44:65:d3:4e:1a:
                    5a:88:03:6c:ad:13:98:aa:b3:0f:e1:84:94:db:66:4b:
                    ad:89:17:b6:84:c8:4d:c8:e7:5c:9c:ac:eb:3c:a2:1e:
                    0a:bd:33:91:68:ce:cb:b3:b3:82:8e:8c:04:a9:66:1c:
                    8c:f9:66:09:31:1b:f7:68:ab:da:0b:3f:6f:3e:26:44:
                    14:97:05:e9:3d:b7:b3:ba:0d:c4:b2:f6:28:3a:28:18:
                    e6:38:37:a7:b3:e9:70:e4:38:db:ed:f1:0c:14:f9:af:
                    3b:af:27:41:97:99:db:0a:f3:e8:b9:46:04:12:ec:88:
                    cb:2e:fb:6a:a0:65:97:b9:67:bb:58:eb:17:82:f2:39:
                    b8:12:cf:d8:c8:44:80:3c:25:f1:e3:68:f3:d4:84:25:
                    80:91:7e:2e:7e:02:d6:41:e0:3a:3a:fc:b4:7e:f8:80:
                    06:af:13:d1:bc:8c:a0:44:8a:5c:68:4a:32:91:5e:b7:
                    f1:4a:66:23:67:de:cb:8f:24:8b:f6:c0:3d:92:bc:7b:
                    f6:1c:e9:04:e3:8a:4c:b5:7f:21:55:8a:38:a2:dd:3b:
                    3f:5e:51:06:e6:51:e3:aa:f4:fd:d8:7d:91:f7:11:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:e1:a3:a7:ff:6d:a1:00:78:30:61:50:d5:61:fb:bb:
        83:74:77:ec:c1:f2:b2:57:48:43:22:27:21:2c:ce:fc:
        cd:01:75:b1:6a:32:af:70:c6:03:c3:78:6b:45:cd:2e:
        3e:02:ef:ef:e3:30:ed:fd:71:ca:82:75:ec:e8:f3:0e:
        ec:91:da:b3:f8:1d:6f:c6:cb:15:ff:86:66:21:0b:c4:
        ba:8d:ec:69:60:dd:61:12:96:84:f7:d0:ea:3d:75:b2:
        54:64:55:ad:f1:79:2e:97:db:18:f3:ba:d0:fb:b5:8d:
        14:eb:f3:33:d4:4f:dc:96:b8:9a:2f:c1:56:7e:f6:67:
        6f:f3:9b:0a:8f:9a:d6:7b:8d:aa:94:52:57:ae:a1:a5:
        1c:59:fe:e1:1a:06:11:60:ba:ad:2d:4f:88:b8:34:2f:
        fe:27:e9:64:48:94:6c:25:dd:81:c2:86:e4:dd:8d:d4:
        e7:f0:d2:a7:a2:d3:f6:c9:56:bd:a1:c8:43:d4:52:98:
        7c:2c:ce:ff:3a:f8:6c:7c:9c:0c:60:fb:23:6e:87:a1:
        88:8e:53:cf:aa:c0:81:44:12:78:94:11:d5:53:85:40:
        e6:7a:cb:e7:1f:b9:bc:cd:85:44:2b:0d:df:89:b2:7c:
        6b:37:2f:93:90:f1:cf:0a:91:e0:3b:97:3f:e6:67:85
    Fingerprint (SHA-256):
        27:0F:96:6A:43:EA:E8:68:C3:0D:BB:8D:97:5E:BC:AB:F0:45:C9:A3:65:EA:BA:15:C2:D3:B3:9F:6F:4E:D7:F4
    Fingerprint (SHA1):
        23:BE:31:C4:8D:DF:DB:A6:4E:82:79:5E:65:C0:2A:E6:23:A3:F6:F9
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:39:53 2017
            Not After : Tue Aug 23 12:39:53 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2d:36:ba:8e:7c:85:74:e7:9d:f6:12:cf:49:e8:e0:
                    0c:ca:42:60:d8:85:03:4c:d1:5c:5b:f5:3c:0c:06:82:
                    3a:07:52:8a:a3:df:4b:99:cf:b2:98:49:90:89:72:55:
                    63:6a:29:1d:ec:e2:ab:a1:93:29:fa:3d:c9:ac:41:80:
                    6c:38:b8:15:e1:40:d7:dd:92:e3:1c:5f:13:c9:7a:e1:
                    b2:48:51:74:df:19:08:8e:4a:aa:7c:6f:f4:47:f8:62:
                    a3:f5:35:c9:a5:23:05:10:a2:41:fb:13:15:c4:a8:f9:
                    1a:8a:d7:eb:45:b4:b5:ad:06:5e:c0:be:5f:75:34:ba:
                    8d:f4:2e:13:bd:8b:94:5d:8c:f2:ea:d7:13:28:76:48:
                    93:2c:c1:85:09:75:11:1e:37:fa:08:06:d9:4c:d7:7d:
                    9d:4b:cf:54:93:b6:a0:ff:76:d7:ba:45:af:dc:74:ed:
                    32:3f:2c:3f:9e:b3:0d:e0:82:f0:d5:6e:ca:f0:df:fa:
                    5f:15:7d:c4:49:41:d9:0b:55:37:17:0b:0f:73:91:1c:
                    60:3c:95:e0:4a:30:6c:f3:e2:9e:dd:00:2e:9c:ba:cc:
                    41:39:1b:43:5a:2d:93:a2:6f:85:b2:60:d6:a8:de:41:
                    98:9b:af:83:20:ee:cc:f2:de:b1:6e:d6:f3:5e:e8:29
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:91:24:aa:55:b3:63:6c:db:e9:2e:86:3c:b5:1f:bd:
        ee:4d:e3:3b:3c:6a:02:78:f3:6c:87:c6:3c:83:15:b1:
        12:e6:69:ea:1d:da:2b:94:ff:11:6b:1e:5e:0d:de:f5:
        72:69:4a:29:87:bc:61:5e:ab:25:5b:28:44:5f:bb:1d:
        41:7f:a3:d7:49:d0:39:1f:38:27:41:dd:02:8c:d4:bc:
        7a:6f:06:69:bc:dd:a5:c0:be:69:7b:ea:a6:11:4c:25:
        b5:9a:a8:08:ee:28:b3:e8:a3:72:d6:af:fb:f5:c3:c6:
        29:fe:34:ce:19:a5:90:c9:c3:8d:01:3e:e8:25:5f:8d:
        00:9a:ec:ff:28:75:18:7a:cc:5e:21:4f:c0:d4:ea:20:
        67:af:f7:26:0d:8a:4b:2e:67:b2:26:1b:42:8d:27:0c:
        01:73:b6:e6:4f:8d:61:c5:08:b7:16:ef:fd:0a:68:63:
        01:13:0d:a8:f5:75:3a:de:65:1a:28:5d:71:57:a2:2b:
        13:59:56:4b:5c:44:e9:95:08:13:c6:28:89:f1:60:c7:
        18:e3:c7:cd:e2:a3:b8:01:d9:2f:c2:58:16:36:07:c0:
        30:7a:af:82:f0:42:62:c0:d7:21:13:69:72:0d:57:1c:
        24:2d:8f:5c:e7:c4:33:93:5c:f6:54:eb:8c:ac:43:05
    Fingerprint (SHA-256):
        91:6D:FB:D4:88:F8:F2:2B:CD:B8:0D:87:CD:CF:8A:11:F2:57:7A:CB:D8:99:8A:9B:9A:B1:2A:51:A6:86:BD:80
    Fingerprint (SHA1):
        DF:59:7B:79:1C:1D:25:24:7C:66:50:DB:96:FF:AE:8E:4C:77:CB:EB
    Friendly Name: Alice
tools.sh: #12292: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12293: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #12294: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12295: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #12296: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #12297: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #12298: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #12299: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #12300: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #12301: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #12302: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed Aug 23 12:42:02 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed Aug 23 12:42:02 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #12303: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #12304: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      ad0dd69319a7e0b933ed2a98901684f14227d60d   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #12305: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #12306: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #12307: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #12308: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #12309: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #12310: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #12311: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #12312: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #12313: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #12314: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #12315: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      ad0dd69319a7e0b933ed2a98901684f14227d60d   FIPS_PUB_140_Test_Certificate
fips.sh: #12316: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #12317: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #12318: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #12319: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #12320: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      ad0dd69319a7e0b933ed2a98901684f14227d60d   FIPS_PUB_140_Test_Certificate
fips.sh: #12321: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #12322: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #12323: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x0003fd70 (261488): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #12324: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed Aug 23 12:42:12 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed Aug 23 12:42:12 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #12325: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #12326: CMMF test . - PASSED
TIMESTAMP crmf END: Wed Aug 23 12:42:12 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed Aug 23 12:42:12 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #12327: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12328: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #12329: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #12330: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #12331: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #12332: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12333: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #12334: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #12335: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #12336: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #12337: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12338: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #12339: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #12340: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #12341: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #12342: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12343: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #12344: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #12345: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #12346: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #12347: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12348: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #12349: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #12350: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #12351: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #12352: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12353: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #12354: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #12355: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #12356: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #12357: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12358: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #12359: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #12360: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #12361: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #12362: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12363: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #12364: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #12365: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #12366: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #12367: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #12368: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #12369: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #12370: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #12371: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #12372: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #12373: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #12374: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #12375: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #12376: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #12377: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #12378: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #12379: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #12380: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #12381: Decode Encrypted-Data . - PASSED
smime.sh: #12382: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #12383: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #12384: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #12385: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #12386: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #12387: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed Aug 23 12:42:15 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed Aug 23 12:42:15 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7316 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7316 found at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 with PID 7316 started at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12388: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7316 at Wed Aug 23 12:42:15 UTC 2017
kill -USR1 7316
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7316 killed at Wed Aug 23 12:42:15 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7372 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7372 found at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 with PID 7372 started at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12389: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7372 at Wed Aug 23 12:42:15 UTC 2017
kill -USR1 7372
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7372 killed at Wed Aug 23 12:42:15 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7428 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7428 found at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 with PID 7428 started at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12390: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7428 at Wed Aug 23 12:42:15 UTC 2017
kill -USR1 7428
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7428 killed at Wed Aug 23 12:42:15 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7496 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7496 found at Wed Aug 23 12:42:15 UTC 2017
selfserv_9223 with PID 7496 started at Wed Aug 23 12:42:15 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12391: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7496 at Wed Aug 23 12:42:16 UTC 2017
kill -USR1 7496
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7496 killed at Wed Aug 23 12:42:16 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7552 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7552 found at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 with PID 7552 started at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12392: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7552 at Wed Aug 23 12:42:16 UTC 2017
kill -USR1 7552
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7552 killed at Wed Aug 23 12:42:16 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7608 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7608 found at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 with PID 7608 started at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12393: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7608 at Wed Aug 23 12:42:16 UTC 2017
kill -USR1 7608
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7608 killed at Wed Aug 23 12:42:16 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7676 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7676 found at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 with PID 7676 started at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12394: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 7676 at Wed Aug 23 12:42:16 UTC 2017
kill -USR1 7676
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7676 killed at Wed Aug 23 12:42:16 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7732 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7732 found at Wed Aug 23 12:42:16 UTC 2017
selfserv_9223 with PID 7732 started at Wed Aug 23 12:42:16 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12395: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 7732 at Wed Aug 23 12:42:17 UTC 2017
kill -USR1 7732
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7732 killed at Wed Aug 23 12:42:17 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7788 found at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 with PID 7788 started at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12396: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 7788 at Wed Aug 23 12:42:17 UTC 2017
kill -USR1 7788
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7788 killed at Wed Aug 23 12:42:17 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7856 found at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 with PID 7856 started at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12397: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 7856 at Wed Aug 23 12:42:17 UTC 2017
kill -USR1 7856
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7856 killed at Wed Aug 23 12:42:17 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7912 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7912 found at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 with PID 7912 started at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12398: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 7912 at Wed Aug 23 12:42:17 UTC 2017
kill -USR1 7912
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7912 killed at Wed Aug 23 12:42:17 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7968 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7968 found at Wed Aug 23 12:42:17 UTC 2017
selfserv_9223 with PID 7968 started at Wed Aug 23 12:42:17 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12399: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 7968 at Wed Aug 23 12:42:17 UTC 2017
kill -USR1 7968
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7968 killed at Wed Aug 23 12:42:17 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8036 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8036 found at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 with PID 8036 started at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12400: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8036 at Wed Aug 23 12:42:18 UTC 2017
kill -USR1 8036
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8036 killed at Wed Aug 23 12:42:18 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8092 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8092 found at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 with PID 8092 started at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12401: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8092 at Wed Aug 23 12:42:18 UTC 2017
kill -USR1 8092
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8092 killed at Wed Aug 23 12:42:18 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8148 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8148 found at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 with PID 8148 started at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12402: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8148 at Wed Aug 23 12:42:18 UTC 2017
kill -USR1 8148
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8148 killed at Wed Aug 23 12:42:18 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8216 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8216 found at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 with PID 8216 started at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12403: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8216 at Wed Aug 23 12:42:18 UTC 2017
kill -USR1 8216
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8216 killed at Wed Aug 23 12:42:18 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8272 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8272 found at Wed Aug 23 12:42:18 UTC 2017
selfserv_9223 with PID 8272 started at Wed Aug 23 12:42:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12404: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8272 at Wed Aug 23 12:42:19 UTC 2017
kill -USR1 8272
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8272 killed at Wed Aug 23 12:42:19 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8328 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8328 found at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 with PID 8328 started at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12405: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8328 at Wed Aug 23 12:42:19 UTC 2017
kill -USR1 8328
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8328 killed at Wed Aug 23 12:42:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8396 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8396 found at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 with PID 8396 started at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12406: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8396 at Wed Aug 23 12:42:19 UTC 2017
kill -USR1 8396
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8396 killed at Wed Aug 23 12:42:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8452 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8452 found at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 with PID 8452 started at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12407: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8452 at Wed Aug 23 12:42:19 UTC 2017
kill -USR1 8452
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8452 killed at Wed Aug 23 12:42:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8508 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8508 found at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 with PID 8508 started at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12408: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8508 at Wed Aug 23 12:42:19 UTC 2017
kill -USR1 8508
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8508 killed at Wed Aug 23 12:42:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:19 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:19 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8576 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8576 found at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 with PID 8576 started at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12409: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8576 at Wed Aug 23 12:42:20 UTC 2017
kill -USR1 8576
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8576 killed at Wed Aug 23 12:42:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8632 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8632 found at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 with PID 8632 started at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12410: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8632 at Wed Aug 23 12:42:20 UTC 2017
kill -USR1 8632
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8632 killed at Wed Aug 23 12:42:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8688 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8688 found at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 with PID 8688 started at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12411: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8688 at Wed Aug 23 12:42:20 UTC 2017
kill -USR1 8688
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8688 killed at Wed Aug 23 12:42:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8756 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8756 found at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 with PID 8756 started at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12412: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8756 at Wed Aug 23 12:42:20 UTC 2017
kill -USR1 8756
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8756 killed at Wed Aug 23 12:42:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8813 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8813 found at Wed Aug 23 12:42:20 UTC 2017
selfserv_9223 with PID 8813 started at Wed Aug 23 12:42:20 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12413: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 8813 at Wed Aug 23 12:42:21 UTC 2017
kill -USR1 8813
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8813 killed at Wed Aug 23 12:42:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8870 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8870 found at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 with PID 8870 started at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12414: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8870 at Wed Aug 23 12:42:21 UTC 2017
kill -USR1 8870
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8870 killed at Wed Aug 23 12:42:21 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8938 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8938 found at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 with PID 8938 started at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12415: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8938 at Wed Aug 23 12:42:21 UTC 2017
kill -USR1 8938
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8938 killed at Wed Aug 23 12:42:21 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8994 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 8994 found at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 with PID 8994 started at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12416: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 8994 at Wed Aug 23 12:42:21 UTC 2017
kill -USR1 8994
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 8994 killed at Wed Aug 23 12:42:21 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9050 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9050 found at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 with PID 9050 started at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12417: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9050 at Wed Aug 23 12:42:21 UTC 2017
kill -USR1 9050
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9050 killed at Wed Aug 23 12:42:21 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9118 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9118 found at Wed Aug 23 12:42:21 UTC 2017
selfserv_9223 with PID 9118 started at Wed Aug 23 12:42:21 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12418: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9118 at Wed Aug 23 12:42:22 UTC 2017
kill -USR1 9118
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9118 killed at Wed Aug 23 12:42:22 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9174 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9174 found at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 with PID 9174 started at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12419: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9174 at Wed Aug 23 12:42:22 UTC 2017
kill -USR1 9174
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9174 killed at Wed Aug 23 12:42:22 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9230 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9230 found at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 with PID 9230 started at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12420: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9230 at Wed Aug 23 12:42:22 UTC 2017
kill -USR1 9230
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9230 killed at Wed Aug 23 12:42:22 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9298 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9298 found at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 with PID 9298 started at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12421: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9298 at Wed Aug 23 12:42:22 UTC 2017
kill -USR1 9298
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9298 killed at Wed Aug 23 12:42:22 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9354 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9354 found at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 with PID 9354 started at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12422: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9354 at Wed Aug 23 12:42:22 UTC 2017
kill -USR1 9354
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9354 killed at Wed Aug 23 12:42:22 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9410 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9410 found at Wed Aug 23 12:42:22 UTC 2017
selfserv_9223 with PID 9410 started at Wed Aug 23 12:42:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12423: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 9410 at Wed Aug 23 12:42:23 UTC 2017
kill -USR1 9410
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9410 killed at Wed Aug 23 12:42:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9478 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9478 found at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 with PID 9478 started at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12424: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9478 at Wed Aug 23 12:42:23 UTC 2017
kill -USR1 9478
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9478 killed at Wed Aug 23 12:42:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9534 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9534 found at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 with PID 9534 started at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12425: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9534 at Wed Aug 23 12:42:23 UTC 2017
kill -USR1 9534
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9534 killed at Wed Aug 23 12:42:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9590 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9590 found at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 with PID 9590 started at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12426: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9590 at Wed Aug 23 12:42:23 UTC 2017
kill -USR1 9590
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9590 killed at Wed Aug 23 12:42:23 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9658 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9658 found at Wed Aug 23 12:42:23 UTC 2017
selfserv_9223 with PID 9658 started at Wed Aug 23 12:42:23 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12427: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9658 at Wed Aug 23 12:42:24 UTC 2017
kill -USR1 9658
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9658 killed at Wed Aug 23 12:42:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9714 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9714 found at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 with PID 9714 started at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12428: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9714 at Wed Aug 23 12:42:24 UTC 2017
kill -USR1 9714
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9714 killed at Wed Aug 23 12:42:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9770 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9770 found at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 with PID 9770 started at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12429: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9770 at Wed Aug 23 12:42:24 UTC 2017
kill -USR1 9770
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9770 killed at Wed Aug 23 12:42:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9838 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9838 found at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 with PID 9838 started at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12430: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 9838 at Wed Aug 23 12:42:24 UTC 2017
kill -USR1 9838
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9838 killed at Wed Aug 23 12:42:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9894 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9894 found at Wed Aug 23 12:42:24 UTC 2017
selfserv_9223 with PID 9894 started at Wed Aug 23 12:42:24 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12431: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 9894 at Wed Aug 23 12:42:25 UTC 2017
kill -USR1 9894
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9894 killed at Wed Aug 23 12:42:25 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9950 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 9950 found at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 with PID 9950 started at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12432: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 9950 at Wed Aug 23 12:42:25 UTC 2017
kill -USR1 9950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 9950 killed at Wed Aug 23 12:42:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10018 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10018 found at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 with PID 10018 started at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12433: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10018 at Wed Aug 23 12:42:25 UTC 2017
kill -USR1 10018
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10018 killed at Wed Aug 23 12:42:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10074 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10074 found at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 with PID 10074 started at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12434: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10074 at Wed Aug 23 12:42:25 UTC 2017
kill -USR1 10074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10074 killed at Wed Aug 23 12:42:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10130 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10130 found at Wed Aug 23 12:42:25 UTC 2017
selfserv_9223 with PID 10130 started at Wed Aug 23 12:42:25 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12435: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10130 at Wed Aug 23 12:42:26 UTC 2017
kill -USR1 10130
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10130 killed at Wed Aug 23 12:42:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10198 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10198 found at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 with PID 10198 started at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12436: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10198 at Wed Aug 23 12:42:26 UTC 2017
kill -USR1 10198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10198 killed at Wed Aug 23 12:42:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10254 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10254 found at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 with PID 10254 started at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12437: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10254 at Wed Aug 23 12:42:26 UTC 2017
kill -USR1 10254
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10254 killed at Wed Aug 23 12:42:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10310 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10310 found at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 with PID 10310 started at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12438: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10310 at Wed Aug 23 12:42:26 UTC 2017
kill -USR1 10310
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10310 killed at Wed Aug 23 12:42:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10378 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10378 found at Wed Aug 23 12:42:26 UTC 2017
selfserv_9223 with PID 10378 started at Wed Aug 23 12:42:26 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12439: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10378 at Wed Aug 23 12:42:27 UTC 2017
kill -USR1 10378
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10378 killed at Wed Aug 23 12:42:27 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10434 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10434 found at Wed Aug 23 12:42:27 UTC 2017
selfserv_9223 with PID 10434 started at Wed Aug 23 12:42:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12440: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10434 at Wed Aug 23 12:42:27 UTC 2017
kill -USR1 10434
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10434 killed at Wed Aug 23 12:42:27 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10492 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10492 found at Wed Aug 23 12:42:27 UTC 2017
selfserv_9223 with PID 10492 started at Wed Aug 23 12:42:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12441: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10492 at Wed Aug 23 12:42:28 UTC 2017
kill -USR1 10492
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10492 killed at Wed Aug 23 12:42:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10560 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10560 found at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 with PID 10560 started at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12442: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10560 at Wed Aug 23 12:42:28 UTC 2017
kill -USR1 10560
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10560 killed at Wed Aug 23 12:42:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10617 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10617 found at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 with PID 10617 started at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12443: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10617 at Wed Aug 23 12:42:28 UTC 2017
kill -USR1 10617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10617 killed at Wed Aug 23 12:42:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10674 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10674 found at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 with PID 10674 started at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12444: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10674 at Wed Aug 23 12:42:28 UTC 2017
kill -USR1 10674
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10674 killed at Wed Aug 23 12:42:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10742 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10742 found at Wed Aug 23 12:42:28 UTC 2017
selfserv_9223 with PID 10742 started at Wed Aug 23 12:42:28 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12445: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10742 at Wed Aug 23 12:42:29 UTC 2017
kill -USR1 10742
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10742 killed at Wed Aug 23 12:42:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10799 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10799 found at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 with PID 10799 started at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12446: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10799 at Wed Aug 23 12:42:29 UTC 2017
kill -USR1 10799
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10799 killed at Wed Aug 23 12:42:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10855 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10855 found at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 with PID 10855 started at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12447: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10855 at Wed Aug 23 12:42:29 UTC 2017
kill -USR1 10855
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10855 killed at Wed Aug 23 12:42:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10924 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10924 found at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 with PID 10924 started at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12448: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 10924 at Wed Aug 23 12:42:29 UTC 2017
kill -USR1 10924
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10924 killed at Wed Aug 23 12:42:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10980 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 10980 found at Wed Aug 23 12:42:29 UTC 2017
selfserv_9223 with PID 10980 started at Wed Aug 23 12:42:29 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12449: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 10980 at Wed Aug 23 12:42:30 UTC 2017
kill -USR1 10980
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 10980 killed at Wed Aug 23 12:42:30 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11036 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11036 found at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 with PID 11036 started at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12450: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11036 at Wed Aug 23 12:42:30 UTC 2017
kill -USR1 11036
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11036 killed at Wed Aug 23 12:42:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11104 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11104 found at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 with PID 11104 started at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12451: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11104 at Wed Aug 23 12:42:30 UTC 2017
kill -USR1 11104
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11104 killed at Wed Aug 23 12:42:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11160 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11160 found at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 with PID 11160 started at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12452: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11160 at Wed Aug 23 12:42:30 UTC 2017
kill -USR1 11160
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11160 killed at Wed Aug 23 12:42:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11216 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11216 found at Wed Aug 23 12:42:30 UTC 2017
selfserv_9223 with PID 11216 started at Wed Aug 23 12:42:30 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12453: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11216 at Wed Aug 23 12:42:31 UTC 2017
kill -USR1 11216
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11216 killed at Wed Aug 23 12:42:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11284 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11284 found at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 with PID 11284 started at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12454: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11284 at Wed Aug 23 12:42:31 UTC 2017
kill -USR1 11284
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11284 killed at Wed Aug 23 12:42:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11340 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11340 found at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 with PID 11340 started at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12455: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11340 at Wed Aug 23 12:42:31 UTC 2017
kill -USR1 11340
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11340 killed at Wed Aug 23 12:42:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11396 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11396 found at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 with PID 11396 started at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12456: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11396 at Wed Aug 23 12:42:31 UTC 2017
kill -USR1 11396
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11396 killed at Wed Aug 23 12:42:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11464 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11464 found at Wed Aug 23 12:42:31 UTC 2017
selfserv_9223 with PID 11464 started at Wed Aug 23 12:42:31 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12457: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11464 at Wed Aug 23 12:42:32 UTC 2017
kill -USR1 11464
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11464 killed at Wed Aug 23 12:42:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11520 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11520 found at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 with PID 11520 started at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12458: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11520 at Wed Aug 23 12:42:32 UTC 2017
kill -USR1 11520
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11520 killed at Wed Aug 23 12:42:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11576 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11576 found at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 with PID 11576 started at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12459: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 11576 at Wed Aug 23 12:42:32 UTC 2017
kill -USR1 11576
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11576 killed at Wed Aug 23 12:42:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11645 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11645 found at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 with PID 11645 started at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12460: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11645 at Wed Aug 23 12:42:32 UTC 2017
kill -USR1 11645
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11645 killed at Wed Aug 23 12:42:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11701 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11701 found at Wed Aug 23 12:42:32 UTC 2017
selfserv_9223 with PID 11701 started at Wed Aug 23 12:42:32 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12461: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11701 at Wed Aug 23 12:42:33 UTC 2017
kill -USR1 11701
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11701 killed at Wed Aug 23 12:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11758 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11758 found at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 with PID 11758 started at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12462: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11758 at Wed Aug 23 12:42:33 UTC 2017
kill -USR1 11758
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11758 killed at Wed Aug 23 12:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11827 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11827 found at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 with PID 11827 started at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12463: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11827 at Wed Aug 23 12:42:33 UTC 2017
kill -USR1 11827
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11827 killed at Wed Aug 23 12:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11883 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11883 found at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 with PID 11883 started at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12464: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11883 at Wed Aug 23 12:42:33 UTC 2017
kill -USR1 11883
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11883 killed at Wed Aug 23 12:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11939 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 11939 found at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 with PID 11939 started at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12465: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 11939 at Wed Aug 23 12:42:33 UTC 2017
kill -USR1 11939
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 11939 killed at Wed Aug 23 12:42:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12007 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12007 found at Wed Aug 23 12:42:33 UTC 2017
selfserv_9223 with PID 12007 started at Wed Aug 23 12:42:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12466: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12007 at Wed Aug 23 12:42:34 UTC 2017
kill -USR1 12007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12007 killed at Wed Aug 23 12:42:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12063 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12063 found at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 with PID 12063 started at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12467: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12063 at Wed Aug 23 12:42:34 UTC 2017
kill -USR1 12063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12063 killed at Wed Aug 23 12:42:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12119 found at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 with PID 12119 started at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12468: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12119 at Wed Aug 23 12:42:34 UTC 2017
kill -USR1 12119
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12119 killed at Wed Aug 23 12:42:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12187 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12187 found at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 with PID 12187 started at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12469: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12187 at Wed Aug 23 12:42:34 UTC 2017
kill -USR1 12187
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12187 killed at Wed Aug 23 12:42:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12244 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12244 found at Wed Aug 23 12:42:34 UTC 2017
selfserv_9223 with PID 12244 started at Wed Aug 23 12:42:34 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12470: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12244 at Wed Aug 23 12:42:35 UTC 2017
kill -USR1 12244
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12244 killed at Wed Aug 23 12:42:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12301 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12301 found at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 with PID 12301 started at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12471: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12301 at Wed Aug 23 12:42:35 UTC 2017
kill -USR1 12301
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12301 killed at Wed Aug 23 12:42:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12371 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12371 found at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 with PID 12371 started at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12472: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12371 at Wed Aug 23 12:42:35 UTC 2017
kill -USR1 12371
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12371 killed at Wed Aug 23 12:42:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12428 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12428 found at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 with PID 12428 started at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12473: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12428 at Wed Aug 23 12:42:35 UTC 2017
kill -USR1 12428
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12428 killed at Wed Aug 23 12:42:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12484 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12484 found at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 with PID 12484 started at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12474: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12484 at Wed Aug 23 12:42:35 UTC 2017
kill -USR1 12484
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12484 killed at Wed Aug 23 12:42:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12552 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12552 found at Wed Aug 23 12:42:35 UTC 2017
selfserv_9223 with PID 12552 started at Wed Aug 23 12:42:35 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12475: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12552 at Wed Aug 23 12:42:36 UTC 2017
kill -USR1 12552
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12552 killed at Wed Aug 23 12:42:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12608 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12608 found at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 with PID 12608 started at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12476: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12608 at Wed Aug 23 12:42:36 UTC 2017
kill -USR1 12608
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12608 killed at Wed Aug 23 12:42:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12664 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12664 found at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 with PID 12664 started at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12477: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 12664 at Wed Aug 23 12:42:36 UTC 2017
kill -USR1 12664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12664 killed at Wed Aug 23 12:42:36 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12741 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12741 found at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 with PID 12741 started at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12478: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12741 at Wed Aug 23 12:42:36 UTC 2017
kill -USR1 12741
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12741 killed at Wed Aug 23 12:42:36 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12797 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12797 found at Wed Aug 23 12:42:36 UTC 2017
selfserv_9223 with PID 12797 started at Wed Aug 23 12:42:36 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12479: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12797 at Wed Aug 23 12:42:37 UTC 2017
kill -USR1 12797
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12797 killed at Wed Aug 23 12:42:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12854 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12854 found at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 with PID 12854 started at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12480: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12854 at Wed Aug 23 12:42:37 UTC 2017
kill -USR1 12854
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12854 killed at Wed Aug 23 12:42:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12923 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12923 found at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 with PID 12923 started at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12481: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 12923 at Wed Aug 23 12:42:37 UTC 2017
kill -USR1 12923
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12923 killed at Wed Aug 23 12:42:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12979 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 12979 found at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 with PID 12979 started at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12482: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 12979 at Wed Aug 23 12:42:37 UTC 2017
kill -USR1 12979
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 12979 killed at Wed Aug 23 12:42:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13037 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13037 found at Wed Aug 23 12:42:37 UTC 2017
selfserv_9223 with PID 13037 started at Wed Aug 23 12:42:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12483: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13037 at Wed Aug 23 12:42:38 UTC 2017
kill -USR1 13037
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13037 killed at Wed Aug 23 12:42:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13105 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13105 found at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 with PID 13105 started at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12484: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13105 at Wed Aug 23 12:42:38 UTC 2017
kill -USR1 13105
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13105 killed at Wed Aug 23 12:42:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13162 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13162 found at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 with PID 13162 started at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12485: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13162 at Wed Aug 23 12:42:38 UTC 2017
kill -USR1 13162
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13162 killed at Wed Aug 23 12:42:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13218 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13218 found at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 with PID 13218 started at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12486: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13218 at Wed Aug 23 12:42:38 UTC 2017
kill -USR1 13218
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13218 killed at Wed Aug 23 12:42:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13287 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13287 found at Wed Aug 23 12:42:38 UTC 2017
selfserv_9223 with PID 13287 started at Wed Aug 23 12:42:38 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12487: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13287 at Wed Aug 23 12:42:38 UTC 2017
kill -USR1 13287
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13287 killed at Wed Aug 23 12:42:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13343 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13343 found at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 with PID 13343 started at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12488: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13343 at Wed Aug 23 12:42:39 UTC 2017
kill -USR1 13343
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13343 killed at Wed Aug 23 12:42:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13400 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13400 found at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 with PID 13400 started at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12489: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13400 at Wed Aug 23 12:42:39 UTC 2017
kill -USR1 13400
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13400 killed at Wed Aug 23 12:42:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13468 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13468 found at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 with PID 13468 started at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12490: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13468 at Wed Aug 23 12:42:39 UTC 2017
kill -USR1 13468
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13468 killed at Wed Aug 23 12:42:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13524 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13524 found at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 with PID 13524 started at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12491: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13524 at Wed Aug 23 12:42:39 UTC 2017
kill -USR1 13524
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13524 killed at Wed Aug 23 12:42:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13581 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13581 found at Wed Aug 23 12:42:39 UTC 2017
selfserv_9223 with PID 13581 started at Wed Aug 23 12:42:39 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12492: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13581 at Wed Aug 23 12:42:40 UTC 2017
kill -USR1 13581
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13581 killed at Wed Aug 23 12:42:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13650 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13650 found at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 with PID 13650 started at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12493: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13650 at Wed Aug 23 12:42:40 UTC 2017
kill -USR1 13650
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13650 killed at Wed Aug 23 12:42:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13706 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13706 found at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 with PID 13706 started at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12494: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 13706 at Wed Aug 23 12:42:40 UTC 2017
kill -USR1 13706
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13706 killed at Wed Aug 23 12:42:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13762 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13762 found at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 with PID 13762 started at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12495: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13762 at Wed Aug 23 12:42:40 UTC 2017
kill -USR1 13762
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13762 killed at Wed Aug 23 12:42:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13830 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13830 found at Wed Aug 23 12:42:40 UTC 2017
selfserv_9223 with PID 13830 started at Wed Aug 23 12:42:40 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12496: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13830 at Wed Aug 23 12:42:41 UTC 2017
kill -USR1 13830
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13830 killed at Wed Aug 23 12:42:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13887 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13887 found at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 with PID 13887 started at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12497: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13887 at Wed Aug 23 12:42:41 UTC 2017
kill -USR1 13887
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13887 killed at Wed Aug 23 12:42:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13943 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 13943 found at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 with PID 13943 started at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12498: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 13943 at Wed Aug 23 12:42:41 UTC 2017
kill -USR1 13943
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 13943 killed at Wed Aug 23 12:42:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14011 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14011 found at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 with PID 14011 started at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12499: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14011 at Wed Aug 23 12:42:41 UTC 2017
kill -USR1 14011
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14011 killed at Wed Aug 23 12:42:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14067 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14067 found at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 with PID 14067 started at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12500: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14067 at Wed Aug 23 12:42:41 UTC 2017
kill -USR1 14067
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14067 killed at Wed Aug 23 12:42:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14123 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14123 found at Wed Aug 23 12:42:41 UTC 2017
selfserv_9223 with PID 14123 started at Wed Aug 23 12:42:41 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12501: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 14123 at Wed Aug 23 12:42:42 UTC 2017
kill -USR1 14123
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14123 killed at Wed Aug 23 12:42:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14192 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14192 found at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 with PID 14192 started at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12502: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14192 at Wed Aug 23 12:42:42 UTC 2017
kill -USR1 14192
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14192 killed at Wed Aug 23 12:42:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14248 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14248 found at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 with PID 14248 started at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12503: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14248 at Wed Aug 23 12:42:42 UTC 2017
kill -USR1 14248
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14248 killed at Wed Aug 23 12:42:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14305 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14305 found at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 with PID 14305 started at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12504: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14305 at Wed Aug 23 12:42:42 UTC 2017
kill -USR1 14305
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14305 killed at Wed Aug 23 12:42:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14375 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14375 found at Wed Aug 23 12:42:42 UTC 2017
selfserv_9223 with PID 14375 started at Wed Aug 23 12:42:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12505: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14375 at Wed Aug 23 12:42:43 UTC 2017
kill -USR1 14375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14375 killed at Wed Aug 23 12:42:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14431 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14431 found at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 with PID 14431 started at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12506: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14431 at Wed Aug 23 12:42:43 UTC 2017
kill -USR1 14431
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14431 killed at Wed Aug 23 12:42:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14488 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14488 found at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 with PID 14488 started at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12507: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14488 at Wed Aug 23 12:42:43 UTC 2017
kill -USR1 14488
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14488 killed at Wed Aug 23 12:42:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14556 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14556 found at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 with PID 14556 started at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12508: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14556 at Wed Aug 23 12:42:43 UTC 2017
kill -USR1 14556
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14556 killed at Wed Aug 23 12:42:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14612 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14612 found at Wed Aug 23 12:42:43 UTC 2017
selfserv_9223 with PID 14612 started at Wed Aug 23 12:42:43 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12509: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14612 at Wed Aug 23 12:42:44 UTC 2017
kill -USR1 14612
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14612 killed at Wed Aug 23 12:42:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14668 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14668 found at Wed Aug 23 12:42:44 UTC 2017
selfserv_9223 with PID 14668 started at Wed Aug 23 12:42:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12510: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14668 at Wed Aug 23 12:42:44 UTC 2017
kill -USR1 14668
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14668 killed at Wed Aug 23 12:42:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14736 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14736 found at Wed Aug 23 12:42:44 UTC 2017
selfserv_9223 with PID 14736 started at Wed Aug 23 12:42:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12511: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14736 at Wed Aug 23 12:42:44 UTC 2017
kill -USR1 14736
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14736 killed at Wed Aug 23 12:42:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:44 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14792 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14792 found at Wed Aug 23 12:42:44 UTC 2017
selfserv_9223 with PID 14792 started at Wed Aug 23 12:42:44 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12512: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14792 at Wed Aug 23 12:42:45 UTC 2017
kill -USR1 14792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14792 killed at Wed Aug 23 12:42:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14848 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14848 found at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 with PID 14848 started at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12513: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 14848 at Wed Aug 23 12:42:45 UTC 2017
kill -USR1 14848
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14848 killed at Wed Aug 23 12:42:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14916 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14916 found at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 with PID 14916 started at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12514: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14916 at Wed Aug 23 12:42:45 UTC 2017
kill -USR1 14916
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14916 killed at Wed Aug 23 12:42:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14974 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 14974 found at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 with PID 14974 started at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 14974 at Wed Aug 23 12:42:45 UTC 2017
kill -USR1 14974
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 14974 killed at Wed Aug 23 12:42:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15030 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15030 found at Wed Aug 23 12:42:45 UTC 2017
selfserv_9223 with PID 15030 started at Wed Aug 23 12:42:45 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15030 at Wed Aug 23 12:42:46 UTC 2017
kill -USR1 15030
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15030 killed at Wed Aug 23 12:42:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15098 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15098 found at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 with PID 15098 started at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15098 at Wed Aug 23 12:42:46 UTC 2017
kill -USR1 15098
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15098 killed at Wed Aug 23 12:42:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15154 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15154 found at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 with PID 15154 started at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15154 at Wed Aug 23 12:42:46 UTC 2017
kill -USR1 15154
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15154 killed at Wed Aug 23 12:42:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15210 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15210 found at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 with PID 15210 started at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15210 at Wed Aug 23 12:42:46 UTC 2017
kill -USR1 15210
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15210 killed at Wed Aug 23 12:42:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15278 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15278 found at Wed Aug 23 12:42:46 UTC 2017
selfserv_9223 with PID 15278 started at Wed Aug 23 12:42:46 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12520: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15278 at Wed Aug 23 12:42:47 UTC 2017
kill -USR1 15278
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15278 killed at Wed Aug 23 12:42:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15334 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15334 found at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 with PID 15334 started at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12521: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15334 at Wed Aug 23 12:42:47 UTC 2017
kill -USR1 15334
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15334 killed at Wed Aug 23 12:42:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15390 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15390 found at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 with PID 15390 started at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12522: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15390 at Wed Aug 23 12:42:47 UTC 2017
kill -USR1 15390
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15390 killed at Wed Aug 23 12:42:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15458 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15458 found at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 with PID 15458 started at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12523: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15458 at Wed Aug 23 12:42:47 UTC 2017
kill -USR1 15458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15458 killed at Wed Aug 23 12:42:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15514 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15514 found at Wed Aug 23 12:42:47 UTC 2017
selfserv_9223 with PID 15514 started at Wed Aug 23 12:42:47 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12524: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15514 at Wed Aug 23 12:42:48 UTC 2017
kill -USR1 15514
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15514 killed at Wed Aug 23 12:42:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15570 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15570 found at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 with PID 15570 started at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12525: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15570 at Wed Aug 23 12:42:48 UTC 2017
kill -USR1 15570
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15570 killed at Wed Aug 23 12:42:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15638 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15638 found at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 with PID 15638 started at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12526: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15638 at Wed Aug 23 12:42:48 UTC 2017
kill -USR1 15638
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15638 killed at Wed Aug 23 12:42:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15694 found at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 with PID 15694 started at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12527: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15694 at Wed Aug 23 12:42:48 UTC 2017
kill -USR1 15694
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15694 killed at Wed Aug 23 12:42:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15750 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15750 found at Wed Aug 23 12:42:48 UTC 2017
selfserv_9223 with PID 15750 started at Wed Aug 23 12:42:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12528: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15750 at Wed Aug 23 12:42:49 UTC 2017
kill -USR1 15750
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15750 killed at Wed Aug 23 12:42:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15818 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15818 found at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 with PID 15818 started at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12529: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15818 at Wed Aug 23 12:42:49 UTC 2017
kill -USR1 15818
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15818 killed at Wed Aug 23 12:42:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15875 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15875 found at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 with PID 15875 started at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12530: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 15875 at Wed Aug 23 12:42:49 UTC 2017
kill -USR1 15875
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15875 killed at Wed Aug 23 12:42:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15931 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15931 found at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 with PID 15931 started at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12531: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15931 at Wed Aug 23 12:42:49 UTC 2017
kill -USR1 15931
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15931 killed at Wed Aug 23 12:42:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15999 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 15999 found at Wed Aug 23 12:42:49 UTC 2017
selfserv_9223 with PID 15999 started at Wed Aug 23 12:42:49 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12532: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 15999 at Wed Aug 23 12:42:50 UTC 2017
kill -USR1 15999
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 15999 killed at Wed Aug 23 12:42:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16055 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16055 found at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 with PID 16055 started at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12533: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16055 at Wed Aug 23 12:42:50 UTC 2017
kill -USR1 16055
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16055 killed at Wed Aug 23 12:42:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9223 starting at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16111 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16111 found at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 with PID 16111 started at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12534: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16111 at Wed Aug 23 12:42:50 UTC 2017
kill -USR1 16111
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16111 killed at Wed Aug 23 12:42:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16180 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16180 found at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 with PID 16180 started at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12535: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16180 at Wed Aug 23 12:42:50 UTC 2017
kill -USR1 16180
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16180 killed at Wed Aug 23 12:42:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16236 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16236 found at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 with PID 16236 started at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12536: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9223 with PID 16236 at Wed Aug 23 12:42:50 UTC 2017
kill -USR1 16236
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16236 killed at Wed Aug 23 12:42:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16292 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16292 found at Wed Aug 23 12:42:50 UTC 2017
selfserv_9223 with PID 16292 started at Wed Aug 23 12:42:50 UTC 2017
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12537: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 16292 at Wed Aug 23 12:42:51 UTC 2017
kill -USR1 16292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16292 killed at Wed Aug 23 12:42:51 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9223 starting at Wed Aug 23 12:42:51 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:51 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:51 UTC 2017
selfserv_9223 with PID 16355 started at Wed Aug 23 12:42:51 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:51 UTC 2017
ssl.sh: #12538: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:51 UTC 2017
ssl.sh: #12539: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:51 UTC 2017
ssl.sh: #12540: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:51 UTC 2017
ssl.sh: #12541: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:51 UTC 2017
ssl.sh: #12542: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:51 UTC 2017
ssl.sh: #12543: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12544: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12545: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12546: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12547: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12548: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12549: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12550: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12551: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12552: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:52 UTC 2017
ssl.sh: #12553: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12554: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12555: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12556: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12557: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12558: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12559: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12560: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12561: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12562: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:53 UTC 2017
ssl.sh: #12563: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12564: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12565: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12566: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12567: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12568: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12569: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12570: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12571: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12572: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:54 UTC 2017
ssl.sh: #12573: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12574: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12575: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12576: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12577: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16355 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 16355 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12578: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 16355 at Wed Aug 23 12:42:55 UTC 2017
kill -USR1 16355
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 16355 killed at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:55 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:55 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:55 UTC 2017
selfserv_9223 with PID 17788 started at Wed Aug 23 12:42:55 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12579: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12580: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12581: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12582: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:55 UTC 2017
ssl.sh: #12583: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12584: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12585: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12586: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12587: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12588: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12589: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12590: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12591: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12592: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12593: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:56 UTC 2017
ssl.sh: #12594: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12595: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12596: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12597: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12598: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12599: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12600: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12601: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12602: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12603: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12604: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
ssl.sh: #12605: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12606: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12607: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12608: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12609: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12610: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12611: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12612: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12613: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12614: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12615: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12616: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12617: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:58 UTC 2017
ssl.sh: #12618: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17788 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 17788 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12619: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 17788 at Wed Aug 23 12:42:59 UTC 2017
kill -USR1 17788
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 17788 killed at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:42:59 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:42:59 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
selfserv_9223 with PID 19222 started at Wed Aug 23 12:42:59 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12620: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12621: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12622: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12623: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12624: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12625: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:42:59 UTC 2017
ssl.sh: #12626: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12627: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12628: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12629: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12630: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12631: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12632: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12633: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12634: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:00 UTC 2017
ssl.sh: #12635: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12636: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12637: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12638: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12639: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12640: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12641: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12642: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12643: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12644: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:01 UTC 2017
ssl.sh: #12645: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12646: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12647: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12648: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12649: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12650: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12651: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12652: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12653: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12654: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:02 UTC 2017
ssl.sh: #12655: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12656: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12657: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12658: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12659: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19222 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 19222 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12660: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 19222 at Wed Aug 23 12:43:03 UTC 2017
kill -USR1 19222
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 19222 killed at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:03 UTC 2017
selfserv_9223 with PID 20669 started at Wed Aug 23 12:43:03 UTC 2017
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12661: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12662: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:03 UTC 2017
ssl.sh: #12663: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12664: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12665: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12666: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12667: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12668: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12669: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12670: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12671: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12672: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:04 UTC 2017
ssl.sh: #12673: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12674: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12675: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12676: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12677: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12678: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12679: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12680: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12681: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12682: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12683: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:05 UTC 2017
ssl.sh: #12684: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12685: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12686: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12687: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12688: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12689: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12690: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12691: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12692: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12693: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:06 UTC 2017
ssl.sh: #12694: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12695: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12696: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12697: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12698: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12699: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12700: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20669 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 20669 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12701: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9223 with PID 20669 at Wed Aug 23 12:43:07 UTC 2017
kill -USR1 20669
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 20669 killed at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22111 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22111 found at Wed Aug 23 12:43:07 UTC 2017
selfserv_9223 with PID 22111 started at Wed Aug 23 12:43:07 UTC 2017
trying to kill selfserv_9223 with PID 22111 at Wed Aug 23 12:43:07 UTC 2017
kill -USR1 22111
./ssl.sh: line 197: 22111 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22111 killed at Wed Aug 23 12:43:07 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:43:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:07 UTC 2017
selfserv_9223 with PID 22145 started at Wed Aug 23 12:43:07 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:07 UTC 2017
ssl.sh: #12702: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12703: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12704: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12705: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12706: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12707: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12708: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12709: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:08 UTC 2017
ssl.sh: #12710: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
ssl.sh: #12711: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
ssl.sh: #12712: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
ssl.sh: #12713: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
ssl.sh: #12714: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12715: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
ssl.sh: #12716: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
ssl.sh: #12717: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:09 UTC 2017
ssl.sh: #12718: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12719: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12720: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12721: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12722: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12723: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12724: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12725: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:10 UTC 2017
ssl.sh: #12726: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12727: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12728: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12729: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12730: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12731: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12732: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12733: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12734: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:11 UTC 2017
ssl.sh: #12735: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: #12736: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: #12737: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: #12738: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: #12739: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: #12740: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: #12741: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22145 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 22145 found at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: #12742: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 22145 at Wed Aug 23 12:43:12 UTC 2017
kill -USR1 22145
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 22145 killed at Wed Aug 23 12:43:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:12 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:12 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:12 UTC 2017
selfserv_9223 with PID 23575 started at Wed Aug 23 12:43:12 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12743: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12744: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12745: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12746: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12747: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12748: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12749: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:13 UTC 2017
ssl.sh: #12750: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
ssl.sh: #12751: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
ssl.sh: #12752: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
ssl.sh: #12753: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
ssl.sh: #12754: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
ssl.sh: #12755: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12756: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
ssl.sh: #12757: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:14 UTC 2017
ssl.sh: #12758: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12759: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12760: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12761: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12762: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12763: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12764: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12765: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:15 UTC 2017
ssl.sh: #12766: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
ssl.sh: #12767: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
ssl.sh: #12768: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
ssl.sh: #12769: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12770: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
ssl.sh: #12771: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
ssl.sh: #12772: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
ssl.sh: #12773: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:16 UTC 2017
ssl.sh: #12774: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12775: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12776: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12777: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12778: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12779: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12780: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12781: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:17 UTC 2017
ssl.sh: #12782: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23575 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 23575 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12783: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 23575 at Wed Aug 23 12:43:18 UTC 2017
kill -USR1 23575
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 23575 killed at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:18 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:18 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
selfserv_9223 with PID 25000 started at Wed Aug 23 12:43:18 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12784: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12785: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12786: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12787: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12788: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12789: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12790: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:18 UTC 2017
ssl.sh: #12791: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12792: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12793: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12794: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12795: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12796: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12797: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12798: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12799: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12800: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:19 UTC 2017
ssl.sh: #12801: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12802: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12803: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12804: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12805: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12806: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12807: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12808: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12809: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
ssl.sh: #12810: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12811: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12812: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12813: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12814: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12815: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12816: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12817: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12818: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12819: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12820: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:21 UTC 2017
ssl.sh: #12821: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: #12822: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: #12823: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25000 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 25000 found at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: #12824: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 25000 at Wed Aug 23 12:43:22 UTC 2017
kill -USR1 25000
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 25000 killed at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:22 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:22 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:22 UTC 2017
selfserv_9223 with PID 26427 started at Wed Aug 23 12:43:22 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: #12825: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: #12826: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: #12827: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:22 UTC 2017
ssl.sh: #12828: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12829: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12830: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12831: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12832: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12833: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12834: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12835: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:23 UTC 2017
ssl.sh: #12836: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
ssl.sh: #12837: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12838: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
ssl.sh: #12839: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
ssl.sh: #12840: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
ssl.sh: #12841: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
ssl.sh: #12842: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
ssl.sh: #12843: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:24 UTC 2017
ssl.sh: #12844: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:25 UTC 2017
ssl.sh: #12845: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:25 UTC 2017
ssl.sh: #12846: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:25 UTC 2017
ssl.sh: #12847: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:25 UTC 2017
ssl.sh: #12848: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:25 UTC 2017
ssl.sh: #12849: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:25 UTC 2017
ssl.sh: #12850: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:25 UTC 2017
ssl.sh: #12851: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12852: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
ssl.sh: #12853: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
ssl.sh: #12854: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
ssl.sh: #12855: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
ssl.sh: #12856: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
ssl.sh: #12857: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
ssl.sh: #12858: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:26 UTC 2017
ssl.sh: #12859: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: #12860: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: #12861: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: #12862: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: #12863: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: #12864: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26427 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 26427 found at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: #12865: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 26427 at Wed Aug 23 12:43:27 UTC 2017
kill -USR1 26427
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 26427 killed at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:27 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:27 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:27 UTC 2017
selfserv_9223 with PID 27856 started at Wed Aug 23 12:43:27 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:27 UTC 2017
ssl.sh: #12866: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12867: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12868: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12869: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12870: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12871: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12872: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12873: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:28 UTC 2017
ssl.sh: #12874: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:29 UTC 2017
ssl.sh: #12875: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:29 UTC 2017
ssl.sh: #12876: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:29 UTC 2017
ssl.sh: #12877: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:29 UTC 2017
ssl.sh: #12878: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12879: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:29 UTC 2017
ssl.sh: #12880: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:29 UTC 2017
ssl.sh: #12881: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12882: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12883: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12884: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12885: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12886: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12887: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12888: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:30 UTC 2017
ssl.sh: #12889: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
ssl.sh: #12890: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
ssl.sh: #12891: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
ssl.sh: #12892: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12893: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
ssl.sh: #12894: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
ssl.sh: #12895: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
ssl.sh: #12896: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:31 UTC 2017
ssl.sh: #12897: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12898: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12899: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12900: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12901: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12902: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12903: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12904: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:32 UTC 2017
ssl.sh: #12905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27856 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 27856 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12906: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 27856 at Wed Aug 23 12:43:33 UTC 2017
kill -USR1 27856
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 27856 killed at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:33 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:33 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
selfserv_9223 with PID 29283 started at Wed Aug 23 12:43:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12907: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12908: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12910: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12911: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12912: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:33 UTC 2017
ssl.sh: #12913: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12914: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12915: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12916: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12917: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12918: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12919: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12920: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12921: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:34 UTC 2017
ssl.sh: #12922: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12923: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12924: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12925: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12926: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12927: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12928: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12929: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12930: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:35 UTC 2017
ssl.sh: #12931: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12932: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12933: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12934: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12935: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12936: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12937: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12938: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12939: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12940: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:36 UTC 2017
ssl.sh: #12941: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: #12942: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: #12943: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: #12944: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: #12945: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: #12946: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29283 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 29283 found at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: #12947: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 29283 at Wed Aug 23 12:43:37 UTC 2017
kill -USR1 29283
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 29283 killed at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30712 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30712 found at Wed Aug 23 12:43:37 UTC 2017
selfserv_9223 with PID 30712 started at Wed Aug 23 12:43:37 UTC 2017
trying to kill selfserv_9223 with PID 30712 at Wed Aug 23 12:43:37 UTC 2017
kill -USR1 30712
./ssl.sh: line 197: 30712 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30712 killed at Wed Aug 23 12:43:37 UTC 2017
selfserv_9223 starting at Wed Aug 23 12:43:37 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:37 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:37 UTC 2017
selfserv_9223 with PID 30746 started at Wed Aug 23 12:43:37 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:37 UTC 2017
ssl.sh: #12948: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12949: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12950: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12951: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12952: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12953: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12954: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12955: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:38 UTC 2017
ssl.sh: #12956: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12957: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12958: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12959: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12960: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12961: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12962: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12963: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12964: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:39 UTC 2017
ssl.sh: #12965: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12966: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12967: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12968: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12969: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12970: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12971: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12972: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:40 UTC 2017
ssl.sh: #12973: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
ssl.sh: #12974: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12975: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
ssl.sh: #12976: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
ssl.sh: #12977: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
ssl.sh: #12978: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
ssl.sh: #12979: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
ssl.sh: #12980: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:41 UTC 2017
ssl.sh: #12981: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: #12982: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: #12983: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: #12984: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: #12985: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: #12986: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: #12987: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30746 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 30746 found at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: #12988: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 30746 at Wed Aug 23 12:43:42 UTC 2017
kill -USR1 30746
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 30746 killed at Wed Aug 23 12:43:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:42 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:42 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:42 UTC 2017
selfserv_9223 with PID 32182 started at Wed Aug 23 12:43:42 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12989: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12990: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12991: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12992: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12993: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12994: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12995: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:43 UTC 2017
ssl.sh: #12996: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
ssl.sh: #12997: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
ssl.sh: #12998: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
ssl.sh: #12999: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
ssl.sh: #13000: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
ssl.sh: #13001: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13002: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
ssl.sh: #13003: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:44 UTC 2017
ssl.sh: #13004: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13005: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13006: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13007: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13008: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13009: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13010: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13011: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:45 UTC 2017
ssl.sh: #13012: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
ssl.sh: #13013: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
ssl.sh: #13014: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
ssl.sh: #13015: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13016: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
ssl.sh: #13017: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
ssl.sh: #13018: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
ssl.sh: #13019: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:46 UTC 2017
ssl.sh: #13020: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13021: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13022: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13023: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13024: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13025: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13026: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13027: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:47 UTC 2017
ssl.sh: #13028: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32182 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 32182 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13029: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 32182 at Wed Aug 23 12:43:48 UTC 2017
kill -USR1 32182
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 32182 killed at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:48 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:48 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
selfserv_9223 with PID 1223 started at Wed Aug 23 12:43:48 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13030: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13031: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13032: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13033: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13034: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13035: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13036: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:48 UTC 2017
ssl.sh: #13037: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13038: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13039: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13040: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13041: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13042: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13043: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13044: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13045: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13046: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:49 UTC 2017
ssl.sh: #13047: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13048: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13049: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13050: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13051: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13052: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13053: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13054: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13055: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
ssl.sh: #13056: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13057: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13058: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13059: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13060: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13061: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13062: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13063: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13064: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13065: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13066: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13067: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:51 UTC 2017
ssl.sh: #13068: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: #13069: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1223 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 1223 found at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: #13070: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 1223 at Wed Aug 23 12:43:52 UTC 2017
kill -USR1 1223
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 1223 killed at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:52 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:52 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:52 UTC 2017
selfserv_9223 with PID 2694 started at Wed Aug 23 12:43:52 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: #13071: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: #13072: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: #13073: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: #13074: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:52 UTC 2017
ssl.sh: #13075: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:53 UTC 2017
ssl.sh: #13076: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:53 UTC 2017
ssl.sh: #13077: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:53 UTC 2017
ssl.sh: #13078: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:53 UTC 2017
ssl.sh: #13079: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:53 UTC 2017
ssl.sh: #13080: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:53 UTC 2017
ssl.sh: #13081: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:53 UTC 2017
ssl.sh: #13082: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
ssl.sh: #13083: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13084: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
ssl.sh: #13085: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
ssl.sh: #13086: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
ssl.sh: #13087: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
ssl.sh: #13088: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
ssl.sh: #13089: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:54 UTC 2017
ssl.sh: #13090: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
ssl.sh: #13091: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
ssl.sh: #13092: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
ssl.sh: #13093: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
ssl.sh: #13094: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
ssl.sh: #13095: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
ssl.sh: #13096: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
ssl.sh: #13097: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13098: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13099: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13100: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13101: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13102: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13103: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13104: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13105: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:56 UTC 2017
ssl.sh: #13106: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:57 UTC 2017
ssl.sh: #13107: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:57 UTC 2017
ssl.sh: #13108: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:57 UTC 2017
ssl.sh: #13109: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:57 UTC 2017
ssl.sh: #13110: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2694 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 2694 found at Wed Aug 23 12:43:57 UTC 2017
ssl.sh: #13111: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 2694 at Wed Aug 23 12:43:57 UTC 2017
kill -USR1 2694
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 2694 killed at Wed Aug 23 12:43:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:43:57 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:43:57 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:57 UTC 2017
selfserv_9223 with PID 4119 started at Wed Aug 23 12:43:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:57 UTC 2017
ssl.sh: #13112: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13113: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13114: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13115: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13116: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13117: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13118: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13119: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:58 UTC 2017
ssl.sh: #13120: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:59 UTC 2017
ssl.sh: #13121: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:59 UTC 2017
ssl.sh: #13122: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:59 UTC 2017
ssl.sh: #13123: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:59 UTC 2017
ssl.sh: #13124: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13125: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:59 UTC 2017
ssl.sh: #13126: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:43:59 UTC 2017
ssl.sh: #13127: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13128: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13129: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13130: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13131: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13132: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13133: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13134: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:00 UTC 2017
ssl.sh: #13135: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
ssl.sh: #13136: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
ssl.sh: #13137: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
ssl.sh: #13138: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13139: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
ssl.sh: #13140: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
ssl.sh: #13141: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
ssl.sh: #13142: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:01 UTC 2017
ssl.sh: #13143: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:02 UTC 2017
ssl.sh: #13144: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:02 UTC 2017
ssl.sh: #13145: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:02 UTC 2017
ssl.sh: #13146: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:02 UTC 2017
ssl.sh: #13147: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:02 UTC 2017
ssl.sh: #13148: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:02 UTC 2017
ssl.sh: #13149: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:02 UTC 2017
ssl.sh: #13150: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13151: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4119 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 4119 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13152: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 4119 at Wed Aug 23 12:44:03 UTC 2017
kill -USR1 4119
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 4119 killed at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:44:03 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:44:03 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:03 UTC 2017
selfserv_9223 with PID 5545 started at Wed Aug 23 12:44:03 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13153: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13154: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13155: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13156: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13157: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:03 UTC 2017
ssl.sh: #13158: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13159: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13160: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13161: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13162: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13163: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13164: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13165: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13166: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13167: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:04 UTC 2017
ssl.sh: #13168: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13169: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13170: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13171: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13172: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13173: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13174: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13175: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13176: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:05 UTC 2017
ssl.sh: #13177: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13178: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13179: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13180: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13181: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13182: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13183: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13184: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13185: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13186: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:06 UTC 2017
ssl.sh: #13187: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: #13188: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: #13189: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: #13190: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: #13191: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: #13192: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9223 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5545 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 5545 found at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: #13193: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 5545 at Wed Aug 23 12:44:07 UTC 2017
kill -USR1 5545
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 5545 killed at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9223 starting at Wed Aug 23 12:44:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:44:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6984 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 6984 found at Wed Aug 23 12:44:07 UTC 2017
selfserv_9223 with PID 6984 started at Wed Aug 23 12:44:07 UTC 2017
trying to kill selfserv_9223 with PID 6984 at Wed Aug 23 12:44:07 UTC 2017
kill -USR1 6984
./ssl.sh: line 197:  6984 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9223 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 6984 killed at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9223 starting at Wed Aug 23 12:44:07 UTC 2017
selfserv_9223 -D -p 9223 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.30054\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9223 at Wed Aug 23 12:44:07 UTC 2017
tstclnt -p 9223 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7019 >/dev/null 2>/dev/null
No server to kill
selfserv_9223 with PID 7019 found at Wed Aug 23 12:44:07 UTC 2017
selfserv_9223 with PID 7019 started at Wed Aug 23 12:44:07 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13194: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13195: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13196: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13197: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13198: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13199: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13200: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13201: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13202: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13203: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13204: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13205: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13206: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13207: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13208: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13209: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13210: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13211: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9223 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13212: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9223 with PID 7019 at Wed Aug 23 12:44:09 UTC 2017
kill -USR1 7019
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9223 -b -p 9223 2>/dev/null;
selfserv_9223 with PID 7019 killed at Wed Aug 23 12:44:09 UTC 2017
TIMESTAMP ssl END: Wed Aug 23 12:44:09 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed Aug 23 12:44:09 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.30054 -t "Test1"
sdr.sh: #13213: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v2.30054 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #13214: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.30054 -t "1234567"
sdr.sh: #13215: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.30054 -t "Test1"
sdr.sh: #13216: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v2.30054 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #13217: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.30054 -t "1234567"
sdr.sh: #13218: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.30054 -t Test2 -f ../tests.pw
merge.sh: #13219: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13220: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13221: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13222: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13223: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13224: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:40:51 2017
            Not After : Tue Aug 23 12:40:51 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:f4:4e:b9:04:39:b4:65:dc:72:e5:a3:8f:c2:82:a6:
                    89:9e:34:05:c1:0d:98:9c:42:06:84:45:63:b7:93:13:
                    ec:76:8e:98:8f:cc:b8:f0:9b:80:e2:d9:31:5f:eb:1e:
                    e6:6a:bc:d1:4d:5d:cd:18:a1:9e:e6:e2:62:1d:26:fa:
                    92:e6:cf:5d:6a:1a:2a:f1:04:17:ef:5b:60:90:cd:a0:
                    22:43:b0:d4:66:e8:6c:b3:98:56:66:97:d3:1b:50:c1:
                    5b:41:60:9a:cf:35:53:46:5c:dc:7e:2c:51:9b:97:74:
                    0d:41:30:ef:f9:7e:4a:ae:10:b3:e6:f9:52:47:ed:db:
                    27:6b:76:2d:e9:ab:ab:c2:1c:33:41:e6:af:e7:f2:dd:
                    5f:5f:63:af:28:4c:0a:3f:86:08:68:8b:ff:81:82:3e:
                    eb:aa:70:ce:30:26:b7:a9:07:26:c4:b8:9f:a5:cb:8a:
                    a1:ca:7a:2e:ca:8c:f1:52:7e:ed:00:e8:46:1f:05:54:
                    29:d0:07:bc:ad:54:f2:e6:b1:5f:1c:2b:4b:16:3a:e3:
                    22:e9:d0:8e:e6:cd:b5:2e:85:cc:5b:61:1f:a3:8f:35:
                    a7:eb:bf:41:91:99:8c:55:c4:61:58:4a:36:14:0d:71:
                    1f:8d:35:16:ee:c6:34:74:d0:5d:7f:2b:25:99:c2:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:9c:30:b6:39:db:96:b4:d9:53:01:a8:67:4b:2b:5b:
        8e:3a:e7:6b:f4:13:f6:e8:1f:19:e6:79:78:c5:c7:cb:
        69:1b:a3:0b:79:97:fd:81:c0:01:73:e3:1d:f9:85:88:
        2c:ce:03:96:2f:81:c9:80:e5:76:ce:fe:f8:5e:86:42:
        cb:4d:7e:7b:56:5b:c7:3c:0f:dc:c2:79:a2:bc:9a:d1:
        6f:91:81:a1:fd:b4:43:e0:ef:75:ea:3b:c3:8e:83:77:
        a2:7a:f6:18:f0:9a:a4:29:97:64:e3:33:bf:97:e0:12:
        ae:47:9c:94:8a:76:f5:3a:99:b3:2e:60:3f:45:e8:ee:
        dd:b8:d6:58:e2:8f:99:6a:15:09:a1:5b:b9:01:0a:9a:
        79:78:41:6e:7f:9e:0f:4b:0e:e7:f5:53:ba:bd:02:05:
        3c:30:79:02:d1:37:2e:24:39:c9:58:dc:ff:35:a7:4a:
        8e:4c:99:e8:f6:ce:53:dc:47:88:21:9f:49:68:38:b9:
        40:58:e7:2d:6f:f0:5d:e8:59:eb:6f:2d:b7:db:60:69:
        bb:4a:e6:6a:0a:d7:e9:b3:c3:ab:4f:e9:ac:7d:a6:f8:
        17:ab:c4:4d:5b:c4:23:7f:31:b8:1e:75:b7:a6:52:5f:
        c5:eb:a7:6a:98:53:1c:a2:1d:c6:06:4a:e9:24:48:62
    Fingerprint (SHA-256):
        91:6B:37:22:EF:88:71:B5:00:29:99:6B:AC:6B:71:E2:BE:9A:CD:1A:1E:4F:C1:B4:1F:CB:5C:DD:52:D9:BC:D6
    Fingerprint (SHA1):
        CF:74:30:A6:BD:EB:2F:F3:02:AB:AC:3E:C1:85:67:EA:BA:73:04:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #13225: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Aug 23 12:40:54 2017
            Not After : Tue Aug 23 12:40:54 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:2b:d3:ff:8c:93:3a:c4:90:c3:11:0e:84:ef:d7:c3:
                    c9:ba:2c:36:ca:4c:4e:8d:78:20:3f:b0:a5:9e:d5:e6:
                    45:00:7c:ea:24:5b:de:16:95:58:93:45:ce:d4:97:54:
                    3c:84:d4:56:c5:93:85:88:af:35:7c:d6:18:9a:6d:ca:
                    c5:39:4e:10:b2:e9:81:c2:8e:cc:c1:f5:a7:c5:69:df:
                    1b:7b:3c:e1:9b:1c:d3:60:e5:6f:e5:89:03:f9:a1:67:
                    57:86:7a:b7:48:0c:75:f1:46:93:0f:8e:d9:d6:5e:15:
                    5e:85:6e:b9:75:74:66:1c:60:07:e6:7c:86:ee:41:b9:
                    89:d3:cf:7a:e7:a5:87:b3:70:f0:e9:83:c7:40:47:4d:
                    a3:ee:1f:b7:21:a0:01:4d:a6:d4:48:1a:23:95:27:af:
                    b5:ca:b9:45:6c:9b:be:1a:42:25:ba:a3:87:d7:77:4f:
                    e1:d0:d4:8f:83:7b:c6:ec:95:f0:24:14:7a:41:65:9d:
                    43:23:69:d7:aa:51:e7:0f:8f:dd:d7:c1:62:cf:e0:54:
                    69:d0:91:61:c7:d9:6c:a6:bb:c5:9c:77:f6:ac:60:d7:
                    ad:6e:57:ab:a5:8b:90:7e:e3:a0:7b:1f:94:73:fe:8b:
                    ac:b6:72:2c:67:ac:84:37:41:bc:96:b4:89:43:12:7f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:cb:6a:b1:d3:c3:d1:00:c5:69:44:d6:67:ff:89:b1:
        14:2a:af:80:af:a6:d1:78:bf:61:03:a0:15:ea:ee:a4:
        cd:43:d4:5c:27:b6:58:f5:6a:8e:13:23:a0:1e:d3:75:
        5a:7b:3a:31:8e:26:38:9d:13:1e:3d:64:58:35:9c:25:
        e3:18:f7:1c:3d:df:86:a1:ba:90:d3:8c:32:29:d0:c0:
        6e:2f:5d:c2:f4:f8:1d:18:0e:a3:37:33:bc:25:c6:12:
        67:26:0c:09:af:f7:97:d9:39:87:f7:54:0a:0f:2a:fe:
        86:f7:95:e8:3c:57:a4:67:ce:74:7e:35:24:7c:d2:bb:
        cc:9c:53:96:6a:22:05:64:33:67:75:18:70:92:b1:31:
        60:d7:51:45:23:4e:72:62:92:fb:56:26:42:7a:a4:f7:
        c2:57:54:d9:ab:8b:83:7c:fa:35:c3:19:80:c0:02:b5:
        a8:c7:8f:ef:9c:bf:8d:01:e8:37:f4:a0:4b:fe:ca:0e:
        2c:ba:e9:1e:22:a7:a1:b7:c7:1c:f7:2f:9a:0e:e2:48:
        e6:1c:c4:38:40:df:a7:e8:d5:a9:2f:ea:e8:c0:7f:94:
        67:64:65:d4:49:e1:52:44:84:62:4b:c9:6d:60:27:72:
        b3:f7:2d:2e:e0:69:f9:52:7c:77:e3:55:de:cf:b2:44
    Fingerprint (SHA-256):
        EB:54:CF:21:D5:DE:2F:7C:B2:7F:E9:A8:63:7B:A9:9A:B6:99:65:D2:31:FE:CD:F1:51:BC:06:EB:25:7F:76:AE
    Fingerprint (SHA1):
        FB:42:BA:CF:B5:4B:9B:20:BF:ED:95:CF:70:9A:14:89:08:BE:81:37
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #13226: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13227: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA                                                     T,C,C
chain-1-clientCA                                             ,,   
chain-2-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-1-clientCA-dsa                                         ,,   
chain-2-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
chain-1-clientCA-ec                                          ,,   
chain-2-clientCA-ec                                          ,,   
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.30054 -t Test2 -f ../tests.pw
merge.sh: #13228: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.30054 -t Test1 -f ../tests.pw
merge.sh: #13229: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #13230: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #13231: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #13232: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed Aug 23 12:41:20 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:39:19 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed Aug 23 12:41:15 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #13233: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Wed Aug 23 12:44:24 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed Aug 23 12:44:24 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #13234: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124425 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13235: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #13236: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13237: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #13238: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13239: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13240: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13241: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13242: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #13243: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13244: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13245: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13246: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13247: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #13248: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13249: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13250: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13251: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13252: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #13253: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13254: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13255: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13256: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #13257: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13258: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13259: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13260: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #13261: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13262: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13263: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13264: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #13265: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13266: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13267: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13268: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #13269: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13270: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13271: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13272: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #13273: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13274: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13275: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13276: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #13277: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13278: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13279: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13280: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #13281: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13282: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13283: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13284: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #13285: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13286: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13287: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13288: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #13289: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13290: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9233/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13291: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13292: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #13293: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13294: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9234
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13295: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13296: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170823124439Z
nextupdate=20180823124439Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed Aug 23 12:44:39 2017
    Next Update: Thu Aug 23 12:44:39 2018
    CRL Extensions:
chains.sh: #13297: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170823124440Z
addcert 2 20170823124440Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed Aug 23 12:44:40 2017
    Next Update: Thu Aug 23 12:44:39 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:44:40 2017
    CRL Extensions:
chains.sh: #13298: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823124440Z
nextupdate=20180823124440Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:44:40 2017
    Next Update: Thu Aug 23 12:44:40 2018
    CRL Extensions:
chains.sh: #13299: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823124441Z
addcert 2 20170823124441Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:44:41 2017
    Next Update: Thu Aug 23 12:44:40 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:44:41 2017
    CRL Extensions:
chains.sh: #13300: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170823124442Z
addcert 4 20170823124442Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed Aug 23 12:44:42 2017
    Next Update: Thu Aug 23 12:44:40 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:44:41 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed Aug 23 12:44:42 2017
    CRL Extensions:
chains.sh: #13301: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823124442Z
nextupdate=20180823124442Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:44:42 2017
    Next Update: Thu Aug 23 12:44:42 2018
    CRL Extensions:
chains.sh: #13302: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823124443Z
addcert 2 20170823124443Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:44:43 2017
    Next Update: Thu Aug 23 12:44:42 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:44:43 2017
    CRL Extensions:
chains.sh: #13303: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170823124444Z
addcert 3 20170823124444Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed Aug 23 12:44:44 2017
    Next Update: Thu Aug 23 12:44:42 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:44:43 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed Aug 23 12:44:44 2017
    CRL Extensions:
chains.sh: #13304: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823124444Z
nextupdate=20180823124444Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:44:44 2017
    Next Update: Thu Aug 23 12:44:44 2018
    CRL Extensions:
chains.sh: #13305: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823124445Z
addcert 2 20170823124445Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:44:45 2017
    Next Update: Thu Aug 23 12:44:44 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:44:45 2017
    CRL Extensions:
chains.sh: #13306: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170823124446Z
addcert 3 20170823124446Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed Aug 23 12:44:46 2017
    Next Update: Thu Aug 23 12:44:44 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed Aug 23 12:44:45 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed Aug 23 12:44:46 2017
    CRL Extensions:
chains.sh: #13307: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #13308: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #13309: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #13310: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13311: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13312: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13313: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux3.10_x86_64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13314: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #13315: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #13316: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #13317: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #13318: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #13319: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #13320: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #13321: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #13322: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #13323: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #13324: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #13325: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #13326: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #13327: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #13328: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #13329: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #13330: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #13331: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed Aug 23 12:44:51 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:44:51 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 9548 >/dev/null 2>/dev/null
httpserv with PID 9548 found at Wed Aug 23 12:44:51 UTC 2017
httpserv with PID 9548 started at Wed Aug 23 12:44:51 UTC 2017
tstclnt -h localhost.localdomain -p 9233 -q -t 20
chains.sh: #13332: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124425 (0x310fe1c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:25 2017
            Not After : Tue Aug 23 12:44:25 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:8a:14:e8:6a:5b:19:0f:91:7c:83:56:1c:30:f6:70:
                    65:bd:57:eb:37:60:41:9b:25:d6:f8:f2:39:91:48:35:
                    6f:5e:4e:5f:f1:64:58:b0:db:97:ab:36:ad:64:e3:11:
                    97:4f:f3:28:de:c7:30:4d:9b:0d:ad:9a:f0:7b:4c:03:
                    f7:a7:d0:90:3c:e8:61:f3:06:b3:c4:fb:3d:20:a1:46:
                    df:ec:b3:48:9b:41:1e:87:1a:42:88:2c:26:74:fb:90:
                    82:a9:34:e8:75:73:3d:0f:7e:6a:2c:63:b0:2f:07:03:
                    0c:bc:a3:d4:6d:65:0e:5b:44:3f:b4:32:fa:f8:24:22:
                    97:9f:f3:96:9e:a5:ce:2b:eb:86:df:ea:bf:f9:83:c8:
                    24:84:1a:34:79:aa:3d:f0:38:78:8b:3d:19:ce:1b:d1:
                    64:ae:bd:39:47:1e:f9:72:c0:7b:fd:71:29:04:9c:8b:
                    1a:0a:34:49:c3:d0:26:ff:c2:38:d0:50:21:e8:be:eb:
                    bc:fe:74:9e:f9:8b:8f:6e:c4:db:ab:74:f2:5f:6e:32:
                    81:ec:da:f2:bd:d8:d6:d6:d0:82:7f:0b:6a:e8:35:36:
                    ca:cd:8b:e1:d1:bf:33:9e:fe:76:73:14:7c:60:ba:1a:
                    bf:87:9e:81:a3:36:f1:7f:e2:cd:25:e2:b4:d3:9c:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:b3:fe:52:da:74:97:29:a4:66:69:72:50:bf:49:71:
        87:0a:84:da:05:72:3f:0f:84:f3:46:71:f9:36:35:78:
        5c:41:0f:b2:4b:13:46:8b:e6:39:27:d8:8c:15:52:35:
        42:ea:52:10:09:93:c0:1b:b9:64:3a:37:ac:e9:05:8e:
        87:55:cb:ac:fb:1f:e6:9e:35:9c:dc:88:6a:79:b2:fe:
        b8:4f:a3:90:53:1c:5c:b1:3e:31:e5:d3:44:b7:ea:f6:
        ce:6e:f8:1b:0c:68:6b:22:da:a3:14:8d:28:63:ec:cc:
        e7:c8:cd:e9:f3:17:19:13:4e:86:96:e7:c9:3b:32:18:
        fa:17:07:4d:e3:c4:88:39:37:d1:a8:41:11:7a:c3:5c:
        b9:39:a2:a6:c6:02:02:4b:af:71:cc:2b:6d:6a:b9:f2:
        b8:b5:fe:67:01:51:7b:ef:45:2c:66:f9:92:ed:53:ae:
        92:28:8c:65:74:df:1d:d6:56:ea:21:d2:6f:e9:ab:1c:
        d7:e6:27:ce:e6:62:2b:f5:8b:ba:c6:5f:4f:8d:15:ee:
        e6:f6:27:26:a0:f9:40:59:f9:c8:22:03:d4:6a:b8:72:
        47:82:31:eb:8c:49:25:e2:0f:a6:c7:04:8a:97:9b:a5:
        7c:d8:d8:17:f3:a5:e6:8f:06:97:5c:37:6b:42:ab:13
    Fingerprint (SHA-256):
        F2:30:76:5A:99:F3:F1:FA:E4:86:B9:32:87:FB:FA:1C:29:93:4C:E7:9F:32:F0:7B:70:B3:E1:A4:D5:47:9A:7A
    Fingerprint (SHA1):
        7A:E6:09:CD:89:17:F8:AB:A1:5E:0C:FB:13:1E:F0:2A:DD:7C:23:1E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13333: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13334: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13335: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 9548 at Wed Aug 23 12:44:51 UTC 2017
kill -USR1 9548
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 9548 killed at Wed Aug 23 12:44:51 UTC 2017
httpserv starting at Wed Aug 23 12:44:51 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:44:51 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 9717 >/dev/null 2>/dev/null
httpserv with PID 9717 found at Wed Aug 23 12:44:51 UTC 2017
httpserv with PID 9717 started at Wed Aug 23 12:44:51 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13336: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13337: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13338: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9233 -q -t 20
chains.sh: #13339: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124425 (0x310fe1c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:25 2017
            Not After : Tue Aug 23 12:44:25 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:8a:14:e8:6a:5b:19:0f:91:7c:83:56:1c:30:f6:70:
                    65:bd:57:eb:37:60:41:9b:25:d6:f8:f2:39:91:48:35:
                    6f:5e:4e:5f:f1:64:58:b0:db:97:ab:36:ad:64:e3:11:
                    97:4f:f3:28:de:c7:30:4d:9b:0d:ad:9a:f0:7b:4c:03:
                    f7:a7:d0:90:3c:e8:61:f3:06:b3:c4:fb:3d:20:a1:46:
                    df:ec:b3:48:9b:41:1e:87:1a:42:88:2c:26:74:fb:90:
                    82:a9:34:e8:75:73:3d:0f:7e:6a:2c:63:b0:2f:07:03:
                    0c:bc:a3:d4:6d:65:0e:5b:44:3f:b4:32:fa:f8:24:22:
                    97:9f:f3:96:9e:a5:ce:2b:eb:86:df:ea:bf:f9:83:c8:
                    24:84:1a:34:79:aa:3d:f0:38:78:8b:3d:19:ce:1b:d1:
                    64:ae:bd:39:47:1e:f9:72:c0:7b:fd:71:29:04:9c:8b:
                    1a:0a:34:49:c3:d0:26:ff:c2:38:d0:50:21:e8:be:eb:
                    bc:fe:74:9e:f9:8b:8f:6e:c4:db:ab:74:f2:5f:6e:32:
                    81:ec:da:f2:bd:d8:d6:d6:d0:82:7f:0b:6a:e8:35:36:
                    ca:cd:8b:e1:d1:bf:33:9e:fe:76:73:14:7c:60:ba:1a:
                    bf:87:9e:81:a3:36:f1:7f:e2:cd:25:e2:b4:d3:9c:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:b3:fe:52:da:74:97:29:a4:66:69:72:50:bf:49:71:
        87:0a:84:da:05:72:3f:0f:84:f3:46:71:f9:36:35:78:
        5c:41:0f:b2:4b:13:46:8b:e6:39:27:d8:8c:15:52:35:
        42:ea:52:10:09:93:c0:1b:b9:64:3a:37:ac:e9:05:8e:
        87:55:cb:ac:fb:1f:e6:9e:35:9c:dc:88:6a:79:b2:fe:
        b8:4f:a3:90:53:1c:5c:b1:3e:31:e5:d3:44:b7:ea:f6:
        ce:6e:f8:1b:0c:68:6b:22:da:a3:14:8d:28:63:ec:cc:
        e7:c8:cd:e9:f3:17:19:13:4e:86:96:e7:c9:3b:32:18:
        fa:17:07:4d:e3:c4:88:39:37:d1:a8:41:11:7a:c3:5c:
        b9:39:a2:a6:c6:02:02:4b:af:71:cc:2b:6d:6a:b9:f2:
        b8:b5:fe:67:01:51:7b:ef:45:2c:66:f9:92:ed:53:ae:
        92:28:8c:65:74:df:1d:d6:56:ea:21:d2:6f:e9:ab:1c:
        d7:e6:27:ce:e6:62:2b:f5:8b:ba:c6:5f:4f:8d:15:ee:
        e6:f6:27:26:a0:f9:40:59:f9:c8:22:03:d4:6a:b8:72:
        47:82:31:eb:8c:49:25:e2:0f:a6:c7:04:8a:97:9b:a5:
        7c:d8:d8:17:f3:a5:e6:8f:06:97:5c:37:6b:42:ab:13
    Fingerprint (SHA-256):
        F2:30:76:5A:99:F3:F1:FA:E4:86:B9:32:87:FB:FA:1C:29:93:4C:E7:9F:32:F0:7B:70:B3:E1:A4:D5:47:9A:7A
    Fingerprint (SHA1):
        7A:E6:09:CD:89:17:F8:AB:A1:5E:0C:FB:13:1E:F0:2A:DD:7C:23:1E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13340: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13341: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13342: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 9717 at Wed Aug 23 12:44:52 UTC 2017
kill -USR1 9717
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 9717 killed at Wed Aug 23 12:44:52 UTC 2017
httpserv starting at Wed Aug 23 12:44:52 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:44:52 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 9964 >/dev/null 2>/dev/null
httpserv with PID 9964 found at Wed Aug 23 12:44:52 UTC 2017
httpserv with PID 9964 started at Wed Aug 23 12:44:52 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13343: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13344: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124426 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13345: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13346: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13347: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124427 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13348: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13349: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13350: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13351: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823124428 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13352: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13353: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823124429 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13354: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13355: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13356: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13357: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13358: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 823124430   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13359: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13360: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13361: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #13362: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #13363: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124427 (0x310fe1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:54 2017
            Not After : Tue Aug 23 12:44:54 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:7e:70:c3:1b:c1:78:12:4e:c0:98:8f:4d:f5:72:3e:
                    b0:ab:cf:5b:c8:58:61:34:f9:34:79:91:a7:08:ed:13:
                    14:29:66:dd:1a:f0:2d:77:6e:0e:0c:c0:24:4b:54:5e:
                    1c:88:20:1c:fb:98:91:1b:4e:44:2b:55:7e:bb:23:5d:
                    df:22:5e:12:d6:16:e0:fe:88:8e:43:3a:3d:cf:5a:18:
                    06:f0:06:d5:05:84:b9:be:25:cc:d4:d2:09:05:f8:7e:
                    e6:1b:41:b1:ce:a8:be:ad:80:37:06:9b:e0:ed:ad:f3:
                    d7:12:9c:4b:8f:e8:d8:71:7c:40:b5:5f:63:91:22:cd:
                    f8:9b:cc:b6:4c:be:65:0b:d3:b4:74:aa:63:a6:a7:57:
                    76:a2:b8:c0:66:71:09:e6:0b:eb:a7:d9:b1:95:10:ab:
                    2c:cc:77:3d:4c:e5:5e:12:a2:ec:9e:a0:f8:d7:32:6e:
                    6b:12:3f:55:5f:aa:7c:b0:27:d9:35:ee:d8:29:40:dc:
                    56:79:1e:7a:61:a8:e8:b0:11:f0:94:9d:3b:72:46:99:
                    cc:70:1e:1e:96:73:91:9c:39:74:a7:37:4c:5c:c4:e0:
                    c5:ee:a1:78:8c:c3:a6:26:69:1f:41:87:a9:54:11:96:
                    39:51:05:d1:e6:c8:5b:17:8d:20:90:1c:f7:11:60:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:9f:bb:2e:a8:c6:96:b8:57:9c:c8:93:26:b5:36:7d:
        3e:e2:62:59:a2:72:00:b4:b7:f8:1b:1b:10:4a:77:e9:
        aa:98:d4:f4:08:1f:50:dc:a7:80:02:c4:74:a2:2c:cc:
        22:c7:bd:0a:cb:6d:56:bf:d7:8b:75:ed:86:00:84:9e:
        e1:72:c6:35:76:70:74:5f:16:7c:14:ae:a6:dc:c7:dd:
        46:91:c3:e2:46:93:23:19:87:4c:36:1a:0d:2a:8b:04:
        94:e9:15:af:b5:20:4f:a1:b6:df:fa:ee:6c:0d:d9:eb:
        6e:83:b9:ed:0b:3f:f0:3b:8c:97:c9:6e:8d:d2:70:c0:
        7f:dd:1d:40:a9:af:59:8b:65:d4:32:bf:5b:8e:d2:af:
        26:38:32:25:98:bf:14:d4:14:14:2b:76:34:77:bb:79:
        f4:10:34:d3:d4:a1:19:c8:00:8b:a7:28:67:67:08:77:
        7b:0c:ab:ef:bc:45:26:18:6a:97:9a:42:85:13:07:e3:
        4f:52:76:2a:bf:c6:ff:bd:d4:08:7b:41:3a:9b:55:b0:
        1c:05:52:8d:d7:49:a1:c6:4f:e9:dc:73:e8:0a:76:d8:
        a8:9e:48:e1:80:ba:0b:7a:8a:ee:20:d8:0f:4e:8a:fa:
        1a:1b:1b:46:44:1a:73:61:35:c2:2a:50:3b:06:d8:63
    Fingerprint (SHA-256):
        34:34:22:12:F6:95:07:F5:E7:18:49:78:3C:AE:EA:16:68:0A:31:3B:3C:32:6E:C6:95:18:D2:6A:05:DF:44:CB
    Fingerprint (SHA1):
        36:02:BD:40:C9:E7:11:A8:FD:61:2A:4B:30:74:FF:3C:9D:C7:44:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13364: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124426 (0x310fe1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:53 2017
            Not After : Tue Aug 23 12:44:53 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:43:94:e6:d3:3c:b8:19:83:e4:ba:3f:b9:a4:68:af:
                    54:f6:73:1a:5e:94:9b:e1:28:22:62:44:9a:a8:7a:5f:
                    8d:2a:18:6c:52:e4:51:f1:24:61:53:45:aa:7a:24:2b:
                    06:14:e0:cb:d7:0a:b1:c2:07:56:19:3b:36:f6:8c:50:
                    79:63:7b:7b:4d:df:ea:e4:4d:e8:26:55:f2:54:09:a3:
                    bc:f8:d2:3f:e1:20:cc:9e:77:6e:88:ca:24:4c:cd:e9:
                    39:3c:68:16:bb:bc:c8:a2:3b:fa:a7:37:86:cf:0b:47:
                    0a:18:2f:12:78:e5:1c:df:e7:72:ad:ef:5a:5a:6d:0d:
                    ce:f9:db:73:1d:1c:2b:6f:09:7b:5c:9e:07:0f:3c:a7:
                    c8:a1:0f:15:1b:27:ec:98:bf:84:4c:07:34:49:2a:87:
                    6a:3f:d0:15:05:72:6a:da:e9:14:d8:b3:a5:c8:16:4d:
                    d1:86:f5:f9:c9:3f:17:03:79:03:1c:ba:ef:07:47:c6:
                    45:c3:43:7c:12:a3:c5:c3:7e:89:67:30:b8:74:77:c1:
                    d4:fd:a8:51:a6:2f:8d:1b:53:74:fd:2e:b1:13:03:52:
                    02:d6:b3:86:26:d6:c8:8e:d4:e3:46:60:7a:53:63:4f:
                    79:b4:9e:71:f8:7c:7c:a1:31:8b:5b:72:86:f6:46:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:92:65:29:6d:aa:7f:6b:ca:10:64:cf:c4:b0:d9:c4:
        5e:5d:00:0b:e6:5a:06:e5:fe:de:02:26:77:fe:d6:aa:
        c1:de:4b:f1:ce:90:48:49:02:78:e7:c1:ce:6f:86:83:
        84:bd:6c:e1:bd:83:df:52:f9:cf:60:99:1f:7a:63:b7:
        8b:62:6f:81:54:bc:7b:71:eb:10:d7:c6:6c:e7:68:2d:
        9c:7f:84:3e:ed:97:d4:ae:1d:96:23:d2:5c:a9:30:07:
        9c:a3:25:62:d2:d0:67:70:6f:5a:fc:e3:05:05:a5:de:
        27:17:c3:ab:47:da:ce:7c:cc:9f:fb:e7:09:64:4e:52:
        ff:74:71:d9:95:f6:d9:23:41:e3:d1:26:ac:a9:22:03:
        3a:6b:76:bf:72:4a:7b:d0:db:c6:77:a4:d5:e8:50:12:
        77:d6:5c:4f:49:ef:1d:ae:be:fb:e3:4f:5e:64:5a:71:
        4d:0f:4e:31:a8:db:70:3e:a6:c9:db:07:b5:25:60:6f:
        df:12:4d:81:d8:c7:53:ba:39:b7:69:74:de:13:99:aa:
        b5:42:25:27:7f:fb:93:eb:6c:40:bc:95:3f:67:8a:a6:
        5b:05:48:7a:74:36:0a:bf:63:50:84:15:6b:32:ac:63:
        7b:a0:4e:20:91:61:40:85:99:c6:79:7d:a2:c7:cf:27
    Fingerprint (SHA-256):
        79:08:46:CA:D7:63:33:AA:FB:F0:7F:1A:54:8B:E6:F6:3F:0B:D0:C2:0A:56:8C:B6:43:CA:D8:A8:B4:B8:6A:CF
    Fingerprint (SHA1):
        7A:DE:1E:DE:A4:20:85:F9:83:94:03:AC:02:C9:62:27:BF:B9:D0:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13365: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13366: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #13367: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #13368: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124426 (0x310fe1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:53 2017
            Not After : Tue Aug 23 12:44:53 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:43:94:e6:d3:3c:b8:19:83:e4:ba:3f:b9:a4:68:af:
                    54:f6:73:1a:5e:94:9b:e1:28:22:62:44:9a:a8:7a:5f:
                    8d:2a:18:6c:52:e4:51:f1:24:61:53:45:aa:7a:24:2b:
                    06:14:e0:cb:d7:0a:b1:c2:07:56:19:3b:36:f6:8c:50:
                    79:63:7b:7b:4d:df:ea:e4:4d:e8:26:55:f2:54:09:a3:
                    bc:f8:d2:3f:e1:20:cc:9e:77:6e:88:ca:24:4c:cd:e9:
                    39:3c:68:16:bb:bc:c8:a2:3b:fa:a7:37:86:cf:0b:47:
                    0a:18:2f:12:78:e5:1c:df:e7:72:ad:ef:5a:5a:6d:0d:
                    ce:f9:db:73:1d:1c:2b:6f:09:7b:5c:9e:07:0f:3c:a7:
                    c8:a1:0f:15:1b:27:ec:98:bf:84:4c:07:34:49:2a:87:
                    6a:3f:d0:15:05:72:6a:da:e9:14:d8:b3:a5:c8:16:4d:
                    d1:86:f5:f9:c9:3f:17:03:79:03:1c:ba:ef:07:47:c6:
                    45:c3:43:7c:12:a3:c5:c3:7e:89:67:30:b8:74:77:c1:
                    d4:fd:a8:51:a6:2f:8d:1b:53:74:fd:2e:b1:13:03:52:
                    02:d6:b3:86:26:d6:c8:8e:d4:e3:46:60:7a:53:63:4f:
                    79:b4:9e:71:f8:7c:7c:a1:31:8b:5b:72:86:f6:46:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:92:65:29:6d:aa:7f:6b:ca:10:64:cf:c4:b0:d9:c4:
        5e:5d:00:0b:e6:5a:06:e5:fe:de:02:26:77:fe:d6:aa:
        c1:de:4b:f1:ce:90:48:49:02:78:e7:c1:ce:6f:86:83:
        84:bd:6c:e1:bd:83:df:52:f9:cf:60:99:1f:7a:63:b7:
        8b:62:6f:81:54:bc:7b:71:eb:10:d7:c6:6c:e7:68:2d:
        9c:7f:84:3e:ed:97:d4:ae:1d:96:23:d2:5c:a9:30:07:
        9c:a3:25:62:d2:d0:67:70:6f:5a:fc:e3:05:05:a5:de:
        27:17:c3:ab:47:da:ce:7c:cc:9f:fb:e7:09:64:4e:52:
        ff:74:71:d9:95:f6:d9:23:41:e3:d1:26:ac:a9:22:03:
        3a:6b:76:bf:72:4a:7b:d0:db:c6:77:a4:d5:e8:50:12:
        77:d6:5c:4f:49:ef:1d:ae:be:fb:e3:4f:5e:64:5a:71:
        4d:0f:4e:31:a8:db:70:3e:a6:c9:db:07:b5:25:60:6f:
        df:12:4d:81:d8:c7:53:ba:39:b7:69:74:de:13:99:aa:
        b5:42:25:27:7f:fb:93:eb:6c:40:bc:95:3f:67:8a:a6:
        5b:05:48:7a:74:36:0a:bf:63:50:84:15:6b:32:ac:63:
        7b:a0:4e:20:91:61:40:85:99:c6:79:7d:a2:c7:cf:27
    Fingerprint (SHA-256):
        79:08:46:CA:D7:63:33:AA:FB:F0:7F:1A:54:8B:E6:F6:3F:0B:D0:C2:0A:56:8C:B6:43:CA:D8:A8:B4:B8:6A:CF
    Fingerprint (SHA1):
        7A:DE:1E:DE:A4:20:85:F9:83:94:03:AC:02:C9:62:27:BF:B9:D0:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13369: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124427 (0x310fe1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:54 2017
            Not After : Tue Aug 23 12:44:54 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:7e:70:c3:1b:c1:78:12:4e:c0:98:8f:4d:f5:72:3e:
                    b0:ab:cf:5b:c8:58:61:34:f9:34:79:91:a7:08:ed:13:
                    14:29:66:dd:1a:f0:2d:77:6e:0e:0c:c0:24:4b:54:5e:
                    1c:88:20:1c:fb:98:91:1b:4e:44:2b:55:7e:bb:23:5d:
                    df:22:5e:12:d6:16:e0:fe:88:8e:43:3a:3d:cf:5a:18:
                    06:f0:06:d5:05:84:b9:be:25:cc:d4:d2:09:05:f8:7e:
                    e6:1b:41:b1:ce:a8:be:ad:80:37:06:9b:e0:ed:ad:f3:
                    d7:12:9c:4b:8f:e8:d8:71:7c:40:b5:5f:63:91:22:cd:
                    f8:9b:cc:b6:4c:be:65:0b:d3:b4:74:aa:63:a6:a7:57:
                    76:a2:b8:c0:66:71:09:e6:0b:eb:a7:d9:b1:95:10:ab:
                    2c:cc:77:3d:4c:e5:5e:12:a2:ec:9e:a0:f8:d7:32:6e:
                    6b:12:3f:55:5f:aa:7c:b0:27:d9:35:ee:d8:29:40:dc:
                    56:79:1e:7a:61:a8:e8:b0:11:f0:94:9d:3b:72:46:99:
                    cc:70:1e:1e:96:73:91:9c:39:74:a7:37:4c:5c:c4:e0:
                    c5:ee:a1:78:8c:c3:a6:26:69:1f:41:87:a9:54:11:96:
                    39:51:05:d1:e6:c8:5b:17:8d:20:90:1c:f7:11:60:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:9f:bb:2e:a8:c6:96:b8:57:9c:c8:93:26:b5:36:7d:
        3e:e2:62:59:a2:72:00:b4:b7:f8:1b:1b:10:4a:77:e9:
        aa:98:d4:f4:08:1f:50:dc:a7:80:02:c4:74:a2:2c:cc:
        22:c7:bd:0a:cb:6d:56:bf:d7:8b:75:ed:86:00:84:9e:
        e1:72:c6:35:76:70:74:5f:16:7c:14:ae:a6:dc:c7:dd:
        46:91:c3:e2:46:93:23:19:87:4c:36:1a:0d:2a:8b:04:
        94:e9:15:af:b5:20:4f:a1:b6:df:fa:ee:6c:0d:d9:eb:
        6e:83:b9:ed:0b:3f:f0:3b:8c:97:c9:6e:8d:d2:70:c0:
        7f:dd:1d:40:a9:af:59:8b:65:d4:32:bf:5b:8e:d2:af:
        26:38:32:25:98:bf:14:d4:14:14:2b:76:34:77:bb:79:
        f4:10:34:d3:d4:a1:19:c8:00:8b:a7:28:67:67:08:77:
        7b:0c:ab:ef:bc:45:26:18:6a:97:9a:42:85:13:07:e3:
        4f:52:76:2a:bf:c6:ff:bd:d4:08:7b:41:3a:9b:55:b0:
        1c:05:52:8d:d7:49:a1:c6:4f:e9:dc:73:e8:0a:76:d8:
        a8:9e:48:e1:80:ba:0b:7a:8a:ee:20:d8:0f:4e:8a:fa:
        1a:1b:1b:46:44:1a:73:61:35:c2:2a:50:3b:06:d8:63
    Fingerprint (SHA-256):
        34:34:22:12:F6:95:07:F5:E7:18:49:78:3C:AE:EA:16:68:0A:31:3B:3C:32:6E:C6:95:18:D2:6A:05:DF:44:CB
    Fingerprint (SHA1):
        36:02:BD:40:C9:E7:11:A8:FD:61:2A:4B:30:74:FF:3C:9D:C7:44:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13370: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #13371: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #13372: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13373: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13374: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13375: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124427 (0x310fe1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:54 2017
            Not After : Tue Aug 23 12:44:54 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:7e:70:c3:1b:c1:78:12:4e:c0:98:8f:4d:f5:72:3e:
                    b0:ab:cf:5b:c8:58:61:34:f9:34:79:91:a7:08:ed:13:
                    14:29:66:dd:1a:f0:2d:77:6e:0e:0c:c0:24:4b:54:5e:
                    1c:88:20:1c:fb:98:91:1b:4e:44:2b:55:7e:bb:23:5d:
                    df:22:5e:12:d6:16:e0:fe:88:8e:43:3a:3d:cf:5a:18:
                    06:f0:06:d5:05:84:b9:be:25:cc:d4:d2:09:05:f8:7e:
                    e6:1b:41:b1:ce:a8:be:ad:80:37:06:9b:e0:ed:ad:f3:
                    d7:12:9c:4b:8f:e8:d8:71:7c:40:b5:5f:63:91:22:cd:
                    f8:9b:cc:b6:4c:be:65:0b:d3:b4:74:aa:63:a6:a7:57:
                    76:a2:b8:c0:66:71:09:e6:0b:eb:a7:d9:b1:95:10:ab:
                    2c:cc:77:3d:4c:e5:5e:12:a2:ec:9e:a0:f8:d7:32:6e:
                    6b:12:3f:55:5f:aa:7c:b0:27:d9:35:ee:d8:29:40:dc:
                    56:79:1e:7a:61:a8:e8:b0:11:f0:94:9d:3b:72:46:99:
                    cc:70:1e:1e:96:73:91:9c:39:74:a7:37:4c:5c:c4:e0:
                    c5:ee:a1:78:8c:c3:a6:26:69:1f:41:87:a9:54:11:96:
                    39:51:05:d1:e6:c8:5b:17:8d:20:90:1c:f7:11:60:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:9f:bb:2e:a8:c6:96:b8:57:9c:c8:93:26:b5:36:7d:
        3e:e2:62:59:a2:72:00:b4:b7:f8:1b:1b:10:4a:77:e9:
        aa:98:d4:f4:08:1f:50:dc:a7:80:02:c4:74:a2:2c:cc:
        22:c7:bd:0a:cb:6d:56:bf:d7:8b:75:ed:86:00:84:9e:
        e1:72:c6:35:76:70:74:5f:16:7c:14:ae:a6:dc:c7:dd:
        46:91:c3:e2:46:93:23:19:87:4c:36:1a:0d:2a:8b:04:
        94:e9:15:af:b5:20:4f:a1:b6:df:fa:ee:6c:0d:d9:eb:
        6e:83:b9:ed:0b:3f:f0:3b:8c:97:c9:6e:8d:d2:70:c0:
        7f:dd:1d:40:a9:af:59:8b:65:d4:32:bf:5b:8e:d2:af:
        26:38:32:25:98:bf:14:d4:14:14:2b:76:34:77:bb:79:
        f4:10:34:d3:d4:a1:19:c8:00:8b:a7:28:67:67:08:77:
        7b:0c:ab:ef:bc:45:26:18:6a:97:9a:42:85:13:07:e3:
        4f:52:76:2a:bf:c6:ff:bd:d4:08:7b:41:3a:9b:55:b0:
        1c:05:52:8d:d7:49:a1:c6:4f:e9:dc:73:e8:0a:76:d8:
        a8:9e:48:e1:80:ba:0b:7a:8a:ee:20:d8:0f:4e:8a:fa:
        1a:1b:1b:46:44:1a:73:61:35:c2:2a:50:3b:06:d8:63
    Fingerprint (SHA-256):
        34:34:22:12:F6:95:07:F5:E7:18:49:78:3C:AE:EA:16:68:0A:31:3B:3C:32:6E:C6:95:18:D2:6A:05:DF:44:CB
    Fingerprint (SHA1):
        36:02:BD:40:C9:E7:11:A8:FD:61:2A:4B:30:74:FF:3C:9D:C7:44:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13376: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124427 (0x310fe1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:54 2017
            Not After : Tue Aug 23 12:44:54 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:7e:70:c3:1b:c1:78:12:4e:c0:98:8f:4d:f5:72:3e:
                    b0:ab:cf:5b:c8:58:61:34:f9:34:79:91:a7:08:ed:13:
                    14:29:66:dd:1a:f0:2d:77:6e:0e:0c:c0:24:4b:54:5e:
                    1c:88:20:1c:fb:98:91:1b:4e:44:2b:55:7e:bb:23:5d:
                    df:22:5e:12:d6:16:e0:fe:88:8e:43:3a:3d:cf:5a:18:
                    06:f0:06:d5:05:84:b9:be:25:cc:d4:d2:09:05:f8:7e:
                    e6:1b:41:b1:ce:a8:be:ad:80:37:06:9b:e0:ed:ad:f3:
                    d7:12:9c:4b:8f:e8:d8:71:7c:40:b5:5f:63:91:22:cd:
                    f8:9b:cc:b6:4c:be:65:0b:d3:b4:74:aa:63:a6:a7:57:
                    76:a2:b8:c0:66:71:09:e6:0b:eb:a7:d9:b1:95:10:ab:
                    2c:cc:77:3d:4c:e5:5e:12:a2:ec:9e:a0:f8:d7:32:6e:
                    6b:12:3f:55:5f:aa:7c:b0:27:d9:35:ee:d8:29:40:dc:
                    56:79:1e:7a:61:a8:e8:b0:11:f0:94:9d:3b:72:46:99:
                    cc:70:1e:1e:96:73:91:9c:39:74:a7:37:4c:5c:c4:e0:
                    c5:ee:a1:78:8c:c3:a6:26:69:1f:41:87:a9:54:11:96:
                    39:51:05:d1:e6:c8:5b:17:8d:20:90:1c:f7:11:60:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:9f:bb:2e:a8:c6:96:b8:57:9c:c8:93:26:b5:36:7d:
        3e:e2:62:59:a2:72:00:b4:b7:f8:1b:1b:10:4a:77:e9:
        aa:98:d4:f4:08:1f:50:dc:a7:80:02:c4:74:a2:2c:cc:
        22:c7:bd:0a:cb:6d:56:bf:d7:8b:75:ed:86:00:84:9e:
        e1:72:c6:35:76:70:74:5f:16:7c:14:ae:a6:dc:c7:dd:
        46:91:c3:e2:46:93:23:19:87:4c:36:1a:0d:2a:8b:04:
        94:e9:15:af:b5:20:4f:a1:b6:df:fa:ee:6c:0d:d9:eb:
        6e:83:b9:ed:0b:3f:f0:3b:8c:97:c9:6e:8d:d2:70:c0:
        7f:dd:1d:40:a9:af:59:8b:65:d4:32:bf:5b:8e:d2:af:
        26:38:32:25:98:bf:14:d4:14:14:2b:76:34:77:bb:79:
        f4:10:34:d3:d4:a1:19:c8:00:8b:a7:28:67:67:08:77:
        7b:0c:ab:ef:bc:45:26:18:6a:97:9a:42:85:13:07:e3:
        4f:52:76:2a:bf:c6:ff:bd:d4:08:7b:41:3a:9b:55:b0:
        1c:05:52:8d:d7:49:a1:c6:4f:e9:dc:73:e8:0a:76:d8:
        a8:9e:48:e1:80:ba:0b:7a:8a:ee:20:d8:0f:4e:8a:fa:
        1a:1b:1b:46:44:1a:73:61:35:c2:2a:50:3b:06:d8:63
    Fingerprint (SHA-256):
        34:34:22:12:F6:95:07:F5:E7:18:49:78:3C:AE:EA:16:68:0A:31:3B:3C:32:6E:C6:95:18:D2:6A:05:DF:44:CB
    Fingerprint (SHA1):
        36:02:BD:40:C9:E7:11:A8:FD:61:2A:4B:30:74:FF:3C:9D:C7:44:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13377: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #13378: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #13379: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13380: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #13381: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #13382: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124426 (0x310fe1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:53 2017
            Not After : Tue Aug 23 12:44:53 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:43:94:e6:d3:3c:b8:19:83:e4:ba:3f:b9:a4:68:af:
                    54:f6:73:1a:5e:94:9b:e1:28:22:62:44:9a:a8:7a:5f:
                    8d:2a:18:6c:52:e4:51:f1:24:61:53:45:aa:7a:24:2b:
                    06:14:e0:cb:d7:0a:b1:c2:07:56:19:3b:36:f6:8c:50:
                    79:63:7b:7b:4d:df:ea:e4:4d:e8:26:55:f2:54:09:a3:
                    bc:f8:d2:3f:e1:20:cc:9e:77:6e:88:ca:24:4c:cd:e9:
                    39:3c:68:16:bb:bc:c8:a2:3b:fa:a7:37:86:cf:0b:47:
                    0a:18:2f:12:78:e5:1c:df:e7:72:ad:ef:5a:5a:6d:0d:
                    ce:f9:db:73:1d:1c:2b:6f:09:7b:5c:9e:07:0f:3c:a7:
                    c8:a1:0f:15:1b:27:ec:98:bf:84:4c:07:34:49:2a:87:
                    6a:3f:d0:15:05:72:6a:da:e9:14:d8:b3:a5:c8:16:4d:
                    d1:86:f5:f9:c9:3f:17:03:79:03:1c:ba:ef:07:47:c6:
                    45:c3:43:7c:12:a3:c5:c3:7e:89:67:30:b8:74:77:c1:
                    d4:fd:a8:51:a6:2f:8d:1b:53:74:fd:2e:b1:13:03:52:
                    02:d6:b3:86:26:d6:c8:8e:d4:e3:46:60:7a:53:63:4f:
                    79:b4:9e:71:f8:7c:7c:a1:31:8b:5b:72:86:f6:46:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:92:65:29:6d:aa:7f:6b:ca:10:64:cf:c4:b0:d9:c4:
        5e:5d:00:0b:e6:5a:06:e5:fe:de:02:26:77:fe:d6:aa:
        c1:de:4b:f1:ce:90:48:49:02:78:e7:c1:ce:6f:86:83:
        84:bd:6c:e1:bd:83:df:52:f9:cf:60:99:1f:7a:63:b7:
        8b:62:6f:81:54:bc:7b:71:eb:10:d7:c6:6c:e7:68:2d:
        9c:7f:84:3e:ed:97:d4:ae:1d:96:23:d2:5c:a9:30:07:
        9c:a3:25:62:d2:d0:67:70:6f:5a:fc:e3:05:05:a5:de:
        27:17:c3:ab:47:da:ce:7c:cc:9f:fb:e7:09:64:4e:52:
        ff:74:71:d9:95:f6:d9:23:41:e3:d1:26:ac:a9:22:03:
        3a:6b:76:bf:72:4a:7b:d0:db:c6:77:a4:d5:e8:50:12:
        77:d6:5c:4f:49:ef:1d:ae:be:fb:e3:4f:5e:64:5a:71:
        4d:0f:4e:31:a8:db:70:3e:a6:c9:db:07:b5:25:60:6f:
        df:12:4d:81:d8:c7:53:ba:39:b7:69:74:de:13:99:aa:
        b5:42:25:27:7f:fb:93:eb:6c:40:bc:95:3f:67:8a:a6:
        5b:05:48:7a:74:36:0a:bf:63:50:84:15:6b:32:ac:63:
        7b:a0:4e:20:91:61:40:85:99:c6:79:7d:a2:c7:cf:27
    Fingerprint (SHA-256):
        79:08:46:CA:D7:63:33:AA:FB:F0:7F:1A:54:8B:E6:F6:3F:0B:D0:C2:0A:56:8C:B6:43:CA:D8:A8:B4:B8:6A:CF
    Fingerprint (SHA1):
        7A:DE:1E:DE:A4:20:85:F9:83:94:03:AC:02:C9:62:27:BF:B9:D0:50
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13383: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124426 (0x310fe1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:44:53 2017
            Not After : Tue Aug 23 12:44:53 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:43:94:e6:d3:3c:b8:19:83:e4:ba:3f:b9:a4:68:af:
                    54:f6:73:1a:5e:94:9b:e1:28:22:62:44:9a:a8:7a:5f:
                    8d:2a:18:6c:52:e4:51:f1:24:61:53:45:aa:7a:24:2b:
                    06:14:e0:cb:d7:0a:b1:c2:07:56:19:3b:36:f6:8c:50:
                    79:63:7b:7b:4d:df:ea:e4:4d:e8:26:55:f2:54:09:a3:
                    bc:f8:d2:3f:e1:20:cc:9e:77:6e:88:ca:24:4c:cd:e9:
                    39:3c:68:16:bb:bc:c8:a2:3b:fa:a7:37:86:cf:0b:47:
                    0a:18:2f:12:78:e5:1c:df:e7:72:ad:ef:5a:5a:6d:0d:
                    ce:f9:db:73:1d:1c:2b:6f:09:7b:5c:9e:07:0f:3c:a7:
                    c8:a1:0f:15:1b:27:ec:98:bf:84:4c:07:34:49:2a:87:
                    6a:3f:d0:15:05:72:6a:da:e9:14:d8:b3:a5:c8:16:4d:
                    d1:86:f5:f9:c9:3f:17:03:79:03:1c:ba:ef:07:47:c6:
                    45:c3:43:7c:12:a3:c5:c3:7e:89:67:30:b8:74:77:c1:
                    d4:fd:a8:51:a6:2f:8d:1b:53:74:fd:2e:b1:13:03:52:
                    02:d6:b3:86:26:d6:c8:8e:d4:e3:46:60:7a:53:63:4f:
                    79:b4:9e:71:f8:7c:7c:a1:31:8b:5b:72:86:f6:46:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:92:65:29:6d:aa:7f:6b:ca:10:64:cf:c4:b0:d9:c4:
        5e:5d:00:0b:e6:5a:06:e5:fe:de:02:26:77:fe:d6:aa:
        c1:de:4b:f1:ce:90:48:49:02:78:e7:c1:ce:6f:86:83:
        84:bd:6c:e1:bd:83:df:52:f9:cf:60:99:1f:7a:63:b7:
        8b:62:6f:81:54:bc:7b:71:eb:10:d7:c6:6c:e7:68:2d:
        9c:7f:84:3e:ed:97:d4:ae:1d:96:23:d2:5c:a9:30:07:
        9c:a3:25:62:d2:d0:67:70:6f:5a:fc:e3:05:05:a5:de:
        27:17:c3:ab:47:da:ce:7c:cc:9f:fb:e7:09:64:4e:52:
        ff:74:71:d9:95:f6:d9:23:41:e3:d1:26:ac:a9:22:03:
        3a:6b:76:bf:72:4a:7b:d0:db:c6:77:a4:d5:e8:50:12:
        77:d6:5c:4f:49:ef:1d:ae:be:fb:e3:4f:5e:64:5a:71:
        4d:0f:4e:31:a8:db:70:3e:a6:c9:db:07:b5:25:60:6f:
        df:12:4d:81:d8:c7:53:ba:39:b7:69:74:de:13:99:aa:
        b5:42:25:27:7f:fb:93:eb:6c:40:bc:95:3f:67:8a:a6:
        5b:05:48:7a:74:36:0a:bf:63:50:84:15:6b:32:ac:63:
        7b:a0:4e:20:91:61:40:85:99:c6:79:7d:a2:c7:cf:27
    Fingerprint (SHA-256):
        79:08:46:CA:D7:63:33:AA:FB:F0:7F:1A:54:8B:E6:F6:3F:0B:D0:C2:0A:56:8C:B6:43:CA:D8:A8:B4:B8:6A:CF
    Fingerprint (SHA1):
        7A:DE:1E:DE:A4:20:85:F9:83:94:03:AC:02:C9:62:27:BF:B9:D0:50
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13384: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #13385: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124431 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13386: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #13387: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #13388: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124432 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13389: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #13390: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #13391: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124433 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13392: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #13393: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #13394: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124434 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13395: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #13396: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #13397: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124435 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13398: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #13399: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #13400: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124436 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13401: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #13402: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #13403: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124437 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13404: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #13405: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #13406: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124438 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13407: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #13408: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #13409: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124439 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13410: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #13411: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #13412: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13413: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 823124440 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13414: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13415: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 823124441 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13416: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13417: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 823124442 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13418: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13419: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #13420: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #13421: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13422: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 823124443 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13423: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13424: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 823124444 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13425: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13426: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 823124445 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13427: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13428: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #13429: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #13430: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13431: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 823124446 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13432: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13433: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 823124447 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13434: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13435: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 823124448 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13436: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13437: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #13438: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #13439: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13440: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 823124449 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13441: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13442: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 823124450 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13443: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13444: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 823124451 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13445: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13446: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #13447: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13448: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13449: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 823124452   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13450: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13451: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13452: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13453: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124453   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13454: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13455: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124431 (0x310fe1cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:00 2017
            Not After : Tue Aug 23 12:45:00 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:a2:3a:19:de:f3:c2:ca:5c:ab:99:f1:4c:7b:d9:d5:
                    3c:d3:f6:cc:94:d2:81:1d:82:cb:94:6a:94:2e:59:02:
                    65:c8:28:b7:28:11:0a:a9:45:c7:02:98:f7:75:a7:d9:
                    11:9c:6c:8b:4a:6e:ec:63:39:b3:5e:a0:59:ab:48:7c:
                    48:b8:15:c0:06:fe:0c:cb:2d:3e:53:9a:4c:53:c9:c9:
                    f5:16:4d:21:8a:19:b1:0b:4c:8a:84:d2:73:f5:1d:be:
                    57:e5:94:56:94:ed:41:cb:06:a1:f8:89:e1:cb:7b:76:
                    bd:a6:d0:ed:56:85:63:45:b1:81:03:d4:4e:ae:43:8d:
                    f7:35:f8:7c:5b:55:41:81:7c:5f:1d:70:38:6b:12:43:
                    91:75:03:95:53:f0:b0:27:e3:19:52:0e:85:f7:83:05:
                    50:98:f3:e5:75:ac:cf:3e:d0:d1:3d:5b:a5:39:e1:f9:
                    ad:61:51:5a:e6:65:ca:02:d5:6a:e5:59:3a:f7:76:0c:
                    04:00:c2:cf:d8:0d:42:8c:1d:f5:2e:6b:6e:3e:be:57:
                    36:27:41:8b:3b:a2:cf:25:23:16:51:36:b1:48:83:0b:
                    d0:db:52:c3:41:ab:47:7d:8a:87:7a:3e:90:ef:59:60:
                    5d:6a:72:ae:7e:74:41:03:e3:41:d7:24:41:fa:e9:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:ca:15:0c:57:1d:4b:fe:cd:71:f9:46:91:b2:03:08:
        19:2b:df:2d:a5:46:9d:f9:a9:25:8a:88:9d:62:6f:db:
        09:b3:9e:17:6f:25:3a:4c:5b:84:82:2b:50:e5:c2:48:
        ab:71:03:b2:26:0c:b3:76:56:91:85:54:e4:a6:87:ff:
        71:93:11:f1:8e:77:3f:38:50:63:3f:40:f8:85:0e:5d:
        f2:03:a8:f2:69:4d:e5:a3:9c:6e:4d:de:b4:fd:ce:b9:
        e8:1a:82:0f:ef:29:b5:e7:df:3e:f2:94:a4:e2:84:fd:
        81:8f:b2:c8:f2:c1:19:88:2a:ca:6b:82:6e:02:36:1c:
        00:f6:e3:df:ca:37:a1:3a:f1:75:1d:ee:87:63:59:dd:
        02:55:de:87:78:82:2a:f9:13:49:52:0e:99:99:81:f8:
        89:3a:ca:78:09:42:87:08:bf:64:3e:a0:92:d0:8e:62:
        55:50:ac:82:cf:6d:ec:83:9e:22:0a:df:b4:63:9b:ab:
        6e:5a:f7:1f:00:6c:df:0a:e9:46:6b:07:d4:39:4e:36:
        23:d9:c5:e4:f8:a4:3d:83:7d:c3:96:33:5e:af:1e:78:
        96:1c:64:17:89:53:58:38:ae:d3:8b:0f:d8:f5:d6:2a:
        ba:07:a7:31:2a:b9:1e:76:53:c1:31:9a:4a:93:27:ad
    Fingerprint (SHA-256):
        41:A9:64:24:AC:EE:6E:EF:F9:56:12:66:D3:18:63:54:FE:BF:62:56:CF:F7:5F:7D:A9:0D:95:95:88:91:D9:AD
    Fingerprint (SHA1):
        5E:19:DD:CA:9E:6F:8E:1D:04:EB:20:2E:8E:CB:E3:D5:7E:06:C7:C3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13456: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124432 (0x310fe1d0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:01 2017
            Not After : Tue Aug 23 12:45:01 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:d5:38:73:4e:49:8f:6f:48:54:ff:e7:e1:ea:f7:09:
                    b5:e2:8f:5a:e5:b9:23:52:aa:1c:a1:11:80:da:cb:58:
                    e8:01:55:0e:5c:b3:48:81:85:03:7f:2f:21:04:c0:48:
                    4f:e4:8b:80:21:d4:08:8b:7a:6d:ea:f3:53:f7:62:8b:
                    d7:69:4a:2e:b5:b6:a5:6d:66:4c:37:f9:7c:f9:95:12:
                    e5:42:15:c5:68:0b:98:29:64:bc:13:20:f9:d8:2c:cf:
                    dd:21:71:81:93:29:05:41:ec:04:22:46:2b:f8:28:1f:
                    70:da:be:ce:de:b1:ef:32:f9:35:ef:28:e0:39:bd:73:
                    25:37:43:bb:e3:77:01:cb:1e:15:1d:14:64:0d:b6:b0:
                    df:dc:0d:4a:1f:23:9e:be:72:56:ca:fe:5b:8f:33:b6:
                    c4:b9:92:c0:dd:3b:2d:05:46:ca:d9:7e:fb:f8:9e:63:
                    82:5a:73:59:f8:50:59:47:10:17:2b:c8:be:93:0e:ac:
                    4d:f7:9f:35:1a:ea:5f:2c:cc:0d:c7:13:8e:46:5e:a1:
                    70:bf:c5:9a:58:35:d1:6e:bf:18:27:d0:2b:87:7d:e5:
                    34:7d:80:d3:6f:5e:f2:74:ce:1a:54:07:62:20:4e:44:
                    76:6e:41:3c:21:2b:6a:f5:84:fe:91:c9:0c:39:f8:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:dd:33:9d:37:3b:7a:85:bc:80:46:af:c5:53:80:10:
        e7:b8:61:99:f7:a5:fc:9e:14:26:fa:4b:b0:b5:6f:98:
        4e:9f:ea:db:84:df:85:60:81:fe:11:22:7a:55:8b:45:
        46:9d:8d:06:81:d3:5d:20:ea:2b:8b:9c:db:a0:e8:97:
        aa:68:26:a0:54:06:b0:69:85:f8:c3:37:8f:84:06:c5:
        2e:a9:b2:ad:07:34:e1:27:fc:18:bf:c3:80:f0:06:dc:
        63:99:09:75:b2:5f:3b:10:47:66:c5:a3:8d:6d:3e:a1:
        f5:a6:f4:be:f7:f2:f9:f0:ca:47:70:46:21:3a:f8:e0:
        0a:f0:ba:c9:c0:08:9a:21:e3:5f:0b:0a:af:bb:68:f9:
        5d:09:35:fa:7e:7a:9b:11:f0:3b:06:2b:61:8c:c6:29:
        8c:c5:e8:c1:57:da:86:7d:ca:8a:b6:de:89:63:21:a6:
        1f:00:10:a8:3c:be:fc:58:bc:29:23:83:4e:96:31:3c:
        c9:e5:e2:6d:fe:44:a1:b9:24:bd:20:d2:02:54:75:87:
        09:65:54:7e:64:23:6a:5e:ae:a0:f7:f6:86:2b:1a:d9:
        4b:c4:12:2b:db:dc:74:6b:2e:ca:d0:bb:ec:c7:a4:0e:
        df:07:fb:a0:10:a5:72:f9:7e:bd:dd:79:53:50:45:a1
    Fingerprint (SHA-256):
        76:F1:16:F9:97:5D:B8:1B:8F:DC:5A:33:14:B8:13:B2:89:C3:49:1C:2F:6D:05:65:04:24:AE:22:E4:93:4F:91
    Fingerprint (SHA1):
        E3:6D:9C:D3:6A:97:B2:4C:F2:46:1C:EC:E9:E4:F0:12:94:79:EB:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13457: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124433 (0x310fe1d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:02 2017
            Not After : Tue Aug 23 12:45:02 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:19:cf:6e:be:48:36:40:9c:d7:a0:28:7b:19:52:2a:
                    16:13:32:c1:6c:12:64:b7:24:01:a5:1b:cd:08:70:d6:
                    da:ba:ad:2c:f0:04:2a:92:ca:22:b9:f1:16:24:28:60:
                    d1:09:88:73:10:cb:f1:75:2a:9a:1c:d9:a9:cb:4a:d6:
                    fe:91:00:d2:8b:46:89:d1:69:34:c5:cd:ac:1d:38:9f:
                    be:93:c6:67:91:b1:e1:e1:32:b8:fb:9c:bb:8c:71:55:
                    92:c5:bc:31:ce:19:3a:74:a4:79:dd:ec:33:c3:16:eb:
                    cc:04:63:db:52:cd:6d:dc:57:f2:21:09:06:52:8a:f5:
                    0b:5b:a3:50:5c:3e:d4:96:4b:71:1c:2c:ea:f8:3e:79:
                    30:f7:df:1e:fc:4e:c0:cd:74:a7:70:4c:0a:bf:36:7a:
                    53:e0:30:57:66:22:f5:79:ea:95:19:d4:4d:6f:3c:ad:
                    0f:34:93:e1:58:b5:1d:db:69:c4:49:25:aa:9f:05:0e:
                    06:31:c5:0f:26:69:ad:d4:31:cc:1b:e2:eb:ff:1a:36:
                    00:17:3f:26:63:2e:df:84:5f:66:90:4c:c9:83:f9:1f:
                    c8:35:0a:ab:4c:81:79:15:c3:0a:f0:35:8a:2c:df:20:
                    28:3c:b5:fc:7b:6d:6a:2c:22:60:6b:0b:89:17:ac:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:fa:d1:5c:50:f1:8f:cb:0e:ad:2a:63:69:29:03:4d:
        a0:8d:1e:23:ce:c2:42:69:7c:c6:56:50:f1:d3:9a:0e:
        f3:76:0c:07:90:3d:1c:cc:eb:cf:57:b6:f4:6d:b6:5a:
        10:f8:73:9d:c9:01:c4:a6:5c:7b:73:c0:cb:c4:aa:30:
        ae:d4:72:85:6f:8c:99:b5:bc:b7:78:2f:59:3f:07:46:
        31:19:e2:d8:c2:21:2e:27:bf:23:69:fa:00:da:1e:54:
        bd:32:44:69:04:8e:de:46:16:75:7b:14:e5:f7:a6:75:
        79:a3:45:65:dc:e8:d3:93:7c:de:b1:c7:da:81:cd:f0:
        48:42:d7:a6:b8:e4:e8:d2:f1:e6:d2:45:a0:6b:24:96:
        e7:a3:b4:50:b0:76:88:6b:5d:ef:26:ba:c8:12:cc:2d:
        e3:ce:8b:76:37:49:08:4d:54:14:fe:7e:94:f2:52:fd:
        d9:8b:dd:5c:20:4e:e1:a1:cb:c7:55:9b:45:85:f3:ea:
        aa:9c:8b:e1:00:a1:04:fb:d9:5d:e4:44:ed:5d:6b:84:
        ae:e0:b3:41:ac:d7:f8:c8:b1:04:70:fd:29:8e:cd:61:
        d3:3e:92:8d:6f:9d:60:ea:45:32:00:f2:79:54:67:3b:
        b7:6d:70:40:06:90:ac:63:01:f7:2e:98:04:a6:bf:6d
    Fingerprint (SHA-256):
        EF:A3:A7:75:D7:11:D9:5B:9D:1E:2A:17:64:EA:5B:8F:02:96:3A:15:71:E1:93:55:33:21:14:F2:A7:63:0C:30
    Fingerprint (SHA1):
        CB:B4:6C:22:23:3F:11:5E:91:4A:80:DB:F7:41:85:B8:EF:6E:F6:4C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13458: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124434 (0x310fe1d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:03 2017
            Not After : Tue Aug 23 12:45:03 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:8d:e1:43:6a:d9:ba:ec:01:39:25:9c:0b:11:fb:ba:
                    2f:14:58:75:0d:ce:fa:05:6a:d6:96:a7:80:d6:85:cc:
                    30:f8:b1:10:df:af:41:56:d4:88:9e:68:34:8a:5a:ee:
                    13:8d:0a:95:dc:00:ec:d7:67:d9:44:c4:35:1b:ff:4a:
                    65:e6:07:c7:b3:de:86:97:a2:12:1d:98:f5:42:c5:38:
                    a5:0f:47:13:90:b7:f0:e3:04:70:0b:da:43:a8:3e:80:
                    2c:c8:8b:05:f3:52:d8:68:e1:3d:c7:e4:72:e7:d7:a6:
                    fd:cc:b2:2b:62:38:ac:7a:0e:ef:85:d7:ea:9f:08:4b:
                    06:b7:86:40:50:06:eb:26:27:18:37:62:0b:f9:0e:fa:
                    c1:49:ca:8d:ba:88:68:d6:c1:a9:a3:81:3d:1a:a6:d8:
                    eb:ab:b6:6a:c5:eb:09:dd:3c:1f:ca:9f:de:24:b4:03:
                    75:45:16:65:19:57:5e:e6:97:4b:db:e2:fc:be:49:81:
                    d3:c6:8c:f8:37:03:33:d0:4f:56:00:2c:66:d7:60:4e:
                    67:75:67:f4:0d:fd:95:a9:5a:9e:b3:e9:29:6f:d6:7a:
                    7d:0f:87:9f:b3:e4:69:ba:c9:81:34:49:0b:30:32:3e:
                    13:37:c0:31:39:83:15:41:e7:8d:ab:20:11:1f:ea:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:82:f8:68:cc:21:85:f1:e0:29:05:9b:72:24:13:7e:
        c4:33:95:50:62:26:88:a1:2f:72:9c:fe:49:52:fc:40:
        11:79:88:a3:6e:8a:1c:49:44:35:da:34:a4:bf:9a:ba:
        53:6d:3e:78:76:3f:fa:f0:e6:f0:61:14:86:66:7f:58:
        fd:47:61:0d:09:a4:92:1f:6c:2a:9a:79:ed:ba:ea:66:
        67:93:4c:9b:87:38:c8:da:85:c9:de:e5:2d:6f:05:75:
        47:96:ef:d5:e6:57:40:51:57:02:b4:57:6a:a5:a9:3a:
        67:ec:a0:48:63:5a:10:fa:b1:a1:71:8d:24:30:d7:e2:
        6c:94:c0:77:bb:f6:9f:c3:be:54:90:48:f4:b7:1e:93:
        71:77:3d:31:4f:8d:de:ac:f9:d3:f5:b8:bc:88:04:66:
        6c:75:35:9c:71:46:2d:b3:7e:20:22:cc:9a:89:e2:43:
        b5:04:5a:a3:9d:f1:64:1d:7d:37:1c:58:30:27:c5:5f:
        68:83:f0:a8:df:bc:95:1f:da:f9:a4:75:d7:c4:f5:7d:
        5d:00:d5:7e:24:1d:db:a1:2b:b1:5e:76:8d:47:84:ef:
        f5:31:2a:70:b9:1a:55:44:13:a4:23:bc:7e:ea:83:d3:
        8a:e9:88:99:cb:6f:50:c6:79:8c:f6:6c:ab:27:9c:4d
    Fingerprint (SHA-256):
        BD:48:D5:0F:B5:C9:24:C2:17:12:F2:55:69:10:08:5F:41:6F:F8:C6:05:84:62:6C:DF:BE:D4:DC:CA:52:EB:B9
    Fingerprint (SHA1):
        E6:5C:3A:D2:C4:04:55:78:6D:A5:EC:7B:19:26:D9:4A:A7:6D:A8:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13459: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124435 (0x310fe1d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:05 2017
            Not After : Tue Aug 23 12:45:05 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:d7:02:84:b3:50:d7:7d:e7:d9:ef:a3:67:94:8b:a9:
                    14:b2:af:f2:8d:36:0c:bc:ec:b3:f5:d9:a6:50:4a:44:
                    2b:63:65:25:61:a8:d3:64:e0:11:4c:99:e7:73:ec:4c:
                    44:d3:8e:1b:6e:5a:0a:be:e1:18:e1:b8:a9:47:18:ac:
                    f7:96:63:8a:d9:45:75:b0:77:eb:d0:c0:cf:f6:f7:b8:
                    87:86:1c:9a:db:e4:84:39:c0:20:5d:46:ef:a0:51:af:
                    a1:7c:b3:72:bb:ff:87:80:40:dc:4a:8a:17:62:22:8f:
                    fa:fc:af:cc:2e:e3:7d:a8:b0:3f:19:e4:b8:a7:df:37:
                    7d:26:73:0e:53:32:a6:2f:9f:b7:a7:e1:4b:ea:f6:59:
                    cb:a3:28:b8:74:8f:13:65:2c:9e:13:9c:e1:ff:1a:72:
                    4d:10:ea:65:fc:ca:50:93:31:9d:a1:44:04:47:a4:65:
                    cc:7a:01:96:5e:0c:ac:0f:ed:a1:a0:05:50:85:85:f9:
                    35:81:4a:d6:bb:d8:c8:eb:89:ff:d9:9c:af:ed:18:a6:
                    fa:2d:10:5a:27:81:a4:fb:8d:13:96:55:30:e1:5f:8f:
                    6b:a5:21:d7:9d:ce:fc:23:aa:d0:71:e1:97:97:b7:88:
                    97:ec:9b:e6:a6:2e:32:2d:39:e6:d7:e2:b9:cd:53:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:e8:51:44:ad:0d:7c:c5:be:a4:bb:34:de:52:33:bf:
        22:9f:ca:9b:fa:a5:38:e5:e9:f6:78:4e:2b:5d:f9:29:
        fb:8f:4a:3e:e4:db:f1:01:95:8f:57:d0:7b:17:80:42:
        33:5b:5b:b2:98:0a:dc:59:6c:d4:52:0b:fc:a2:ad:25:
        21:28:b7:cd:74:4d:af:27:68:68:89:59:b7:a1:73:4a:
        2b:72:a9:c5:50:91:b9:4e:5a:27:f2:3e:23:e8:30:22:
        56:af:6b:24:14:6a:fb:8c:99:a7:45:0d:b7:20:6e:dd:
        b5:57:2e:8a:04:c9:c0:a0:59:bb:98:aa:18:0d:68:0b:
        0d:b7:f3:93:05:c1:f1:8e:69:19:f5:20:24:22:e3:ca:
        b1:a0:4a:86:a0:4a:4d:ee:82:d8:84:a7:42:e6:1d:0d:
        1b:5a:07:45:26:2f:7c:7e:89:ce:0b:51:25:82:84:dc:
        05:47:08:61:6d:06:83:3d:bf:40:5a:8c:01:b1:48:c4:
        7a:f4:b7:5a:6a:11:c8:90:a0:c6:7e:99:e2:b2:7e:2a:
        c9:4b:f9:1a:6b:01:ac:fa:c4:c6:76:0d:4d:73:cb:3e:
        eb:f7:bf:e4:73:6a:b0:f0:6e:82:c7:18:48:17:2d:11:
        ae:a2:4c:b6:70:6f:d3:a7:c5:1b:d5:bd:d8:37:8d:f5
    Fingerprint (SHA-256):
        AD:8A:F8:9D:08:70:CA:78:9E:48:E2:84:F0:6A:76:02:6A:55:C3:65:27:E5:A8:08:A2:88:19:F6:2A:08:E1:A9
    Fingerprint (SHA1):
        C8:FD:7D:9A:49:77:A9:9E:18:E6:0B:1A:99:3A:CC:18:DB:5A:CB:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13460: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124436 (0x310fe1d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:06 2017
            Not After : Tue Aug 23 12:45:06 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:75:d7:2d:69:76:22:03:0a:a7:af:a1:c3:61:f0:17:
                    78:cc:81:68:63:d4:f8:76:5e:f0:64:0d:d6:cd:92:26:
                    79:b4:42:7b:4a:d9:6a:bf:ea:4a:3a:b2:d2:f9:8c:f8:
                    f2:ba:62:a0:70:51:68:d2:1e:79:bd:50:ae:66:f7:42:
                    b2:f9:be:d7:c0:93:26:cf:bd:2a:09:91:9f:cf:e7:a1:
                    77:6f:31:3b:59:1a:96:9c:32:eb:b9:18:c7:a6:ec:06:
                    36:cd:2f:79:de:b0:e3:7f:d0:38:20:f6:82:44:10:b0:
                    e4:d8:d4:97:a2:20:c0:27:49:7e:e7:82:09:7e:d5:91:
                    66:94:1f:9a:0b:b1:45:b8:c2:c3:73:3e:b0:f8:bb:74:
                    64:b6:ef:1d:ad:ef:86:ba:aa:f7:56:a8:5f:0d:9b:a3:
                    0d:35:b9:b7:00:27:95:41:8c:40:0c:5f:19:29:a7:04:
                    60:79:ff:d5:17:5f:17:7b:32:f7:86:ac:2a:83:42:93:
                    30:4b:30:49:fe:a2:5b:a3:a3:c6:27:d4:aa:a4:77:84:
                    a8:18:40:b7:48:3c:61:e6:bf:80:e9:5d:d1:8f:ea:52:
                    b8:e3:f7:d9:06:65:b0:8a:ea:0a:c2:3a:f7:df:0d:a8:
                    5e:5c:3a:c6:35:42:19:bd:96:47:5c:bf:26:28:10:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:28:ef:da:c8:a7:5e:74:78:8c:12:5b:e0:db:e2:ff:
        61:fd:4e:b1:04:4e:a5:dd:ac:4a:5b:5a:08:f6:15:16:
        cc:78:0b:60:2d:ac:f5:65:93:7e:09:c9:ba:42:8f:f3:
        bd:b2:e6:ca:2b:c6:a4:e2:f3:0f:0e:d0:b2:52:1c:63:
        11:3d:bc:d1:c4:0e:2e:b1:b7:c8:64:d6:50:8b:f9:93:
        e7:12:14:e2:9b:5f:1e:71:d9:ac:76:fa:17:80:0e:32:
        11:d7:dd:fa:66:c4:b3:28:97:4b:b0:c1:50:91:d6:c5:
        81:d6:e2:76:9a:73:b2:05:8e:38:65:eb:65:a0:a7:b1:
        e5:e9:9b:a3:82:8e:78:21:4a:e3:56:33:3b:79:22:27:
        3b:f4:47:7b:75:b5:d7:d3:43:bd:3f:99:0d:a0:81:93:
        2b:f1:54:98:21:8a:5d:49:b9:81:90:07:60:ca:04:bb:
        d0:8e:99:86:d0:71:6f:ad:25:6f:f6:b7:1f:d9:0a:0a:
        66:d2:3c:32:ee:a8:57:b4:72:af:45:d5:08:ed:74:dd:
        69:f1:cb:ca:a1:8a:c4:c7:5d:17:4a:40:c6:e1:28:5a:
        5c:3f:4f:29:0a:3f:c0:73:5a:0e:66:ea:b1:62:76:9e:
        30:43:97:d7:ab:f2:0a:19:45:54:a3:56:97:04:84:79
    Fingerprint (SHA-256):
        B8:EF:EA:FE:CF:70:88:A6:34:57:E5:1A:78:B2:0D:00:A1:AC:84:83:69:2B:CF:A4:FD:2E:B2:AE:46:F6:67:F3
    Fingerprint (SHA1):
        36:30:2A:B9:21:AE:8D:D8:6B:00:AB:04:71:49:00:9D:A6:31:C9:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13461: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124437 (0x310fe1d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:07 2017
            Not After : Tue Aug 23 12:45:07 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:37:51:ec:5b:4c:cb:fb:92:57:8e:e9:56:ef:51:ac:
                    60:59:ad:81:5a:2d:22:f3:f5:bd:6e:de:da:3f:13:85:
                    4f:ac:6e:5b:f9:e6:50:a5:2e:1e:1c:5b:d7:72:5d:62:
                    41:6e:08:b0:18:d3:09:39:db:2a:d3:2e:d8:d7:f7:37:
                    f2:3e:f4:c5:5b:8e:a3:41:91:02:86:15:89:01:4e:af:
                    67:1e:fd:9e:f0:24:d9:fc:5e:1d:cf:cf:5f:db:fd:30:
                    14:6e:15:b8:aa:6a:d5:ac:18:44:a4:f5:92:0e:46:43:
                    be:04:51:94:5c:62:89:00:f6:2b:19:54:27:ac:9c:2f:
                    4d:b5:51:2c:39:1d:b5:2d:c3:0a:70:c2:09:e9:00:78:
                    2d:ee:2f:9f:d2:9d:42:f0:18:b7:6d:33:74:e2:e7:cd:
                    55:30:a2:71:c2:f5:6f:84:e2:a4:78:3d:55:bc:33:98:
                    19:0d:0d:10:e4:79:53:ec:7a:b0:47:a5:f0:e7:de:43:
                    c8:21:36:1e:45:78:fe:9f:c7:5d:f2:f8:13:58:e7:27:
                    53:19:1f:27:22:a1:41:f8:7e:6f:ef:c8:55:ff:7b:b0:
                    d3:d5:86:2f:58:d3:40:ea:f0:21:20:cf:62:3e:61:01:
                    54:4b:9e:49:90:9f:ff:36:97:73:02:d5:1f:ef:e7:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:2c:22:62:48:76:21:bc:7e:e4:85:3c:00:ab:97:cf:
        84:b9:81:9f:36:a0:89:8f:b9:5c:a1:01:ef:01:51:7f:
        14:57:10:cb:ed:27:72:28:d9:90:b1:bc:ea:3e:af:f7:
        14:13:f1:3a:73:d5:19:6a:8a:b4:c6:84:cf:63:80:48:
        fd:e7:28:fb:64:32:5c:e4:b1:e4:91:f4:38:b2:53:b7:
        8c:ae:4c:ba:fd:ce:45:58:1f:37:e3:b3:fc:30:42:1d:
        54:e3:af:00:f7:64:90:91:7a:1d:97:70:87:96:82:09:
        c0:1d:4e:ec:e5:b1:dd:7a:3e:21:8a:a8:7c:a7:26:d6:
        4a:c1:32:59:a0:cd:d2:02:9e:ca:2a:50:fb:d0:23:4a:
        47:88:df:03:9c:1a:58:31:be:ee:87:d8:34:32:b0:11:
        88:36:71:35:09:90:e1:65:53:bd:86:3c:c1:d1:40:7c:
        7c:02:38:43:a1:f6:15:9c:54:7a:64:7d:21:6b:44:30:
        3a:48:be:21:75:30:6c:b7:23:ea:57:35:f0:37:a2:07:
        05:d4:eb:a2:73:18:ef:c8:65:c6:aa:c1:19:27:14:3f:
        45:f5:d7:b5:d0:8a:7d:56:65:94:db:5c:d3:84:fc:0a:
        c8:e7:06:4f:b1:31:23:ec:1e:cd:e6:34:22:4e:09:45
    Fingerprint (SHA-256):
        D8:4B:04:63:36:5B:45:3D:5B:34:9A:85:9C:07:69:3D:08:ED:64:D7:49:3F:9D:7C:33:87:50:FC:C5:85:8B:BA
    Fingerprint (SHA1):
        CA:B0:B3:E7:BA:1D:67:DA:09:72:7C:8E:37:D0:EB:87:2D:4E:F6:E6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13462: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124438 (0x310fe1d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:08 2017
            Not After : Tue Aug 23 12:45:08 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f7:98:b9:63:a6:4c:71:03:62:71:4d:de:60:20:e3:34:
                    1e:93:d1:77:6f:8d:0e:e5:f3:ff:40:4b:ef:11:85:1f:
                    76:3a:9d:61:9f:90:35:b1:6e:93:50:22:25:0c:5b:0d:
                    4a:d1:e5:8c:f0:7c:a1:e4:80:3c:11:83:1f:ed:7e:8b:
                    a1:98:aa:2c:a6:ff:6b:17:a6:c6:fb:cf:e4:ab:9d:ad:
                    e5:29:ea:15:38:92:10:87:d3:a0:3d:42:dc:e5:6f:7d:
                    f9:30:37:c4:90:d4:39:30:f1:6e:5e:0a:8a:ff:f7:74:
                    b6:79:67:6b:a1:e2:a8:21:56:9c:db:43:6d:b9:57:28:
                    c2:74:99:31:30:d5:4f:5e:98:93:46:15:02:28:7b:c4:
                    b4:25:43:7a:22:df:7a:cb:f9:2c:6a:3f:0d:65:7b:c8:
                    3b:35:99:17:50:7d:bc:ef:79:04:89:e4:c1:3c:a1:18:
                    0c:23:52:e1:f0:a6:1b:cd:b2:b8:b9:cb:65:02:60:ff:
                    8f:db:cd:9a:52:06:c0:64:b7:d1:45:61:51:28:76:47:
                    d0:c1:c9:5d:a2:e2:fd:47:87:1a:e4:4e:02:57:5a:e7:
                    90:41:79:e8:a7:ef:39:f9:e0:b8:93:a7:e0:43:03:8b:
                    2a:22:2b:5b:ff:64:6b:b3:bf:92:01:c7:7e:63:ef:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        f2:48:6b:5c:e3:5b:c6:df:d9:4e:e9:de:3e:0d:b3:4d:
        64:42:40:a3:48:30:75:e5:f8:92:01:9c:53:f8:34:84:
        0c:13:d9:d4:26:8f:a1:48:6b:d1:15:32:eb:17:12:7c:
        a7:79:3b:49:d1:74:f1:54:72:3b:94:a0:e0:36:48:2c:
        48:1e:34:e8:b1:8e:c4:d6:b2:66:13:3f:52:d0:fa:73:
        19:65:ce:09:d3:37:c9:88:44:ca:11:43:19:17:6f:0a:
        09:86:9e:1a:87:19:39:b8:99:6b:27:d9:66:65:5e:ef:
        04:c8:85:2e:cb:48:ed:de:10:aa:b2:cf:49:bc:a1:dd:
        84:19:3c:13:26:e8:51:98:69:8c:f2:f5:3c:dd:59:af:
        ae:b6:f0:c4:f5:d4:4a:5b:8d:d5:b1:44:aa:ed:12:f3:
        16:62:95:c0:17:2c:85:93:15:1c:03:10:a0:a1:71:6d:
        7d:83:c4:c4:67:45:d9:45:51:5d:65:84:0d:35:10:4d:
        3b:e2:de:7c:a8:09:01:54:8b:c1:f8:78:9e:0f:82:fc:
        49:49:b3:f3:50:8f:ff:8f:f4:c3:a9:17:04:7c:c5:8e:
        61:61:24:ba:e2:d0:f0:1c:f6:37:02:b6:fe:12:7d:4c:
        e3:4d:5a:1f:36:5e:7d:f3:de:46:ac:11:f8:cc:ce:70
    Fingerprint (SHA-256):
        4E:A2:A5:4F:EA:CF:1B:5A:DF:07:19:D9:C6:98:97:13:72:91:39:67:15:76:C4:82:FB:52:10:A9:AD:86:2D:33
    Fingerprint (SHA1):
        68:A9:C8:C8:A6:48:BC:68:14:29:05:54:6B:A4:05:25:5A:CA:6F:93
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13463: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124439 (0x310fe1d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:09 2017
            Not After : Tue Aug 23 12:45:09 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:0c:ae:47:1a:68:17:00:fa:6e:b2:d1:94:39:f7:1d:
                    96:98:90:a0:16:90:78:56:67:8e:50:fe:ce:eb:2b:be:
                    b9:b5:ff:ed:4b:79:2c:4d:98:9f:d9:45:99:5f:a7:bc:
                    ec:14:5c:98:36:7e:4c:e0:b8:f0:92:f0:14:6d:28:8f:
                    08:63:dd:70:fc:0f:3e:92:d7:ff:fe:58:4d:1a:3d:b2:
                    e5:89:90:54:fc:c8:7a:7d:0b:1f:1b:61:b2:4d:73:dc:
                    90:b0:0b:91:d3:76:97:24:0b:91:b3:f3:71:6c:60:a6:
                    e2:bc:8b:e5:b7:5e:a6:9a:e0:76:1d:82:56:74:be:e2:
                    a0:bd:13:03:22:67:1d:04:9d:46:c5:2c:ce:8c:50:ee:
                    31:14:7a:f9:5a:9d:f5:5e:c1:70:2a:ff:ef:14:49:65:
                    f6:10:1e:88:03:17:f3:05:81:e7:90:a8:89:71:f5:fc:
                    73:29:6f:1f:f5:fc:26:ff:13:58:79:c5:48:cf:73:7c:
                    48:68:f4:27:fe:33:9d:58:09:e8:b6:f0:3a:c9:c2:34:
                    04:6c:bd:c3:65:60:16:f8:8e:5f:ba:c8:d3:9b:68:d3:
                    82:45:29:20:58:d7:10:e3:72:7f:a7:32:a3:9a:71:73:
                    2b:02:a0:1c:44:1e:b0:7a:57:d6:3c:48:8e:fc:22:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:b7:a9:81:a7:e7:bd:74:ee:93:9d:5e:44:e6:a8:65:
        80:5c:36:15:22:c5:35:c5:7e:ab:27:89:8d:0d:14:a2:
        0f:70:a2:1f:23:b2:6e:47:64:76:8d:96:33:41:e1:6a:
        56:d8:a6:81:fd:0e:f2:10:51:61:0d:ba:eb:47:f8:0f:
        8d:e3:b4:bc:11:16:17:39:72:4c:6d:da:00:cd:0b:ff:
        3c:6e:2f:46:31:d7:bd:76:d3:71:06:f7:a6:ef:4f:23:
        6a:87:72:64:2a:66:72:e6:14:ea:d1:78:d3:0d:33:27:
        2b:68:d2:fd:41:89:d2:be:59:1f:ab:bd:1b:cc:ac:53:
        30:fc:35:39:b2:f4:22:93:ec:52:4b:64:8f:3e:e5:ef:
        d7:49:63:16:3c:75:31:84:e1:f2:cc:89:be:f4:2c:63:
        f2:05:d2:12:32:9f:1e:95:09:dd:71:9a:96:2d:54:67:
        bb:a9:c5:83:0a:73:2e:cd:58:da:c5:65:99:b9:45:cc:
        ce:97:eb:23:af:25:f7:5a:f4:eb:73:7a:b8:96:f8:d8:
        c5:37:ad:49:78:0f:62:ce:5e:e0:63:31:71:2f:f5:95:
        40:89:b7:6e:49:b7:14:a6:f4:de:58:e7:40:fa:84:c1:
        d6:61:d3:59:93:80:64:70:44:3b:55:0c:bb:15:67:61
    Fingerprint (SHA-256):
        C2:89:C6:9C:F1:04:34:55:C0:90:77:50:3F:A3:BB:98:79:1B:6B:E4:1F:D4:E4:7B:23:55:6D:AF:60:01:F9:C7
    Fingerprint (SHA1):
        CD:8C:4A:7E:86:6F:82:8D:CA:CA:98:A7:3E:1B:63:C2:FE:0D:87:1A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13464: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13465: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124454 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13466: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13467: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13468: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13469: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124455   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13470: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13471: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13472: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13473: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124456   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13474: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13475: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13476: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13477: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823124457   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13478: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13479: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13480: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124454 (0x310fe1e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:19 2017
            Not After : Tue Aug 23 12:45:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:53:d2:31:d3:2e:30:8c:0f:83:f6:64:d8:e7:d6:68:
                    8b:32:6c:57:99:fd:74:13:fa:d6:1c:04:f9:b4:37:8a:
                    87:cd:04:69:11:68:89:16:bc:95:48:92:41:41:07:b7:
                    10:22:53:4d:03:77:f8:af:ae:5a:2b:93:c4:82:0d:96:
                    10:98:8a:be:e6:b8:14:0e:4b:e5:09:98:f9:a1:62:ea:
                    17:94:ea:06:93:f4:d4:6d:ac:f2:f3:d5:3c:cb:c1:af:
                    40:b0:5c:9c:18:39:b1:74:92:a9:23:36:51:24:8f:21:
                    17:15:59:a8:28:be:da:aa:2e:f0:80:e9:9e:85:4d:ae:
                    7a:1c:5b:64:54:89:a1:69:11:e8:48:0b:e4:4a:a0:79:
                    22:c1:2b:17:36:da:cf:8b:f1:74:c0:e4:03:c1:08:5d:
                    b6:af:48:f3:cf:f7:55:26:fd:08:b9:99:ed:34:c1:8e:
                    78:ac:3e:d0:53:09:c3:99:b7:40:6e:47:41:e6:dc:7c:
                    f9:26:66:0b:a3:e2:ff:b1:68:f9:93:cf:e5:31:fb:ed:
                    48:35:06:2b:cb:9a:5b:aa:d0:d6:45:1e:62:46:1c:6d:
                    00:82:20:7d:54:5e:ac:c1:a6:0e:de:5f:e0:fe:e2:82:
                    c9:64:b1:3e:79:c1:40:35:d9:63:3e:44:dc:79:bd:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:b3:f2:76:46:d4:27:38:87:32:53:f6:43:2f:65:72:
        b5:e9:c1:82:32:06:f7:b3:8f:97:e3:7a:2e:c0:cf:ab:
        3f:fa:cc:fc:56:7f:0c:bd:ef:4d:5d:3a:91:3d:28:b0:
        93:2a:74:aa:d6:30:33:be:5b:1e:d3:59:e0:98:1b:bb:
        2d:ef:62:8a:98:43:c2:34:f8:fa:f9:a9:40:c8:cf:7f:
        95:c4:33:bc:e6:58:f8:63:54:94:73:f3:a8:ae:41:32:
        b3:13:17:1a:bf:f7:2d:cc:db:a6:1e:19:69:70:f1:bc:
        bd:f1:12:3f:a2:9d:90:75:65:c2:a0:1f:7b:ad:3a:40:
        97:dc:39:e2:33:2c:4d:2a:dd:c6:f3:bc:04:19:ad:f6:
        ee:69:20:26:09:98:b8:f9:5b:e1:5e:39:6e:fe:89:7e:
        82:8e:1a:9f:f8:30:ee:05:b9:65:47:02:15:7e:9e:30:
        81:6e:0f:f0:c4:ca:f9:68:ad:df:45:1a:54:26:27:75:
        4d:e4:f5:56:92:1e:69:5f:32:18:32:cb:35:f3:b6:a4:
        57:4c:ae:d4:7a:f4:0c:6c:8c:e8:cd:f5:39:45:44:f2:
        0c:71:42:60:0c:5a:70:da:a9:61:e2:3f:2d:a2:87:c1:
        3c:b0:48:fa:1a:99:a0:33:d2:a5:b6:b7:c1:14:38:4e
    Fingerprint (SHA-256):
        97:5C:71:D9:A6:E5:92:CE:56:A6:F9:34:94:F6:66:8B:BD:11:93:3F:7A:13:7D:DC:27:A2:B1:2E:B1:91:02:A4
    Fingerprint (SHA1):
        9B:81:33:DE:A9:29:F0:E3:95:65:B8:CE:CE:ED:0D:30:6A:17:AF:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13481: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13482: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124455 (0x310fe1e7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:21 2017
            Not After : Tue Aug 23 12:45:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:b4:ed:6b:d0:b6:0a:fb:44:cd:01:4f:54:06:d5:35:
                    39:d6:4e:df:83:40:64:9e:37:f9:b3:55:37:83:2d:1d:
                    73:02:31:7b:49:3f:0b:0d:c6:52:5b:12:f5:a0:15:b1:
                    3f:cd:c3:43:e4:41:8c:52:b6:e0:ab:cb:e5:58:3b:7d:
                    fe:30:17:6c:8c:f7:15:f2:66:b3:f6:68:84:cd:4b:6d:
                    99:c8:6c:f4:94:d7:ea:31:f6:2a:80:3c:8f:2a:93:e1:
                    d4:4a:a2:95:94:0d:f9:d7:55:3f:ba:62:a3:db:bc:75:
                    e5:7a:4a:d0:cb:df:d9:13:8a:94:3b:93:ec:d5:b9:48:
                    df:6a:07:21:d8:19:a4:84:71:14:66:2e:22:08:5f:18:
                    27:81:71:c8:a8:1e:45:4d:17:f6:22:dd:bb:38:26:65:
                    e7:16:2b:c9:c5:59:d1:e4:80:88:7d:08:d6:ee:09:63:
                    b4:18:a7:2e:d6:e4:b9:20:98:c6:a1:b8:09:e0:5b:aa:
                    5e:e3:f7:eb:b1:e3:91:4a:19:00:fe:33:b7:23:86:f9:
                    03:cd:6b:50:88:21:b2:c3:4e:eb:48:c1:ce:24:cf:98:
                    32:77:ef:e8:43:15:b5:c5:fa:e8:37:20:b8:ae:d1:ec:
                    f2:ff:56:c0:7b:57:40:34:53:86:93:54:6d:31:bb:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:b5:43:b8:bc:e2:37:86:b6:d8:69:48:d6:14:00:64:
        86:41:25:85:8f:53:0c:96:90:12:9e:83:df:bd:d4:62:
        ed:26:b6:65:14:67:ad:89:e3:17:15:d9:93:bc:5b:be:
        99:6b:b7:c7:79:d8:c4:ed:8b:eb:0c:fb:5e:25:53:80:
        ff:bb:7c:42:d6:7c:b2:d7:48:1f:73:2b:0c:8c:62:e3:
        94:ff:78:fb:dc:ef:b1:47:3c:37:01:f1:e2:a4:43:9f:
        c0:26:11:d3:f6:1a:45:0d:f5:b2:a0:cb:79:eb:20:49:
        26:ae:c3:97:4a:db:14:5e:53:03:32:2e:d5:f5:f2:db:
        bd:de:a1:d5:b3:40:29:c9:dc:65:15:90:68:ea:93:88:
        a9:00:9e:13:d1:39:82:3b:86:79:07:3f:81:c9:2a:aa:
        02:bb:01:c7:fd:67:30:18:d9:30:4a:d5:3e:aa:59:b3:
        7b:40:65:e0:68:04:d1:da:af:8c:7e:3a:92:d0:d2:5a:
        0b:36:31:e5:bd:a3:08:cb:5c:ed:9a:cc:b9:48:83:a7:
        6b:d1:f3:0f:d3:18:c7:b2:ee:d1:35:70:75:86:bb:40:
        ae:f4:3b:94:20:4b:36:3e:3a:1b:d9:5d:f8:67:4e:9a:
        f0:cd:08:7f:c1:d0:bb:cb:15:29:44:19:07:e2:6c:45
    Fingerprint (SHA-256):
        54:8E:13:0B:E6:7E:10:04:BD:1A:D3:13:EB:13:AE:8E:67:9A:88:E6:C1:04:5A:F0:94:F3:B2:61:7A:3B:A6:FE
    Fingerprint (SHA1):
        91:B7:8A:C7:54:31:53:C8:2A:4F:C4:53:6D:BF:A6:B0:0A:8C:C1:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13483: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13484: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124456 (0x310fe1e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:22 2017
            Not After : Tue Aug 23 12:45:22 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:06:58:78:72:36:de:da:f5:f4:ed:7a:4c:9c:58:df:
                    0e:29:19:c9:76:e5:26:69:e1:0c:d9:39:f4:06:af:44:
                    da:18:a7:d4:aa:65:69:c3:b6:35:10:00:b6:54:82:16:
                    32:0c:cf:4d:9c:f7:cb:47:bc:7f:22:39:4f:bc:dd:f5:
                    f5:c7:35:c0:5b:e2:77:ba:47:58:0f:eb:aa:bb:cd:c7:
                    bf:a7:71:ec:11:91:ab:5c:7a:cc:df:4a:2f:79:b6:e1:
                    9a:a4:5a:0e:bc:c7:47:d5:88:bb:2c:be:98:49:04:d2:
                    24:ca:2d:f6:94:26:5a:0a:72:80:1b:dd:29:0e:9e:3b:
                    84:c9:3f:de:be:f7:fa:f9:fc:d4:9d:42:30:19:cc:97:
                    3e:18:c5:8b:37:48:a9:b0:13:9a:d7:be:13:3b:a4:2c:
                    91:b2:c0:6d:c7:c8:f4:42:ec:07:3e:e0:8d:1b:51:3f:
                    96:6a:85:82:da:b9:1a:b0:25:a6:0c:00:be:95:4d:4d:
                    d6:ba:1f:0a:ec:d0:71:28:1c:74:80:e4:f3:8e:4f:cb:
                    ff:e0:43:a7:50:33:b8:08:4f:24:03:e0:45:4a:17:19:
                    0e:7a:b9:ac:c2:1d:3e:3c:29:46:de:e2:bf:b8:7d:83:
                    ec:14:5e:09:98:90:9a:ab:05:35:f2:e2:1a:c5:d1:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:a0:8b:ff:36:cc:8c:2c:11:76:c9:49:81:5a:a1:bb:
        59:01:a6:28:37:e1:b4:1c:48:ca:a7:c8:64:e3:3e:e2:
        e6:0e:90:b3:29:fc:c5:14:c6:db:09:60:31:11:2f:27:
        31:15:fa:2c:38:10:57:8b:1f:a3:f9:c5:be:4d:a2:82:
        27:05:b3:ca:83:ed:d3:7c:40:c2:23:56:a1:f9:45:f9:
        80:ae:48:fc:4f:77:ad:5b:63:94:73:69:79:cd:3d:79:
        77:ae:0a:28:aa:c4:d8:4f:af:e6:61:bc:cd:df:83:45:
        7b:48:fb:40:15:e5:f6:8f:37:76:87:94:27:e4:eb:33:
        c8:c4:c4:84:41:9a:0f:43:6f:d4:70:39:20:27:ba:3c:
        69:22:fc:b2:32:ea:77:7e:54:eb:24:19:00:18:ec:c6:
        b9:8f:c0:27:7f:2e:a3:29:ac:3b:4c:b3:38:a1:8d:ba:
        32:a0:59:fa:62:38:a0:d9:1e:7c:bc:ff:82:ee:81:e2:
        da:a2:29:6a:3d:42:35:c8:eb:ae:89:86:4e:20:61:ae:
        30:19:76:47:77:b1:01:c9:84:d6:23:34:15:fa:79:96:
        f6:b0:9c:df:b7:1b:69:2d:ee:e8:94:b6:33:4a:d9:da:
        63:40:72:dd:01:78:72:07:57:f6:93:fc:7d:b8:74:f2
    Fingerprint (SHA-256):
        D2:7B:9B:DA:DD:2C:43:B4:46:27:DA:88:CE:16:4C:1F:39:87:37:0D:80:C6:19:AC:A4:B1:EA:D6:8C:14:A5:EC
    Fingerprint (SHA1):
        C2:9A:94:A1:64:3D:67:A4:75:C2:21:5C:3E:2D:42:1E:D0:4F:74:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13485: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13486: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13487: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13488: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13489: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124454 (0x310fe1e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:19 2017
            Not After : Tue Aug 23 12:45:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:53:d2:31:d3:2e:30:8c:0f:83:f6:64:d8:e7:d6:68:
                    8b:32:6c:57:99:fd:74:13:fa:d6:1c:04:f9:b4:37:8a:
                    87:cd:04:69:11:68:89:16:bc:95:48:92:41:41:07:b7:
                    10:22:53:4d:03:77:f8:af:ae:5a:2b:93:c4:82:0d:96:
                    10:98:8a:be:e6:b8:14:0e:4b:e5:09:98:f9:a1:62:ea:
                    17:94:ea:06:93:f4:d4:6d:ac:f2:f3:d5:3c:cb:c1:af:
                    40:b0:5c:9c:18:39:b1:74:92:a9:23:36:51:24:8f:21:
                    17:15:59:a8:28:be:da:aa:2e:f0:80:e9:9e:85:4d:ae:
                    7a:1c:5b:64:54:89:a1:69:11:e8:48:0b:e4:4a:a0:79:
                    22:c1:2b:17:36:da:cf:8b:f1:74:c0:e4:03:c1:08:5d:
                    b6:af:48:f3:cf:f7:55:26:fd:08:b9:99:ed:34:c1:8e:
                    78:ac:3e:d0:53:09:c3:99:b7:40:6e:47:41:e6:dc:7c:
                    f9:26:66:0b:a3:e2:ff:b1:68:f9:93:cf:e5:31:fb:ed:
                    48:35:06:2b:cb:9a:5b:aa:d0:d6:45:1e:62:46:1c:6d:
                    00:82:20:7d:54:5e:ac:c1:a6:0e:de:5f:e0:fe:e2:82:
                    c9:64:b1:3e:79:c1:40:35:d9:63:3e:44:dc:79:bd:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:b3:f2:76:46:d4:27:38:87:32:53:f6:43:2f:65:72:
        b5:e9:c1:82:32:06:f7:b3:8f:97:e3:7a:2e:c0:cf:ab:
        3f:fa:cc:fc:56:7f:0c:bd:ef:4d:5d:3a:91:3d:28:b0:
        93:2a:74:aa:d6:30:33:be:5b:1e:d3:59:e0:98:1b:bb:
        2d:ef:62:8a:98:43:c2:34:f8:fa:f9:a9:40:c8:cf:7f:
        95:c4:33:bc:e6:58:f8:63:54:94:73:f3:a8:ae:41:32:
        b3:13:17:1a:bf:f7:2d:cc:db:a6:1e:19:69:70:f1:bc:
        bd:f1:12:3f:a2:9d:90:75:65:c2:a0:1f:7b:ad:3a:40:
        97:dc:39:e2:33:2c:4d:2a:dd:c6:f3:bc:04:19:ad:f6:
        ee:69:20:26:09:98:b8:f9:5b:e1:5e:39:6e:fe:89:7e:
        82:8e:1a:9f:f8:30:ee:05:b9:65:47:02:15:7e:9e:30:
        81:6e:0f:f0:c4:ca:f9:68:ad:df:45:1a:54:26:27:75:
        4d:e4:f5:56:92:1e:69:5f:32:18:32:cb:35:f3:b6:a4:
        57:4c:ae:d4:7a:f4:0c:6c:8c:e8:cd:f5:39:45:44:f2:
        0c:71:42:60:0c:5a:70:da:a9:61:e2:3f:2d:a2:87:c1:
        3c:b0:48:fa:1a:99:a0:33:d2:a5:b6:b7:c1:14:38:4e
    Fingerprint (SHA-256):
        97:5C:71:D9:A6:E5:92:CE:56:A6:F9:34:94:F6:66:8B:BD:11:93:3F:7A:13:7D:DC:27:A2:B1:2E:B1:91:02:A4
    Fingerprint (SHA1):
        9B:81:33:DE:A9:29:F0:E3:95:65:B8:CE:CE:ED:0D:30:6A:17:AF:3D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13490: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13491: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124455 (0x310fe1e7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:21 2017
            Not After : Tue Aug 23 12:45:21 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:b4:ed:6b:d0:b6:0a:fb:44:cd:01:4f:54:06:d5:35:
                    39:d6:4e:df:83:40:64:9e:37:f9:b3:55:37:83:2d:1d:
                    73:02:31:7b:49:3f:0b:0d:c6:52:5b:12:f5:a0:15:b1:
                    3f:cd:c3:43:e4:41:8c:52:b6:e0:ab:cb:e5:58:3b:7d:
                    fe:30:17:6c:8c:f7:15:f2:66:b3:f6:68:84:cd:4b:6d:
                    99:c8:6c:f4:94:d7:ea:31:f6:2a:80:3c:8f:2a:93:e1:
                    d4:4a:a2:95:94:0d:f9:d7:55:3f:ba:62:a3:db:bc:75:
                    e5:7a:4a:d0:cb:df:d9:13:8a:94:3b:93:ec:d5:b9:48:
                    df:6a:07:21:d8:19:a4:84:71:14:66:2e:22:08:5f:18:
                    27:81:71:c8:a8:1e:45:4d:17:f6:22:dd:bb:38:26:65:
                    e7:16:2b:c9:c5:59:d1:e4:80:88:7d:08:d6:ee:09:63:
                    b4:18:a7:2e:d6:e4:b9:20:98:c6:a1:b8:09:e0:5b:aa:
                    5e:e3:f7:eb:b1:e3:91:4a:19:00:fe:33:b7:23:86:f9:
                    03:cd:6b:50:88:21:b2:c3:4e:eb:48:c1:ce:24:cf:98:
                    32:77:ef:e8:43:15:b5:c5:fa:e8:37:20:b8:ae:d1:ec:
                    f2:ff:56:c0:7b:57:40:34:53:86:93:54:6d:31:bb:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:b5:43:b8:bc:e2:37:86:b6:d8:69:48:d6:14:00:64:
        86:41:25:85:8f:53:0c:96:90:12:9e:83:df:bd:d4:62:
        ed:26:b6:65:14:67:ad:89:e3:17:15:d9:93:bc:5b:be:
        99:6b:b7:c7:79:d8:c4:ed:8b:eb:0c:fb:5e:25:53:80:
        ff:bb:7c:42:d6:7c:b2:d7:48:1f:73:2b:0c:8c:62:e3:
        94:ff:78:fb:dc:ef:b1:47:3c:37:01:f1:e2:a4:43:9f:
        c0:26:11:d3:f6:1a:45:0d:f5:b2:a0:cb:79:eb:20:49:
        26:ae:c3:97:4a:db:14:5e:53:03:32:2e:d5:f5:f2:db:
        bd:de:a1:d5:b3:40:29:c9:dc:65:15:90:68:ea:93:88:
        a9:00:9e:13:d1:39:82:3b:86:79:07:3f:81:c9:2a:aa:
        02:bb:01:c7:fd:67:30:18:d9:30:4a:d5:3e:aa:59:b3:
        7b:40:65:e0:68:04:d1:da:af:8c:7e:3a:92:d0:d2:5a:
        0b:36:31:e5:bd:a3:08:cb:5c:ed:9a:cc:b9:48:83:a7:
        6b:d1:f3:0f:d3:18:c7:b2:ee:d1:35:70:75:86:bb:40:
        ae:f4:3b:94:20:4b:36:3e:3a:1b:d9:5d:f8:67:4e:9a:
        f0:cd:08:7f:c1:d0:bb:cb:15:29:44:19:07:e2:6c:45
    Fingerprint (SHA-256):
        54:8E:13:0B:E6:7E:10:04:BD:1A:D3:13:EB:13:AE:8E:67:9A:88:E6:C1:04:5A:F0:94:F3:B2:61:7A:3B:A6:FE
    Fingerprint (SHA1):
        91:B7:8A:C7:54:31:53:C8:2A:4F:C4:53:6D:BF:A6:B0:0A:8C:C1:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13492: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13493: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124456 (0x310fe1e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:22 2017
            Not After : Tue Aug 23 12:45:22 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:06:58:78:72:36:de:da:f5:f4:ed:7a:4c:9c:58:df:
                    0e:29:19:c9:76:e5:26:69:e1:0c:d9:39:f4:06:af:44:
                    da:18:a7:d4:aa:65:69:c3:b6:35:10:00:b6:54:82:16:
                    32:0c:cf:4d:9c:f7:cb:47:bc:7f:22:39:4f:bc:dd:f5:
                    f5:c7:35:c0:5b:e2:77:ba:47:58:0f:eb:aa:bb:cd:c7:
                    bf:a7:71:ec:11:91:ab:5c:7a:cc:df:4a:2f:79:b6:e1:
                    9a:a4:5a:0e:bc:c7:47:d5:88:bb:2c:be:98:49:04:d2:
                    24:ca:2d:f6:94:26:5a:0a:72:80:1b:dd:29:0e:9e:3b:
                    84:c9:3f:de:be:f7:fa:f9:fc:d4:9d:42:30:19:cc:97:
                    3e:18:c5:8b:37:48:a9:b0:13:9a:d7:be:13:3b:a4:2c:
                    91:b2:c0:6d:c7:c8:f4:42:ec:07:3e:e0:8d:1b:51:3f:
                    96:6a:85:82:da:b9:1a:b0:25:a6:0c:00:be:95:4d:4d:
                    d6:ba:1f:0a:ec:d0:71:28:1c:74:80:e4:f3:8e:4f:cb:
                    ff:e0:43:a7:50:33:b8:08:4f:24:03:e0:45:4a:17:19:
                    0e:7a:b9:ac:c2:1d:3e:3c:29:46:de:e2:bf:b8:7d:83:
                    ec:14:5e:09:98:90:9a:ab:05:35:f2:e2:1a:c5:d1:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:a0:8b:ff:36:cc:8c:2c:11:76:c9:49:81:5a:a1:bb:
        59:01:a6:28:37:e1:b4:1c:48:ca:a7:c8:64:e3:3e:e2:
        e6:0e:90:b3:29:fc:c5:14:c6:db:09:60:31:11:2f:27:
        31:15:fa:2c:38:10:57:8b:1f:a3:f9:c5:be:4d:a2:82:
        27:05:b3:ca:83:ed:d3:7c:40:c2:23:56:a1:f9:45:f9:
        80:ae:48:fc:4f:77:ad:5b:63:94:73:69:79:cd:3d:79:
        77:ae:0a:28:aa:c4:d8:4f:af:e6:61:bc:cd:df:83:45:
        7b:48:fb:40:15:e5:f6:8f:37:76:87:94:27:e4:eb:33:
        c8:c4:c4:84:41:9a:0f:43:6f:d4:70:39:20:27:ba:3c:
        69:22:fc:b2:32:ea:77:7e:54:eb:24:19:00:18:ec:c6:
        b9:8f:c0:27:7f:2e:a3:29:ac:3b:4c:b3:38:a1:8d:ba:
        32:a0:59:fa:62:38:a0:d9:1e:7c:bc:ff:82:ee:81:e2:
        da:a2:29:6a:3d:42:35:c8:eb:ae:89:86:4e:20:61:ae:
        30:19:76:47:77:b1:01:c9:84:d6:23:34:15:fa:79:96:
        f6:b0:9c:df:b7:1b:69:2d:ee:e8:94:b6:33:4a:d9:da:
        63:40:72:dd:01:78:72:07:57:f6:93:fc:7d:b8:74:f2
    Fingerprint (SHA-256):
        D2:7B:9B:DA:DD:2C:43:B4:46:27:DA:88:CE:16:4C:1F:39:87:37:0D:80:C6:19:AC:A4:B1:EA:D6:8C:14:A5:EC
    Fingerprint (SHA1):
        C2:9A:94:A1:64:3D:67:A4:75:C2:21:5C:3E:2D:42:1E:D0:4F:74:20
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13494: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13495: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13496: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124458 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13497: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13498: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13499: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13500: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124459   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13501: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13502: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13503: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13504: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124460   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13505: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13506: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #13507: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13508: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823124461   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13509: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13510: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #13511: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13512: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823124462   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13513: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13514: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13515: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124458 (0x310fe1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:25 2017
            Not After : Tue Aug 23 12:45:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:df:79:9b:b6:d9:27:c9:c7:51:7c:ae:de:f5:17:b8:
                    da:66:25:b9:ac:04:39:cd:28:bc:76:d4:48:3a:3b:5c:
                    57:b5:1a:46:e6:b5:3e:fe:d3:7b:4b:57:fd:50:93:e4:
                    c6:ac:29:ce:7e:b9:c1:d9:f0:0c:c7:97:fd:01:10:f5:
                    23:96:90:01:c4:5f:9e:ab:43:02:0c:75:68:a7:ea:ad:
                    97:95:b9:d3:10:5a:64:24:64:76:83:a0:a1:97:ae:81:
                    f6:1f:10:a5:1c:3e:84:eb:c2:4e:c6:39:a0:95:0d:7a:
                    3b:c8:2f:a4:bf:47:fe:c3:c7:99:20:c0:3b:e2:5c:a2:
                    73:33:e9:55:a6:46:45:f2:16:08:04:3c:0a:68:c3:e7:
                    71:4e:30:02:83:85:87:a1:9f:95:e1:38:f3:60:8e:d6:
                    3d:37:e8:9c:2c:e0:92:b2:f8:d3:11:b1:c7:78:a6:06:
                    79:49:f6:32:7f:3c:1b:25:59:91:78:bb:df:7b:90:af:
                    c0:0b:62:58:f6:f6:97:b1:ad:cc:aa:48:e1:49:02:87:
                    0f:69:da:10:ca:d5:b8:b2:92:3c:ff:15:1c:4a:60:22:
                    d8:a0:54:1d:f5:1f:4e:f4:d9:a4:20:11:c9:51:62:9c:
                    65:76:b7:8e:d4:e8:db:8e:32:b9:f8:8b:30:a9:0a:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:d8:98:87:64:66:04:3c:a2:a0:8b:94:86:be:44:4f:
        a9:7e:93:8c:c1:9d:e2:22:46:15:d2:53:9d:1a:d9:12:
        0b:a2:8e:f6:a4:64:70:5c:ed:07:3b:63:ae:e6:7d:db:
        15:be:23:df:23:b1:07:5d:93:69:b1:6b:b8:89:74:19:
        99:f6:48:ab:a7:b6:12:0f:a9:ab:b0:f1:67:ff:8e:18:
        95:df:dc:02:8b:45:9c:31:4f:59:6c:c7:b7:99:e1:6c:
        1a:4e:cf:6b:b1:54:0d:03:11:73:68:7f:bb:5f:da:94:
        21:f5:11:f7:eb:77:44:4a:11:21:9a:41:ca:d0:ab:fd:
        64:b1:f0:c5:c9:89:cb:7b:20:b3:75:81:f0:81:03:c8:
        52:d3:9e:0d:fd:8a:ed:a1:63:90:e3:b0:2f:2f:f0:5f:
        c4:53:4c:0d:d6:4e:77:39:34:0b:7f:c8:86:33:1e:62:
        fa:3e:8d:16:a2:29:db:db:c6:d1:09:ff:02:eb:4d:d0:
        13:c8:46:e5:db:e8:80:52:ea:8e:a6:0e:ff:69:45:04:
        33:c8:b4:9e:01:b2:e1:ab:75:bc:51:33:1f:99:4e:b7:
        3e:a7:ee:11:a1:d0:e3:48:ea:ef:cd:ef:9c:a2:a2:5c:
        b7:26:42:0e:35:f9:7e:5d:3a:c7:a1:2e:56:87:24:de
    Fingerprint (SHA-256):
        EA:11:47:FC:30:5D:24:2B:D3:93:02:C4:E3:11:4C:C3:C2:CA:59:0C:07:DA:A7:7B:C0:E7:40:93:E0:0C:0D:88
    Fingerprint (SHA1):
        92:F9:80:13:0C:D3:E1:00:A0:F3:94:B1:85:51:18:B1:51:02:96:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13516: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13517: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124459 (0x310fe1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:26 2017
            Not After : Tue Aug 23 12:45:26 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:4b:de:fc:e6:fe:69:12:d9:c6:0a:cb:ca:78:f8:02:
                    f7:2f:72:fb:38:79:df:ef:d8:d5:aa:da:8b:37:6f:59:
                    ab:39:ea:7f:31:ae:7d:bf:14:47:74:ab:e8:22:5c:ee:
                    3b:76:1f:be:6f:d0:c3:fb:d5:1b:17:81:cd:8a:d0:86:
                    0c:96:1c:1c:36:d7:48:04:59:e8:9b:88:2e:46:3c:d2:
                    5d:8c:82:ea:85:0a:9c:72:39:48:54:a4:f3:66:7d:62:
                    7e:63:05:99:e0:19:f2:ac:91:ce:93:50:87:4a:f1:d6:
                    40:b3:71:f1:42:e3:f2:c2:48:2b:c8:45:11:38:e0:f4:
                    6e:57:c0:8c:02:5e:5b:d3:ea:a7:af:e4:4a:40:c0:dd:
                    4f:4a:d0:9f:7e:07:af:33:63:df:5c:37:fe:94:f5:3b:
                    0b:51:45:b1:28:fe:89:39:84:b8:17:1d:c5:8e:a9:1f:
                    d7:41:ce:46:85:fe:ba:b2:28:82:cd:0c:3f:1a:59:86:
                    fe:e3:c2:45:e5:79:ee:6a:c4:9b:61:3a:a3:8c:7e:7e:
                    47:9f:60:41:f8:2a:06:42:95:a3:b4:bd:22:3f:57:d3:
                    1d:ea:3c:11:ba:56:1e:16:61:8c:d4:43:56:1c:ef:c9:
                    de:bb:33:e1:5b:18:41:ed:22:fe:5a:94:f4:65:78:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:27:04:b0:47:97:48:84:20:56:f2:f1:c2:f4:62:8b:
        c6:c5:70:21:75:f2:1c:bb:b9:55:55:eb:c8:5c:16:9b:
        8b:1a:a7:ef:a2:d3:b0:9b:7a:f9:d7:67:d9:de:89:52:
        08:ba:ec:e7:2e:09:67:23:a3:2b:9d:7b:df:a1:d9:30:
        7c:3e:57:80:2d:26:45:91:62:f7:ed:1d:00:95:90:22:
        74:af:78:91:a9:dc:df:45:3b:c7:4f:ae:38:a4:ee:94:
        df:e3:49:d4:a5:98:74:86:04:de:8e:13:4f:f9:5f:07:
        cc:55:c9:ae:09:8a:02:98:1e:3a:05:1a:7c:fe:90:22:
        6d:f2:96:3e:24:57:95:be:ae:0d:85:90:93:6a:2e:bb:
        c0:ae:3a:7a:23:78:dd:f4:b8:e8:42:dc:02:b7:db:46:
        5b:ac:de:8c:ec:2a:e8:e7:c2:c7:50:41:0a:02:7c:42:
        5d:f4:8c:ad:6f:a3:ba:f8:d9:22:48:b2:b6:e8:d1:55:
        8f:c7:ad:71:f1:93:cf:77:d2:ea:16:a2:5f:8e:a7:b1:
        51:26:17:2f:08:23:54:9e:51:40:f6:19:90:35:67:57:
        d2:bf:a0:c9:f4:7f:9d:df:50:db:2a:70:1d:89:7e:e5:
        66:be:78:3d:f8:8d:f0:6b:b2:5e:e6:03:29:b9:20:0b
    Fingerprint (SHA-256):
        39:6F:C1:8A:5C:1A:8D:16:B7:43:63:36:7D:EC:2B:40:38:91:DD:A2:1A:88:82:A8:D1:A3:C1:75:03:BB:F2:91
    Fingerprint (SHA1):
        75:07:A3:AD:82:34:15:1C:E9:6B:53:BD:41:C9:C3:43:CB:F0:0F:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13518: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13519: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124460 (0x310fe1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:28 2017
            Not After : Tue Aug 23 12:45:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:00:11:24:50:00:84:5f:a5:0d:e4:24:b5:c0:5f:4c:
                    47:06:93:ef:d0:73:e6:ae:53:34:90:e5:19:5e:2b:75:
                    4b:1a:dd:bc:7d:71:d8:ce:45:31:e4:f2:86:4a:10:eb:
                    3c:76:00:5f:83:c8:3f:ca:ee:e7:78:0d:11:96:0d:25:
                    4c:a0:5f:58:54:c7:1f:8e:b7:4f:bc:6c:a4:77:b9:2e:
                    96:4e:b8:2f:e7:c3:ea:c9:45:e1:18:b7:6e:e7:47:c2:
                    91:96:03:fc:50:d5:8c:5a:b8:ac:34:bb:30:ef:34:5f:
                    b4:9e:9b:9a:d0:6a:ee:9c:ec:79:ce:fd:e9:02:c2:1a:
                    2b:56:01:1e:8e:13:f3:ca:0a:0b:c3:21:b1:ca:86:5d:
                    ae:dd:3c:b3:27:69:2b:ef:86:8f:82:c4:44:a0:5b:4e:
                    23:55:b4:27:50:26:50:a8:6d:40:76:d7:d9:77:00:a6:
                    45:fe:b4:35:fc:9c:86:bf:34:0a:b7:c2:dd:13:8c:b1:
                    0a:26:7c:f4:0c:27:f6:e7:76:a7:ca:01:1d:cf:68:3b:
                    0f:18:23:cf:20:56:e9:6c:c3:ea:7a:73:9d:ae:4e:fe:
                    52:3a:64:70:91:d0:0d:ff:cd:4d:ad:51:c3:ac:6d:56:
                    2e:c2:c0:cf:de:5e:4c:c2:c0:51:17:f9:07:cb:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:b8:6c:2c:58:5a:e8:c8:1e:ae:be:95:ef:67:93:b1:
        53:b0:71:79:11:59:f5:8d:d1:c4:df:36:d2:7f:8a:03:
        09:ff:9e:cb:e8:d5:33:8b:e2:68:d6:58:ed:3f:11:94:
        3c:24:57:1f:e7:dc:bb:5f:6f:4a:8d:9f:e7:26:c3:6f:
        29:6d:81:36:0c:da:a4:e7:4d:42:0d:67:b4:d5:dd:7d:
        53:18:07:45:58:d5:1d:56:aa:31:16:1e:ea:a8:c6:a0:
        86:4f:1a:56:30:0e:92:93:6d:32:69:cb:83:c9:ae:c0:
        99:1f:23:33:07:97:59:c0:d0:16:70:dd:b9:5a:8f:da:
        1b:35:ac:46:08:93:2a:02:ec:c4:87:82:db:47:84:01:
        9d:c5:a9:68:81:f7:53:db:25:64:e6:62:e2:62:f5:e1:
        64:0f:da:e6:b0:c3:53:34:37:58:12:51:9a:2c:b1:d9:
        ed:38:81:db:da:17:34:d8:9d:43:88:4d:21:88:6c:8a:
        6c:cc:45:27:9f:e8:2f:9d:02:46:af:ff:5a:1e:76:bd:
        de:7c:7a:8d:d4:9c:a6:f0:c7:2c:b0:4c:c7:93:16:bc:
        d7:d0:62:56:ca:ee:58:86:03:36:7a:34:38:9d:8c:ea:
        cb:11:60:07:50:2d:8f:f2:7c:a0:65:c0:4e:25:81:e3
    Fingerprint (SHA-256):
        4F:20:EE:4D:74:5E:49:CA:7B:01:B9:08:6C:87:5A:AA:F2:9B:95:A7:37:7E:B3:42:2A:E8:9B:D0:CF:09:C0:09
    Fingerprint (SHA1):
        08:1E:24:E0:0E:19:FD:BA:E7:7A:32:86:09:4F:9F:44:52:32:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13520: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13521: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13522: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13523: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13524: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124458 (0x310fe1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:25 2017
            Not After : Tue Aug 23 12:45:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:df:79:9b:b6:d9:27:c9:c7:51:7c:ae:de:f5:17:b8:
                    da:66:25:b9:ac:04:39:cd:28:bc:76:d4:48:3a:3b:5c:
                    57:b5:1a:46:e6:b5:3e:fe:d3:7b:4b:57:fd:50:93:e4:
                    c6:ac:29:ce:7e:b9:c1:d9:f0:0c:c7:97:fd:01:10:f5:
                    23:96:90:01:c4:5f:9e:ab:43:02:0c:75:68:a7:ea:ad:
                    97:95:b9:d3:10:5a:64:24:64:76:83:a0:a1:97:ae:81:
                    f6:1f:10:a5:1c:3e:84:eb:c2:4e:c6:39:a0:95:0d:7a:
                    3b:c8:2f:a4:bf:47:fe:c3:c7:99:20:c0:3b:e2:5c:a2:
                    73:33:e9:55:a6:46:45:f2:16:08:04:3c:0a:68:c3:e7:
                    71:4e:30:02:83:85:87:a1:9f:95:e1:38:f3:60:8e:d6:
                    3d:37:e8:9c:2c:e0:92:b2:f8:d3:11:b1:c7:78:a6:06:
                    79:49:f6:32:7f:3c:1b:25:59:91:78:bb:df:7b:90:af:
                    c0:0b:62:58:f6:f6:97:b1:ad:cc:aa:48:e1:49:02:87:
                    0f:69:da:10:ca:d5:b8:b2:92:3c:ff:15:1c:4a:60:22:
                    d8:a0:54:1d:f5:1f:4e:f4:d9:a4:20:11:c9:51:62:9c:
                    65:76:b7:8e:d4:e8:db:8e:32:b9:f8:8b:30:a9:0a:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:d8:98:87:64:66:04:3c:a2:a0:8b:94:86:be:44:4f:
        a9:7e:93:8c:c1:9d:e2:22:46:15:d2:53:9d:1a:d9:12:
        0b:a2:8e:f6:a4:64:70:5c:ed:07:3b:63:ae:e6:7d:db:
        15:be:23:df:23:b1:07:5d:93:69:b1:6b:b8:89:74:19:
        99:f6:48:ab:a7:b6:12:0f:a9:ab:b0:f1:67:ff:8e:18:
        95:df:dc:02:8b:45:9c:31:4f:59:6c:c7:b7:99:e1:6c:
        1a:4e:cf:6b:b1:54:0d:03:11:73:68:7f:bb:5f:da:94:
        21:f5:11:f7:eb:77:44:4a:11:21:9a:41:ca:d0:ab:fd:
        64:b1:f0:c5:c9:89:cb:7b:20:b3:75:81:f0:81:03:c8:
        52:d3:9e:0d:fd:8a:ed:a1:63:90:e3:b0:2f:2f:f0:5f:
        c4:53:4c:0d:d6:4e:77:39:34:0b:7f:c8:86:33:1e:62:
        fa:3e:8d:16:a2:29:db:db:c6:d1:09:ff:02:eb:4d:d0:
        13:c8:46:e5:db:e8:80:52:ea:8e:a6:0e:ff:69:45:04:
        33:c8:b4:9e:01:b2:e1:ab:75:bc:51:33:1f:99:4e:b7:
        3e:a7:ee:11:a1:d0:e3:48:ea:ef:cd:ef:9c:a2:a2:5c:
        b7:26:42:0e:35:f9:7e:5d:3a:c7:a1:2e:56:87:24:de
    Fingerprint (SHA-256):
        EA:11:47:FC:30:5D:24:2B:D3:93:02:C4:E3:11:4C:C3:C2:CA:59:0C:07:DA:A7:7B:C0:E7:40:93:E0:0C:0D:88
    Fingerprint (SHA1):
        92:F9:80:13:0C:D3:E1:00:A0:F3:94:B1:85:51:18:B1:51:02:96:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13525: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13526: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124459 (0x310fe1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:26 2017
            Not After : Tue Aug 23 12:45:26 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:4b:de:fc:e6:fe:69:12:d9:c6:0a:cb:ca:78:f8:02:
                    f7:2f:72:fb:38:79:df:ef:d8:d5:aa:da:8b:37:6f:59:
                    ab:39:ea:7f:31:ae:7d:bf:14:47:74:ab:e8:22:5c:ee:
                    3b:76:1f:be:6f:d0:c3:fb:d5:1b:17:81:cd:8a:d0:86:
                    0c:96:1c:1c:36:d7:48:04:59:e8:9b:88:2e:46:3c:d2:
                    5d:8c:82:ea:85:0a:9c:72:39:48:54:a4:f3:66:7d:62:
                    7e:63:05:99:e0:19:f2:ac:91:ce:93:50:87:4a:f1:d6:
                    40:b3:71:f1:42:e3:f2:c2:48:2b:c8:45:11:38:e0:f4:
                    6e:57:c0:8c:02:5e:5b:d3:ea:a7:af:e4:4a:40:c0:dd:
                    4f:4a:d0:9f:7e:07:af:33:63:df:5c:37:fe:94:f5:3b:
                    0b:51:45:b1:28:fe:89:39:84:b8:17:1d:c5:8e:a9:1f:
                    d7:41:ce:46:85:fe:ba:b2:28:82:cd:0c:3f:1a:59:86:
                    fe:e3:c2:45:e5:79:ee:6a:c4:9b:61:3a:a3:8c:7e:7e:
                    47:9f:60:41:f8:2a:06:42:95:a3:b4:bd:22:3f:57:d3:
                    1d:ea:3c:11:ba:56:1e:16:61:8c:d4:43:56:1c:ef:c9:
                    de:bb:33:e1:5b:18:41:ed:22:fe:5a:94:f4:65:78:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:27:04:b0:47:97:48:84:20:56:f2:f1:c2:f4:62:8b:
        c6:c5:70:21:75:f2:1c:bb:b9:55:55:eb:c8:5c:16:9b:
        8b:1a:a7:ef:a2:d3:b0:9b:7a:f9:d7:67:d9:de:89:52:
        08:ba:ec:e7:2e:09:67:23:a3:2b:9d:7b:df:a1:d9:30:
        7c:3e:57:80:2d:26:45:91:62:f7:ed:1d:00:95:90:22:
        74:af:78:91:a9:dc:df:45:3b:c7:4f:ae:38:a4:ee:94:
        df:e3:49:d4:a5:98:74:86:04:de:8e:13:4f:f9:5f:07:
        cc:55:c9:ae:09:8a:02:98:1e:3a:05:1a:7c:fe:90:22:
        6d:f2:96:3e:24:57:95:be:ae:0d:85:90:93:6a:2e:bb:
        c0:ae:3a:7a:23:78:dd:f4:b8:e8:42:dc:02:b7:db:46:
        5b:ac:de:8c:ec:2a:e8:e7:c2:c7:50:41:0a:02:7c:42:
        5d:f4:8c:ad:6f:a3:ba:f8:d9:22:48:b2:b6:e8:d1:55:
        8f:c7:ad:71:f1:93:cf:77:d2:ea:16:a2:5f:8e:a7:b1:
        51:26:17:2f:08:23:54:9e:51:40:f6:19:90:35:67:57:
        d2:bf:a0:c9:f4:7f:9d:df:50:db:2a:70:1d:89:7e:e5:
        66:be:78:3d:f8:8d:f0:6b:b2:5e:e6:03:29:b9:20:0b
    Fingerprint (SHA-256):
        39:6F:C1:8A:5C:1A:8D:16:B7:43:63:36:7D:EC:2B:40:38:91:DD:A2:1A:88:82:A8:D1:A3:C1:75:03:BB:F2:91
    Fingerprint (SHA1):
        75:07:A3:AD:82:34:15:1C:E9:6B:53:BD:41:C9:C3:43:CB:F0:0F:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13527: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13528: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124460 (0x310fe1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:28 2017
            Not After : Tue Aug 23 12:45:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:00:11:24:50:00:84:5f:a5:0d:e4:24:b5:c0:5f:4c:
                    47:06:93:ef:d0:73:e6:ae:53:34:90:e5:19:5e:2b:75:
                    4b:1a:dd:bc:7d:71:d8:ce:45:31:e4:f2:86:4a:10:eb:
                    3c:76:00:5f:83:c8:3f:ca:ee:e7:78:0d:11:96:0d:25:
                    4c:a0:5f:58:54:c7:1f:8e:b7:4f:bc:6c:a4:77:b9:2e:
                    96:4e:b8:2f:e7:c3:ea:c9:45:e1:18:b7:6e:e7:47:c2:
                    91:96:03:fc:50:d5:8c:5a:b8:ac:34:bb:30:ef:34:5f:
                    b4:9e:9b:9a:d0:6a:ee:9c:ec:79:ce:fd:e9:02:c2:1a:
                    2b:56:01:1e:8e:13:f3:ca:0a:0b:c3:21:b1:ca:86:5d:
                    ae:dd:3c:b3:27:69:2b:ef:86:8f:82:c4:44:a0:5b:4e:
                    23:55:b4:27:50:26:50:a8:6d:40:76:d7:d9:77:00:a6:
                    45:fe:b4:35:fc:9c:86:bf:34:0a:b7:c2:dd:13:8c:b1:
                    0a:26:7c:f4:0c:27:f6:e7:76:a7:ca:01:1d:cf:68:3b:
                    0f:18:23:cf:20:56:e9:6c:c3:ea:7a:73:9d:ae:4e:fe:
                    52:3a:64:70:91:d0:0d:ff:cd:4d:ad:51:c3:ac:6d:56:
                    2e:c2:c0:cf:de:5e:4c:c2:c0:51:17:f9:07:cb:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:b8:6c:2c:58:5a:e8:c8:1e:ae:be:95:ef:67:93:b1:
        53:b0:71:79:11:59:f5:8d:d1:c4:df:36:d2:7f:8a:03:
        09:ff:9e:cb:e8:d5:33:8b:e2:68:d6:58:ed:3f:11:94:
        3c:24:57:1f:e7:dc:bb:5f:6f:4a:8d:9f:e7:26:c3:6f:
        29:6d:81:36:0c:da:a4:e7:4d:42:0d:67:b4:d5:dd:7d:
        53:18:07:45:58:d5:1d:56:aa:31:16:1e:ea:a8:c6:a0:
        86:4f:1a:56:30:0e:92:93:6d:32:69:cb:83:c9:ae:c0:
        99:1f:23:33:07:97:59:c0:d0:16:70:dd:b9:5a:8f:da:
        1b:35:ac:46:08:93:2a:02:ec:c4:87:82:db:47:84:01:
        9d:c5:a9:68:81:f7:53:db:25:64:e6:62:e2:62:f5:e1:
        64:0f:da:e6:b0:c3:53:34:37:58:12:51:9a:2c:b1:d9:
        ed:38:81:db:da:17:34:d8:9d:43:88:4d:21:88:6c:8a:
        6c:cc:45:27:9f:e8:2f:9d:02:46:af:ff:5a:1e:76:bd:
        de:7c:7a:8d:d4:9c:a6:f0:c7:2c:b0:4c:c7:93:16:bc:
        d7:d0:62:56:ca:ee:58:86:03:36:7a:34:38:9d:8c:ea:
        cb:11:60:07:50:2d:8f:f2:7c:a0:65:c0:4e:25:81:e3
    Fingerprint (SHA-256):
        4F:20:EE:4D:74:5E:49:CA:7B:01:B9:08:6C:87:5A:AA:F2:9B:95:A7:37:7E:B3:42:2A:E8:9B:D0:CF:09:C0:09
    Fingerprint (SHA1):
        08:1E:24:E0:0E:19:FD:BA:E7:7A:32:86:09:4F:9F:44:52:32:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13529: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13530: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124458 (0x310fe1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:25 2017
            Not After : Tue Aug 23 12:45:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:df:79:9b:b6:d9:27:c9:c7:51:7c:ae:de:f5:17:b8:
                    da:66:25:b9:ac:04:39:cd:28:bc:76:d4:48:3a:3b:5c:
                    57:b5:1a:46:e6:b5:3e:fe:d3:7b:4b:57:fd:50:93:e4:
                    c6:ac:29:ce:7e:b9:c1:d9:f0:0c:c7:97:fd:01:10:f5:
                    23:96:90:01:c4:5f:9e:ab:43:02:0c:75:68:a7:ea:ad:
                    97:95:b9:d3:10:5a:64:24:64:76:83:a0:a1:97:ae:81:
                    f6:1f:10:a5:1c:3e:84:eb:c2:4e:c6:39:a0:95:0d:7a:
                    3b:c8:2f:a4:bf:47:fe:c3:c7:99:20:c0:3b:e2:5c:a2:
                    73:33:e9:55:a6:46:45:f2:16:08:04:3c:0a:68:c3:e7:
                    71:4e:30:02:83:85:87:a1:9f:95:e1:38:f3:60:8e:d6:
                    3d:37:e8:9c:2c:e0:92:b2:f8:d3:11:b1:c7:78:a6:06:
                    79:49:f6:32:7f:3c:1b:25:59:91:78:bb:df:7b:90:af:
                    c0:0b:62:58:f6:f6:97:b1:ad:cc:aa:48:e1:49:02:87:
                    0f:69:da:10:ca:d5:b8:b2:92:3c:ff:15:1c:4a:60:22:
                    d8:a0:54:1d:f5:1f:4e:f4:d9:a4:20:11:c9:51:62:9c:
                    65:76:b7:8e:d4:e8:db:8e:32:b9:f8:8b:30:a9:0a:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:d8:98:87:64:66:04:3c:a2:a0:8b:94:86:be:44:4f:
        a9:7e:93:8c:c1:9d:e2:22:46:15:d2:53:9d:1a:d9:12:
        0b:a2:8e:f6:a4:64:70:5c:ed:07:3b:63:ae:e6:7d:db:
        15:be:23:df:23:b1:07:5d:93:69:b1:6b:b8:89:74:19:
        99:f6:48:ab:a7:b6:12:0f:a9:ab:b0:f1:67:ff:8e:18:
        95:df:dc:02:8b:45:9c:31:4f:59:6c:c7:b7:99:e1:6c:
        1a:4e:cf:6b:b1:54:0d:03:11:73:68:7f:bb:5f:da:94:
        21:f5:11:f7:eb:77:44:4a:11:21:9a:41:ca:d0:ab:fd:
        64:b1:f0:c5:c9:89:cb:7b:20:b3:75:81:f0:81:03:c8:
        52:d3:9e:0d:fd:8a:ed:a1:63:90:e3:b0:2f:2f:f0:5f:
        c4:53:4c:0d:d6:4e:77:39:34:0b:7f:c8:86:33:1e:62:
        fa:3e:8d:16:a2:29:db:db:c6:d1:09:ff:02:eb:4d:d0:
        13:c8:46:e5:db:e8:80:52:ea:8e:a6:0e:ff:69:45:04:
        33:c8:b4:9e:01:b2:e1:ab:75:bc:51:33:1f:99:4e:b7:
        3e:a7:ee:11:a1:d0:e3:48:ea:ef:cd:ef:9c:a2:a2:5c:
        b7:26:42:0e:35:f9:7e:5d:3a:c7:a1:2e:56:87:24:de
    Fingerprint (SHA-256):
        EA:11:47:FC:30:5D:24:2B:D3:93:02:C4:E3:11:4C:C3:C2:CA:59:0C:07:DA:A7:7B:C0:E7:40:93:E0:0C:0D:88
    Fingerprint (SHA1):
        92:F9:80:13:0C:D3:E1:00:A0:F3:94:B1:85:51:18:B1:51:02:96:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13531: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124458 (0x310fe1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:25 2017
            Not After : Tue Aug 23 12:45:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:df:79:9b:b6:d9:27:c9:c7:51:7c:ae:de:f5:17:b8:
                    da:66:25:b9:ac:04:39:cd:28:bc:76:d4:48:3a:3b:5c:
                    57:b5:1a:46:e6:b5:3e:fe:d3:7b:4b:57:fd:50:93:e4:
                    c6:ac:29:ce:7e:b9:c1:d9:f0:0c:c7:97:fd:01:10:f5:
                    23:96:90:01:c4:5f:9e:ab:43:02:0c:75:68:a7:ea:ad:
                    97:95:b9:d3:10:5a:64:24:64:76:83:a0:a1:97:ae:81:
                    f6:1f:10:a5:1c:3e:84:eb:c2:4e:c6:39:a0:95:0d:7a:
                    3b:c8:2f:a4:bf:47:fe:c3:c7:99:20:c0:3b:e2:5c:a2:
                    73:33:e9:55:a6:46:45:f2:16:08:04:3c:0a:68:c3:e7:
                    71:4e:30:02:83:85:87:a1:9f:95:e1:38:f3:60:8e:d6:
                    3d:37:e8:9c:2c:e0:92:b2:f8:d3:11:b1:c7:78:a6:06:
                    79:49:f6:32:7f:3c:1b:25:59:91:78:bb:df:7b:90:af:
                    c0:0b:62:58:f6:f6:97:b1:ad:cc:aa:48:e1:49:02:87:
                    0f:69:da:10:ca:d5:b8:b2:92:3c:ff:15:1c:4a:60:22:
                    d8:a0:54:1d:f5:1f:4e:f4:d9:a4:20:11:c9:51:62:9c:
                    65:76:b7:8e:d4:e8:db:8e:32:b9:f8:8b:30:a9:0a:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:d8:98:87:64:66:04:3c:a2:a0:8b:94:86:be:44:4f:
        a9:7e:93:8c:c1:9d:e2:22:46:15:d2:53:9d:1a:d9:12:
        0b:a2:8e:f6:a4:64:70:5c:ed:07:3b:63:ae:e6:7d:db:
        15:be:23:df:23:b1:07:5d:93:69:b1:6b:b8:89:74:19:
        99:f6:48:ab:a7:b6:12:0f:a9:ab:b0:f1:67:ff:8e:18:
        95:df:dc:02:8b:45:9c:31:4f:59:6c:c7:b7:99:e1:6c:
        1a:4e:cf:6b:b1:54:0d:03:11:73:68:7f:bb:5f:da:94:
        21:f5:11:f7:eb:77:44:4a:11:21:9a:41:ca:d0:ab:fd:
        64:b1:f0:c5:c9:89:cb:7b:20:b3:75:81:f0:81:03:c8:
        52:d3:9e:0d:fd:8a:ed:a1:63:90:e3:b0:2f:2f:f0:5f:
        c4:53:4c:0d:d6:4e:77:39:34:0b:7f:c8:86:33:1e:62:
        fa:3e:8d:16:a2:29:db:db:c6:d1:09:ff:02:eb:4d:d0:
        13:c8:46:e5:db:e8:80:52:ea:8e:a6:0e:ff:69:45:04:
        33:c8:b4:9e:01:b2:e1:ab:75:bc:51:33:1f:99:4e:b7:
        3e:a7:ee:11:a1:d0:e3:48:ea:ef:cd:ef:9c:a2:a2:5c:
        b7:26:42:0e:35:f9:7e:5d:3a:c7:a1:2e:56:87:24:de
    Fingerprint (SHA-256):
        EA:11:47:FC:30:5D:24:2B:D3:93:02:C4:E3:11:4C:C3:C2:CA:59:0C:07:DA:A7:7B:C0:E7:40:93:E0:0C:0D:88
    Fingerprint (SHA1):
        92:F9:80:13:0C:D3:E1:00:A0:F3:94:B1:85:51:18:B1:51:02:96:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13532: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124459 (0x310fe1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:26 2017
            Not After : Tue Aug 23 12:45:26 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:4b:de:fc:e6:fe:69:12:d9:c6:0a:cb:ca:78:f8:02:
                    f7:2f:72:fb:38:79:df:ef:d8:d5:aa:da:8b:37:6f:59:
                    ab:39:ea:7f:31:ae:7d:bf:14:47:74:ab:e8:22:5c:ee:
                    3b:76:1f:be:6f:d0:c3:fb:d5:1b:17:81:cd:8a:d0:86:
                    0c:96:1c:1c:36:d7:48:04:59:e8:9b:88:2e:46:3c:d2:
                    5d:8c:82:ea:85:0a:9c:72:39:48:54:a4:f3:66:7d:62:
                    7e:63:05:99:e0:19:f2:ac:91:ce:93:50:87:4a:f1:d6:
                    40:b3:71:f1:42:e3:f2:c2:48:2b:c8:45:11:38:e0:f4:
                    6e:57:c0:8c:02:5e:5b:d3:ea:a7:af:e4:4a:40:c0:dd:
                    4f:4a:d0:9f:7e:07:af:33:63:df:5c:37:fe:94:f5:3b:
                    0b:51:45:b1:28:fe:89:39:84:b8:17:1d:c5:8e:a9:1f:
                    d7:41:ce:46:85:fe:ba:b2:28:82:cd:0c:3f:1a:59:86:
                    fe:e3:c2:45:e5:79:ee:6a:c4:9b:61:3a:a3:8c:7e:7e:
                    47:9f:60:41:f8:2a:06:42:95:a3:b4:bd:22:3f:57:d3:
                    1d:ea:3c:11:ba:56:1e:16:61:8c:d4:43:56:1c:ef:c9:
                    de:bb:33:e1:5b:18:41:ed:22:fe:5a:94:f4:65:78:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:27:04:b0:47:97:48:84:20:56:f2:f1:c2:f4:62:8b:
        c6:c5:70:21:75:f2:1c:bb:b9:55:55:eb:c8:5c:16:9b:
        8b:1a:a7:ef:a2:d3:b0:9b:7a:f9:d7:67:d9:de:89:52:
        08:ba:ec:e7:2e:09:67:23:a3:2b:9d:7b:df:a1:d9:30:
        7c:3e:57:80:2d:26:45:91:62:f7:ed:1d:00:95:90:22:
        74:af:78:91:a9:dc:df:45:3b:c7:4f:ae:38:a4:ee:94:
        df:e3:49:d4:a5:98:74:86:04:de:8e:13:4f:f9:5f:07:
        cc:55:c9:ae:09:8a:02:98:1e:3a:05:1a:7c:fe:90:22:
        6d:f2:96:3e:24:57:95:be:ae:0d:85:90:93:6a:2e:bb:
        c0:ae:3a:7a:23:78:dd:f4:b8:e8:42:dc:02:b7:db:46:
        5b:ac:de:8c:ec:2a:e8:e7:c2:c7:50:41:0a:02:7c:42:
        5d:f4:8c:ad:6f:a3:ba:f8:d9:22:48:b2:b6:e8:d1:55:
        8f:c7:ad:71:f1:93:cf:77:d2:ea:16:a2:5f:8e:a7:b1:
        51:26:17:2f:08:23:54:9e:51:40:f6:19:90:35:67:57:
        d2:bf:a0:c9:f4:7f:9d:df:50:db:2a:70:1d:89:7e:e5:
        66:be:78:3d:f8:8d:f0:6b:b2:5e:e6:03:29:b9:20:0b
    Fingerprint (SHA-256):
        39:6F:C1:8A:5C:1A:8D:16:B7:43:63:36:7D:EC:2B:40:38:91:DD:A2:1A:88:82:A8:D1:A3:C1:75:03:BB:F2:91
    Fingerprint (SHA1):
        75:07:A3:AD:82:34:15:1C:E9:6B:53:BD:41:C9:C3:43:CB:F0:0F:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13533: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124459 (0x310fe1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:26 2017
            Not After : Tue Aug 23 12:45:26 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:4b:de:fc:e6:fe:69:12:d9:c6:0a:cb:ca:78:f8:02:
                    f7:2f:72:fb:38:79:df:ef:d8:d5:aa:da:8b:37:6f:59:
                    ab:39:ea:7f:31:ae:7d:bf:14:47:74:ab:e8:22:5c:ee:
                    3b:76:1f:be:6f:d0:c3:fb:d5:1b:17:81:cd:8a:d0:86:
                    0c:96:1c:1c:36:d7:48:04:59:e8:9b:88:2e:46:3c:d2:
                    5d:8c:82:ea:85:0a:9c:72:39:48:54:a4:f3:66:7d:62:
                    7e:63:05:99:e0:19:f2:ac:91:ce:93:50:87:4a:f1:d6:
                    40:b3:71:f1:42:e3:f2:c2:48:2b:c8:45:11:38:e0:f4:
                    6e:57:c0:8c:02:5e:5b:d3:ea:a7:af:e4:4a:40:c0:dd:
                    4f:4a:d0:9f:7e:07:af:33:63:df:5c:37:fe:94:f5:3b:
                    0b:51:45:b1:28:fe:89:39:84:b8:17:1d:c5:8e:a9:1f:
                    d7:41:ce:46:85:fe:ba:b2:28:82:cd:0c:3f:1a:59:86:
                    fe:e3:c2:45:e5:79:ee:6a:c4:9b:61:3a:a3:8c:7e:7e:
                    47:9f:60:41:f8:2a:06:42:95:a3:b4:bd:22:3f:57:d3:
                    1d:ea:3c:11:ba:56:1e:16:61:8c:d4:43:56:1c:ef:c9:
                    de:bb:33:e1:5b:18:41:ed:22:fe:5a:94:f4:65:78:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:27:04:b0:47:97:48:84:20:56:f2:f1:c2:f4:62:8b:
        c6:c5:70:21:75:f2:1c:bb:b9:55:55:eb:c8:5c:16:9b:
        8b:1a:a7:ef:a2:d3:b0:9b:7a:f9:d7:67:d9:de:89:52:
        08:ba:ec:e7:2e:09:67:23:a3:2b:9d:7b:df:a1:d9:30:
        7c:3e:57:80:2d:26:45:91:62:f7:ed:1d:00:95:90:22:
        74:af:78:91:a9:dc:df:45:3b:c7:4f:ae:38:a4:ee:94:
        df:e3:49:d4:a5:98:74:86:04:de:8e:13:4f:f9:5f:07:
        cc:55:c9:ae:09:8a:02:98:1e:3a:05:1a:7c:fe:90:22:
        6d:f2:96:3e:24:57:95:be:ae:0d:85:90:93:6a:2e:bb:
        c0:ae:3a:7a:23:78:dd:f4:b8:e8:42:dc:02:b7:db:46:
        5b:ac:de:8c:ec:2a:e8:e7:c2:c7:50:41:0a:02:7c:42:
        5d:f4:8c:ad:6f:a3:ba:f8:d9:22:48:b2:b6:e8:d1:55:
        8f:c7:ad:71:f1:93:cf:77:d2:ea:16:a2:5f:8e:a7:b1:
        51:26:17:2f:08:23:54:9e:51:40:f6:19:90:35:67:57:
        d2:bf:a0:c9:f4:7f:9d:df:50:db:2a:70:1d:89:7e:e5:
        66:be:78:3d:f8:8d:f0:6b:b2:5e:e6:03:29:b9:20:0b
    Fingerprint (SHA-256):
        39:6F:C1:8A:5C:1A:8D:16:B7:43:63:36:7D:EC:2B:40:38:91:DD:A2:1A:88:82:A8:D1:A3:C1:75:03:BB:F2:91
    Fingerprint (SHA1):
        75:07:A3:AD:82:34:15:1C:E9:6B:53:BD:41:C9:C3:43:CB:F0:0F:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13534: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124460 (0x310fe1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:28 2017
            Not After : Tue Aug 23 12:45:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:00:11:24:50:00:84:5f:a5:0d:e4:24:b5:c0:5f:4c:
                    47:06:93:ef:d0:73:e6:ae:53:34:90:e5:19:5e:2b:75:
                    4b:1a:dd:bc:7d:71:d8:ce:45:31:e4:f2:86:4a:10:eb:
                    3c:76:00:5f:83:c8:3f:ca:ee:e7:78:0d:11:96:0d:25:
                    4c:a0:5f:58:54:c7:1f:8e:b7:4f:bc:6c:a4:77:b9:2e:
                    96:4e:b8:2f:e7:c3:ea:c9:45:e1:18:b7:6e:e7:47:c2:
                    91:96:03:fc:50:d5:8c:5a:b8:ac:34:bb:30:ef:34:5f:
                    b4:9e:9b:9a:d0:6a:ee:9c:ec:79:ce:fd:e9:02:c2:1a:
                    2b:56:01:1e:8e:13:f3:ca:0a:0b:c3:21:b1:ca:86:5d:
                    ae:dd:3c:b3:27:69:2b:ef:86:8f:82:c4:44:a0:5b:4e:
                    23:55:b4:27:50:26:50:a8:6d:40:76:d7:d9:77:00:a6:
                    45:fe:b4:35:fc:9c:86:bf:34:0a:b7:c2:dd:13:8c:b1:
                    0a:26:7c:f4:0c:27:f6:e7:76:a7:ca:01:1d:cf:68:3b:
                    0f:18:23:cf:20:56:e9:6c:c3:ea:7a:73:9d:ae:4e:fe:
                    52:3a:64:70:91:d0:0d:ff:cd:4d:ad:51:c3:ac:6d:56:
                    2e:c2:c0:cf:de:5e:4c:c2:c0:51:17:f9:07:cb:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:b8:6c:2c:58:5a:e8:c8:1e:ae:be:95:ef:67:93:b1:
        53:b0:71:79:11:59:f5:8d:d1:c4:df:36:d2:7f:8a:03:
        09:ff:9e:cb:e8:d5:33:8b:e2:68:d6:58:ed:3f:11:94:
        3c:24:57:1f:e7:dc:bb:5f:6f:4a:8d:9f:e7:26:c3:6f:
        29:6d:81:36:0c:da:a4:e7:4d:42:0d:67:b4:d5:dd:7d:
        53:18:07:45:58:d5:1d:56:aa:31:16:1e:ea:a8:c6:a0:
        86:4f:1a:56:30:0e:92:93:6d:32:69:cb:83:c9:ae:c0:
        99:1f:23:33:07:97:59:c0:d0:16:70:dd:b9:5a:8f:da:
        1b:35:ac:46:08:93:2a:02:ec:c4:87:82:db:47:84:01:
        9d:c5:a9:68:81:f7:53:db:25:64:e6:62:e2:62:f5:e1:
        64:0f:da:e6:b0:c3:53:34:37:58:12:51:9a:2c:b1:d9:
        ed:38:81:db:da:17:34:d8:9d:43:88:4d:21:88:6c:8a:
        6c:cc:45:27:9f:e8:2f:9d:02:46:af:ff:5a:1e:76:bd:
        de:7c:7a:8d:d4:9c:a6:f0:c7:2c:b0:4c:c7:93:16:bc:
        d7:d0:62:56:ca:ee:58:86:03:36:7a:34:38:9d:8c:ea:
        cb:11:60:07:50:2d:8f:f2:7c:a0:65:c0:4e:25:81:e3
    Fingerprint (SHA-256):
        4F:20:EE:4D:74:5E:49:CA:7B:01:B9:08:6C:87:5A:AA:F2:9B:95:A7:37:7E:B3:42:2A:E8:9B:D0:CF:09:C0:09
    Fingerprint (SHA1):
        08:1E:24:E0:0E:19:FD:BA:E7:7A:32:86:09:4F:9F:44:52:32:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13535: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124460 (0x310fe1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:28 2017
            Not After : Tue Aug 23 12:45:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:00:11:24:50:00:84:5f:a5:0d:e4:24:b5:c0:5f:4c:
                    47:06:93:ef:d0:73:e6:ae:53:34:90:e5:19:5e:2b:75:
                    4b:1a:dd:bc:7d:71:d8:ce:45:31:e4:f2:86:4a:10:eb:
                    3c:76:00:5f:83:c8:3f:ca:ee:e7:78:0d:11:96:0d:25:
                    4c:a0:5f:58:54:c7:1f:8e:b7:4f:bc:6c:a4:77:b9:2e:
                    96:4e:b8:2f:e7:c3:ea:c9:45:e1:18:b7:6e:e7:47:c2:
                    91:96:03:fc:50:d5:8c:5a:b8:ac:34:bb:30:ef:34:5f:
                    b4:9e:9b:9a:d0:6a:ee:9c:ec:79:ce:fd:e9:02:c2:1a:
                    2b:56:01:1e:8e:13:f3:ca:0a:0b:c3:21:b1:ca:86:5d:
                    ae:dd:3c:b3:27:69:2b:ef:86:8f:82:c4:44:a0:5b:4e:
                    23:55:b4:27:50:26:50:a8:6d:40:76:d7:d9:77:00:a6:
                    45:fe:b4:35:fc:9c:86:bf:34:0a:b7:c2:dd:13:8c:b1:
                    0a:26:7c:f4:0c:27:f6:e7:76:a7:ca:01:1d:cf:68:3b:
                    0f:18:23:cf:20:56:e9:6c:c3:ea:7a:73:9d:ae:4e:fe:
                    52:3a:64:70:91:d0:0d:ff:cd:4d:ad:51:c3:ac:6d:56:
                    2e:c2:c0:cf:de:5e:4c:c2:c0:51:17:f9:07:cb:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:b8:6c:2c:58:5a:e8:c8:1e:ae:be:95:ef:67:93:b1:
        53:b0:71:79:11:59:f5:8d:d1:c4:df:36:d2:7f:8a:03:
        09:ff:9e:cb:e8:d5:33:8b:e2:68:d6:58:ed:3f:11:94:
        3c:24:57:1f:e7:dc:bb:5f:6f:4a:8d:9f:e7:26:c3:6f:
        29:6d:81:36:0c:da:a4:e7:4d:42:0d:67:b4:d5:dd:7d:
        53:18:07:45:58:d5:1d:56:aa:31:16:1e:ea:a8:c6:a0:
        86:4f:1a:56:30:0e:92:93:6d:32:69:cb:83:c9:ae:c0:
        99:1f:23:33:07:97:59:c0:d0:16:70:dd:b9:5a:8f:da:
        1b:35:ac:46:08:93:2a:02:ec:c4:87:82:db:47:84:01:
        9d:c5:a9:68:81:f7:53:db:25:64:e6:62:e2:62:f5:e1:
        64:0f:da:e6:b0:c3:53:34:37:58:12:51:9a:2c:b1:d9:
        ed:38:81:db:da:17:34:d8:9d:43:88:4d:21:88:6c:8a:
        6c:cc:45:27:9f:e8:2f:9d:02:46:af:ff:5a:1e:76:bd:
        de:7c:7a:8d:d4:9c:a6:f0:c7:2c:b0:4c:c7:93:16:bc:
        d7:d0:62:56:ca:ee:58:86:03:36:7a:34:38:9d:8c:ea:
        cb:11:60:07:50:2d:8f:f2:7c:a0:65:c0:4e:25:81:e3
    Fingerprint (SHA-256):
        4F:20:EE:4D:74:5E:49:CA:7B:01:B9:08:6C:87:5A:AA:F2:9B:95:A7:37:7E:B3:42:2A:E8:9B:D0:CF:09:C0:09
    Fingerprint (SHA1):
        08:1E:24:E0:0E:19:FD:BA:E7:7A:32:86:09:4F:9F:44:52:32:9E:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13536: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #13537: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124463 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13538: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #13539: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13540: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13541: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823124464   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13542: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13543: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13544: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13545: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124465   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13546: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13547: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13548: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13549: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 823124466   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13550: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13551: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #13552: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13553: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823124467   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13554: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13555: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #13556: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13557: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823124468   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13558: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13559: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #13560: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13561: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 823124469   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13562: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13563: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13564: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #13565: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #13566: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13567: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #13568: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124463 (0x310fe1ef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:32 2017
            Not After : Tue Aug 23 12:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:9d:46:50:62:94:f9:f5:8f:82:61:30:07:e1:67:ab:
                    9c:d2:f9:4a:2f:c4:19:d4:f3:e9:d3:b4:bf:97:10:7d:
                    6d:73:07:c9:29:8f:29:7e:6c:f2:c7:71:90:7c:6f:5d:
                    8a:07:ba:42:d1:b2:94:78:c4:2f:df:e8:fa:fb:6d:d9:
                    11:b6:e8:db:40:15:38:33:a1:b5:d8:94:47:f2:0b:5e:
                    d5:de:f7:cf:ff:e8:3b:de:27:eb:81:59:24:06:60:4f:
                    9b:7e:04:03:b8:7a:d8:f2:ac:18:9d:2a:9d:c1:51:42:
                    aa:94:c3:e3:06:a8:37:08:09:85:c8:b4:cf:96:73:3e:
                    a0:f6:4b:d3:25:d9:89:d2:83:6a:0b:76:59:58:09:36:
                    36:ec:ed:dc:6b:40:8c:64:a4:36:49:86:61:74:34:ca:
                    60:33:94:0a:97:6c:4a:a0:bc:60:19:19:2f:14:fe:f2:
                    2c:a8:38:a3:e5:40:1e:fd:50:81:d0:c7:65:f9:11:dd:
                    2a:1d:0b:d6:47:8f:ff:f1:c5:20:e8:37:e4:2f:b5:d2:
                    26:11:57:58:89:03:c2:12:49:a9:c1:2c:2d:ac:57:a1:
                    d4:18:29:8a:9f:ba:06:ff:cd:a6:59:ac:ff:22:b6:dc:
                    00:53:45:d4:1c:e6:f6:15:c6:4b:49:8c:fc:b9:48:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:9e:a0:53:72:52:e2:17:88:86:b7:b9:47:d6:99:1e:
        7f:6d:6c:90:cf:9e:5e:91:9a:18:a5:5e:55:a9:ce:e6:
        3b:a8:76:b0:04:37:9b:53:85:1c:41:6d:8e:c6:b0:8c:
        33:1c:25:95:9b:14:42:f9:a9:2b:80:ca:28:1f:55:4b:
        64:ef:f1:76:1e:12:48:4e:77:ad:39:4b:36:4e:22:cc:
        ee:31:1b:34:23:89:3c:a7:1c:55:4a:a4:82:1b:f9:77:
        39:3c:02:58:4b:60:d6:87:5f:6e:f4:8f:4c:2c:6c:e4:
        52:86:7e:fe:e7:fa:9b:a2:af:e3:94:b4:6f:89:d6:1e:
        64:21:ec:b7:94:ef:88:33:4d:68:4b:90:76:0e:b4:86:
        0b:49:92:57:ef:4f:24:d3:e6:db:60:0e:aa:76:1b:e8:
        0f:f7:9d:2f:ad:5a:9c:b0:06:37:20:9b:77:b4:5b:0d:
        33:22:8f:9f:36:3d:41:86:05:72:25:ae:7a:c0:b7:ad:
        44:0a:3f:24:20:af:ef:45:85:16:7d:cd:6e:27:63:13:
        7b:52:b5:2c:ab:19:fa:db:c3:4e:47:cb:ca:7a:25:38:
        71:6a:86:0d:e6:2b:db:7f:c3:5b:8d:09:6d:f7:da:94:
        f3:29:d7:aa:de:85:79:00:f7:4e:64:fa:85:ab:98:db
    Fingerprint (SHA-256):
        65:93:58:87:71:5E:88:DA:63:3B:55:39:85:4A:85:7A:D4:02:6F:15:5E:CA:D8:53:E4:15:1E:27:23:FB:BF:99
    Fingerprint (SHA1):
        50:8E:22:CF:5C:3E:0A:74:FF:12:0F:91:F4:49:4B:E3:12:A0:6E:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13569: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13570: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13571: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13572: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124463 (0x310fe1ef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:32 2017
            Not After : Tue Aug 23 12:45:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:9d:46:50:62:94:f9:f5:8f:82:61:30:07:e1:67:ab:
                    9c:d2:f9:4a:2f:c4:19:d4:f3:e9:d3:b4:bf:97:10:7d:
                    6d:73:07:c9:29:8f:29:7e:6c:f2:c7:71:90:7c:6f:5d:
                    8a:07:ba:42:d1:b2:94:78:c4:2f:df:e8:fa:fb:6d:d9:
                    11:b6:e8:db:40:15:38:33:a1:b5:d8:94:47:f2:0b:5e:
                    d5:de:f7:cf:ff:e8:3b:de:27:eb:81:59:24:06:60:4f:
                    9b:7e:04:03:b8:7a:d8:f2:ac:18:9d:2a:9d:c1:51:42:
                    aa:94:c3:e3:06:a8:37:08:09:85:c8:b4:cf:96:73:3e:
                    a0:f6:4b:d3:25:d9:89:d2:83:6a:0b:76:59:58:09:36:
                    36:ec:ed:dc:6b:40:8c:64:a4:36:49:86:61:74:34:ca:
                    60:33:94:0a:97:6c:4a:a0:bc:60:19:19:2f:14:fe:f2:
                    2c:a8:38:a3:e5:40:1e:fd:50:81:d0:c7:65:f9:11:dd:
                    2a:1d:0b:d6:47:8f:ff:f1:c5:20:e8:37:e4:2f:b5:d2:
                    26:11:57:58:89:03:c2:12:49:a9:c1:2c:2d:ac:57:a1:
                    d4:18:29:8a:9f:ba:06:ff:cd:a6:59:ac:ff:22:b6:dc:
                    00:53:45:d4:1c:e6:f6:15:c6:4b:49:8c:fc:b9:48:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:9e:a0:53:72:52:e2:17:88:86:b7:b9:47:d6:99:1e:
        7f:6d:6c:90:cf:9e:5e:91:9a:18:a5:5e:55:a9:ce:e6:
        3b:a8:76:b0:04:37:9b:53:85:1c:41:6d:8e:c6:b0:8c:
        33:1c:25:95:9b:14:42:f9:a9:2b:80:ca:28:1f:55:4b:
        64:ef:f1:76:1e:12:48:4e:77:ad:39:4b:36:4e:22:cc:
        ee:31:1b:34:23:89:3c:a7:1c:55:4a:a4:82:1b:f9:77:
        39:3c:02:58:4b:60:d6:87:5f:6e:f4:8f:4c:2c:6c:e4:
        52:86:7e:fe:e7:fa:9b:a2:af:e3:94:b4:6f:89:d6:1e:
        64:21:ec:b7:94:ef:88:33:4d:68:4b:90:76:0e:b4:86:
        0b:49:92:57:ef:4f:24:d3:e6:db:60:0e:aa:76:1b:e8:
        0f:f7:9d:2f:ad:5a:9c:b0:06:37:20:9b:77:b4:5b:0d:
        33:22:8f:9f:36:3d:41:86:05:72:25:ae:7a:c0:b7:ad:
        44:0a:3f:24:20:af:ef:45:85:16:7d:cd:6e:27:63:13:
        7b:52:b5:2c:ab:19:fa:db:c3:4e:47:cb:ca:7a:25:38:
        71:6a:86:0d:e6:2b:db:7f:c3:5b:8d:09:6d:f7:da:94:
        f3:29:d7:aa:de:85:79:00:f7:4e:64:fa:85:ab:98:db
    Fingerprint (SHA-256):
        65:93:58:87:71:5E:88:DA:63:3B:55:39:85:4A:85:7A:D4:02:6F:15:5E:CA:D8:53:E4:15:1E:27:23:FB:BF:99
    Fingerprint (SHA1):
        50:8E:22:CF:5C:3E:0A:74:FF:12:0F:91:F4:49:4B:E3:12:A0:6E:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13573: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13574: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #13575: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124470 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13576: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #13577: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13578: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13579: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823124471   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13580: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13581: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #13582: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13583: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 823124472   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13584: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13585: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #13586: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13587: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 823124473   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13588: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13589: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13590: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13591: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 823124474   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13592: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13593: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #13594: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13595: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 823124475   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13596: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13597: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #13598: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13599: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 823124476   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13600: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13601: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13602: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13603: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 823124477   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13604: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13605: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #13606: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13607: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 823124478   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13608: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13609: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #13610: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13611: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 823124479   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13612: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13613: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #13614: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13615: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 823124480   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13616: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13617: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #13618: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13619: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 823124481   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13620: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13621: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #13622: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13623: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 823124482   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13624: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13625: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #13626: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13627: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 823124483   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13628: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13629: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #13630: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13631: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 823124484   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13632: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13633: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #13634: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13635: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 823124485   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13636: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13637: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #13638: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13639: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 823124486   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13640: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13641: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #13642: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13643: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 823124487   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13644: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13645: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #13646: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13647: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 823124488   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13648: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13649: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #13650: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13651: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 823124489   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13652: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13653: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #13654: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13655: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 823124490   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13656: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13657: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #13658: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13659: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 823124491   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13660: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13661: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #13662: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13663: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 823124492   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13664: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13665: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #13666: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13667: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 823124493   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13668: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13669: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #13670: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13671: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 823124494   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13672: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13673: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #13674: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13675: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 823124495   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13676: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13677: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #13678: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13679: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 823124496   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13680: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13681: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #13682: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13683: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 823124497   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13684: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13685: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #13686: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13687: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 823124498   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13688: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13689: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #13690: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13691: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 823124499   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13692: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13693: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13694: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13695: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13696: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13697: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13698: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13699: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13700: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13701: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13702: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13703: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13704: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13705: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13706: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13707: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13708: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13709: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13710: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13711: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13712: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13713: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13714: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13715: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13716: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124470 (0x310fe1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:45:39 2017
            Not After : Tue Aug 23 12:45:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:df:3f:34:76:22:25:7f:f0:15:d8:83:5d:08:08:9f:
                    8b:98:94:c2:e8:e7:63:f8:b6:9a:f7:ab:81:d7:f9:db:
                    47:04:15:9c:c6:df:96:73:a6:54:26:6e:34:2b:d9:9c:
                    02:85:de:cb:a2:0e:c5:65:ba:64:40:7b:f7:42:32:a3:
                    fb:ec:de:6f:12:09:70:28:3d:3e:be:f9:d6:b1:87:4c:
                    c8:33:5b:65:1b:e8:9e:fa:e6:7f:1a:90:62:f6:43:c3:
                    74:9c:99:63:19:21:33:b9:bb:e0:4c:2d:e3:9e:d3:6b:
                    b7:da:7a:3b:47:fd:00:56:9a:1d:87:70:d0:22:74:83:
                    0d:3e:89:7c:1b:f0:cc:26:e8:5b:cd:80:c2:d5:bf:33:
                    44:dc:1a:1e:39:83:cf:33:c5:82:7d:7f:56:01:fb:45:
                    b3:42:2a:64:9a:3d:4e:aa:14:c1:70:72:db:8b:8d:d4:
                    00:0d:09:b8:7f:94:e8:6e:63:de:2b:18:56:ca:5b:eb:
                    53:bb:de:eb:93:7a:00:be:c8:b4:1c:84:d3:eb:12:40:
                    d1:2a:ad:50:4c:8b:b1:00:f1:21:8d:90:fa:33:24:6d:
                    4a:3d:13:64:5c:c3:3f:42:17:64:3e:79:eb:a0:06:df:
                    61:89:b9:c5:8b:77:13:84:73:ab:0a:c6:c8:da:f0:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:bb:c1:f3:73:57:10:83:4f:65:f5:c0:ae:21:bf:c9:
        13:0d:bd:22:c1:98:84:33:d0:7b:e8:9e:a8:87:a6:0a:
        2e:f8:ed:dc:ec:74:4f:5e:65:ae:7b:4e:2f:ed:36:6f:
        a5:b6:fa:f7:66:6a:1c:c1:be:98:51:a5:69:0f:a5:45:
        4d:76:06:b2:45:af:ac:47:e4:58:fc:d4:c6:64:df:e1:
        bf:76:dc:07:dd:85:b8:3c:8a:27:77:9a:d6:62:28:61:
        c9:e0:60:34:d7:f8:9a:af:80:f6:42:d5:e8:3e:c2:cf:
        28:de:3a:c0:1b:af:62:a6:c7:8d:33:f5:7e:bd:6f:a8:
        f7:3d:2c:f6:0c:09:dd:e6:e1:7c:e2:2c:50:c6:64:e2:
        cb:74:47:c4:b0:6d:a8:98:5a:58:98:99:eb:a9:a7:a9:
        5f:75:af:5f:f6:62:75:3d:0c:67:8c:7b:ef:bd:0b:70:
        59:d6:b4:93:47:14:a1:44:fe:b7:9a:24:20:4b:a0:fa:
        79:d0:f8:3f:74:cc:77:69:06:19:bd:af:1c:3d:43:95:
        30:c9:8d:fb:75:c0:03:eb:0d:f5:0b:07:b1:69:47:cc:
        9a:a6:d0:d1:f5:ea:a1:60:99:0d:b3:0c:5c:8c:80:2a:
        80:c5:56:9b:d0:ce:fb:ac:ee:25:32:c6:65:56:04:14
    Fingerprint (SHA-256):
        B1:19:EA:11:27:D1:28:AF:DD:7B:23:D6:00:F2:99:6D:33:31:59:EA:04:A0:EB:2F:45:22:8E:9C:9E:E7:42:C5
    Fingerprint (SHA1):
        F1:AB:67:03:6B:75:4B:A9:0E:DD:16:CC:91:B2:3A:61:D4:83:9C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13717: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13718: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13719: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124500 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13720: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13721: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #13722: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13723: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 823124501   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13724: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13725: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #13726: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13727: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 823124502   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13728: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13729: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #13730: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13731: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 823124503   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13732: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13733: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #13734: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13735: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 823124504   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13736: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13737: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #13738: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13739: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 823124505   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13740: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13741: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #13742: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13743: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 823124506   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13744: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13745: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13746: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124500 (0x310fe214)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:09 2017
            Not After : Tue Aug 23 12:46:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:4d:eb:8b:40:52:f0:8d:c5:cd:7f:95:4f:c7:6b:d2:
                    39:66:09:d8:b4:8b:a3:b9:64:61:b0:18:3a:07:92:af:
                    a5:a6:d2:15:7d:6b:e6:1a:6b:c9:21:e0:f0:cc:8f:b3:
                    b2:22:d5:23:d2:b7:ea:44:cc:6f:4e:0c:ed:e4:97:40:
                    9f:ee:9d:c5:73:1c:8b:5b:a8:fa:47:c6:29:a4:59:26:
                    b2:07:6a:54:b8:43:b0:33:64:5a:63:3f:42:e4:58:50:
                    c1:74:90:b6:52:a3:74:54:d5:94:fe:b2:50:a6:b0:fa:
                    2d:ac:3c:2a:e4:2b:7c:d9:ce:72:70:f8:1a:99:f1:41:
                    7e:b6:b7:fd:61:c2:56:ed:08:65:d0:fb:b2:0d:e2:90:
                    a9:8b:72:06:2e:22:be:a7:05:b2:02:e3:7e:b8:57:23:
                    90:c5:2f:63:97:04:f3:dc:57:aa:ad:b7:9f:05:6a:69:
                    43:ae:82:4e:43:77:c9:85:ed:c4:94:e7:64:be:d7:28:
                    e8:2a:3d:98:57:34:bb:44:a7:b4:ba:5f:d8:26:18:af:
                    68:35:41:4b:b0:df:86:77:74:d9:15:39:76:c3:9b:c9:
                    6a:e9:1b:05:b5:3f:58:91:74:80:32:2a:e6:60:11:57:
                    eb:0e:49:79:ac:1a:e6:0c:df:e8:73:6e:98:1b:a1:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:48:bb:08:8f:82:af:ab:21:ce:d9:fb:0e:e7:de:b3:
        11:ac:a2:f0:b8:83:bb:50:42:51:22:df:05:20:54:b4:
        62:f5:4d:83:0b:be:38:cb:10:e7:ab:98:a5:40:71:2f:
        70:69:a3:57:a7:94:9f:5a:02:d7:21:9c:7b:6f:a8:c6:
        f8:13:08:79:06:a4:ae:86:60:92:e0:e9:f9:2a:3d:58:
        1a:41:13:fa:f4:01:8d:5e:18:f5:a9:71:32:89:be:1e:
        6c:0d:5b:12:ab:8c:ea:4c:6f:9a:3a:d2:84:20:4b:83:
        cd:01:16:07:e4:18:4a:a0:72:ac:5d:97:79:2f:af:5a:
        40:9f:93:57:3d:17:70:43:c4:6e:b5:7d:dc:34:ee:22:
        39:a6:b1:3f:13:28:bf:74:39:04:28:37:d9:30:a3:ec:
        3b:e0:1a:4b:82:57:f9:b4:c4:98:4d:d1:1d:15:c0:b2:
        47:08:37:83:19:23:32:67:19:3a:26:e8:21:35:c3:bd:
        8b:0a:7a:4f:f0:5a:44:6a:65:a6:9e:b9:7a:e9:ae:1c:
        8e:19:c2:b9:f2:2f:54:15:09:54:28:02:59:5e:60:eb:
        ff:89:2c:84:e6:76:f0:6d:77:f9:70:4d:85:9d:3a:fb:
        de:18:f1:aa:bb:1d:28:31:f1:ab:45:9b:16:db:ab:17
    Fingerprint (SHA-256):
        8A:8F:41:79:BF:6A:1E:84:3A:89:C9:AA:07:EC:6F:D6:DB:02:D3:AF:5C:46:76:FD:94:A0:32:31:AB:01:BD:B4
    Fingerprint (SHA1):
        9B:B5:04:81:FC:31:E3:1A:33:03:35:65:00:15:54:B6:76:DB:B1:C4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #13747: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13748: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13749: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13750: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124500 (0x310fe214)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:09 2017
            Not After : Tue Aug 23 12:46:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:4d:eb:8b:40:52:f0:8d:c5:cd:7f:95:4f:c7:6b:d2:
                    39:66:09:d8:b4:8b:a3:b9:64:61:b0:18:3a:07:92:af:
                    a5:a6:d2:15:7d:6b:e6:1a:6b:c9:21:e0:f0:cc:8f:b3:
                    b2:22:d5:23:d2:b7:ea:44:cc:6f:4e:0c:ed:e4:97:40:
                    9f:ee:9d:c5:73:1c:8b:5b:a8:fa:47:c6:29:a4:59:26:
                    b2:07:6a:54:b8:43:b0:33:64:5a:63:3f:42:e4:58:50:
                    c1:74:90:b6:52:a3:74:54:d5:94:fe:b2:50:a6:b0:fa:
                    2d:ac:3c:2a:e4:2b:7c:d9:ce:72:70:f8:1a:99:f1:41:
                    7e:b6:b7:fd:61:c2:56:ed:08:65:d0:fb:b2:0d:e2:90:
                    a9:8b:72:06:2e:22:be:a7:05:b2:02:e3:7e:b8:57:23:
                    90:c5:2f:63:97:04:f3:dc:57:aa:ad:b7:9f:05:6a:69:
                    43:ae:82:4e:43:77:c9:85:ed:c4:94:e7:64:be:d7:28:
                    e8:2a:3d:98:57:34:bb:44:a7:b4:ba:5f:d8:26:18:af:
                    68:35:41:4b:b0:df:86:77:74:d9:15:39:76:c3:9b:c9:
                    6a:e9:1b:05:b5:3f:58:91:74:80:32:2a:e6:60:11:57:
                    eb:0e:49:79:ac:1a:e6:0c:df:e8:73:6e:98:1b:a1:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:48:bb:08:8f:82:af:ab:21:ce:d9:fb:0e:e7:de:b3:
        11:ac:a2:f0:b8:83:bb:50:42:51:22:df:05:20:54:b4:
        62:f5:4d:83:0b:be:38:cb:10:e7:ab:98:a5:40:71:2f:
        70:69:a3:57:a7:94:9f:5a:02:d7:21:9c:7b:6f:a8:c6:
        f8:13:08:79:06:a4:ae:86:60:92:e0:e9:f9:2a:3d:58:
        1a:41:13:fa:f4:01:8d:5e:18:f5:a9:71:32:89:be:1e:
        6c:0d:5b:12:ab:8c:ea:4c:6f:9a:3a:d2:84:20:4b:83:
        cd:01:16:07:e4:18:4a:a0:72:ac:5d:97:79:2f:af:5a:
        40:9f:93:57:3d:17:70:43:c4:6e:b5:7d:dc:34:ee:22:
        39:a6:b1:3f:13:28:bf:74:39:04:28:37:d9:30:a3:ec:
        3b:e0:1a:4b:82:57:f9:b4:c4:98:4d:d1:1d:15:c0:b2:
        47:08:37:83:19:23:32:67:19:3a:26:e8:21:35:c3:bd:
        8b:0a:7a:4f:f0:5a:44:6a:65:a6:9e:b9:7a:e9:ae:1c:
        8e:19:c2:b9:f2:2f:54:15:09:54:28:02:59:5e:60:eb:
        ff:89:2c:84:e6:76:f0:6d:77:f9:70:4d:85:9d:3a:fb:
        de:18:f1:aa:bb:1d:28:31:f1:ab:45:9b:16:db:ab:17
    Fingerprint (SHA-256):
        8A:8F:41:79:BF:6A:1E:84:3A:89:C9:AA:07:EC:6F:D6:DB:02:D3:AF:5C:46:76:FD:94:A0:32:31:AB:01:BD:B4
    Fingerprint (SHA1):
        9B:B5:04:81:FC:31:E3:1A:33:03:35:65:00:15:54:B6:76:DB:B1:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #13751: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13752: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13753: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13754: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124507 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13755: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13756: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13757: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13758: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124508   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13759: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13760: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13761: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13762: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124509   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13763: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13764: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13765: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13766: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823124510   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13767: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13768: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13769: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13770: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13771: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13772: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124507 (0x310fe21b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:17 2017
            Not After : Tue Aug 23 12:46:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:a8:02:39:96:55:85:7b:5e:24:3f:f5:09:7d:78:10:
                    b8:29:18:a2:ca:88:af:48:0b:27:97:93:b0:86:c5:3d:
                    47:e7:19:a7:d3:4b:8f:99:5d:f9:a8:67:81:03:a9:88:
                    94:87:48:29:4d:f8:05:ae:46:3c:b7:38:52:d0:87:b9:
                    f3:7f:49:65:92:3d:d1:0c:c5:c3:5a:16:93:7d:e7:d2:
                    1e:38:fc:a8:e8:44:4c:3f:b4:78:a2:4d:35:2d:e1:69:
                    63:25:99:cb:e7:20:ba:b6:19:78:79:1f:d6:66:ce:b2:
                    fc:59:e5:39:3d:78:7d:92:a8:c8:45:78:96:be:a6:49:
                    17:53:42:a9:03:9a:67:be:9e:fa:0b:c1:1e:03:0e:2a:
                    15:4e:97:39:be:08:e9:ef:00:ac:61:48:e5:56:e5:da:
                    79:e7:09:3f:e1:eb:9b:3c:4b:8b:40:64:ea:6d:c0:f5:
                    31:a5:6b:61:5a:00:02:64:25:d8:f7:4f:85:57:b5:78:
                    1b:40:81:0b:29:da:9e:b8:40:34:2c:c6:b2:57:14:43:
                    91:86:49:27:69:e6:82:f8:2f:00:85:22:77:9a:41:a6:
                    f5:03:54:77:c4:e7:a6:4d:24:08:6f:f9:fb:26:16:f7:
                    69:93:20:0d:e0:53:f2:7f:8d:6d:02:4b:ca:50:30:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:12:1d:e2:6c:9e:15:79:56:c1:28:37:d9:56:80:bc:
        72:0f:4e:cc:0b:1b:a6:22:cf:84:8f:3e:b5:5a:9a:eb:
        65:3b:20:84:c6:b4:c2:f6:92:e6:c4:94:1d:d8:27:e5:
        a5:0e:20:7a:4a:a4:42:7a:bd:e3:1e:58:06:21:2b:da:
        35:de:8e:4f:02:1d:3d:67:c1:37:87:45:90:96:07:d3:
        83:d1:19:75:fd:f5:f6:08:f1:cb:37:09:b8:08:56:33:
        17:d8:d0:6c:bc:3e:d5:9b:c3:27:a7:0e:de:5c:77:eb:
        5a:20:a8:41:16:9a:6d:42:46:a3:f7:6e:a0:fb:bc:b2:
        4a:24:16:a4:23:5f:c6:2a:93:aa:5c:9e:e5:38:b5:14:
        1b:c3:2f:01:6f:90:21:a4:0c:e1:8d:ba:f3:7e:c7:b2:
        ab:72:7f:bd:6c:f5:43:0c:64:8d:ad:e2:0f:21:bf:e4:
        fc:17:09:54:73:ff:06:86:46:02:11:4e:85:74:fd:19:
        cf:f0:a6:f2:d8:3e:0d:98:9c:c2:c5:be:e2:ea:d3:ca:
        ba:d9:d4:71:e6:be:86:ce:bb:19:17:02:80:7f:4b:f2:
        5e:93:68:96:a5:12:70:b6:78:39:5a:c9:45:55:00:84:
        86:73:db:2d:17:ac:f8:41:1e:38:bb:09:d7:d5:47:f5
    Fingerprint (SHA-256):
        D6:23:2F:C7:A2:53:18:56:3B:45:4A:8B:D9:6C:8F:86:51:EF:EA:CC:8E:02:51:0C:0B:F1:F1:44:7F:87:E9:2D
    Fingerprint (SHA1):
        6C:47:3D:1C:DC:28:4B:63:6D:FD:0A:CD:5E:B6:5C:1C:02:28:E1:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13773: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13774: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13775: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124508 (0x310fe21c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:18 2017
            Not After : Tue Aug 23 12:46:18 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:2f:c1:ac:b6:96:9e:65:2f:cc:d4:b9:9a:d4:3c:f4:
                    94:c3:69:1c:fa:64:28:58:17:ef:f2:7c:0d:68:a4:db:
                    0a:b3:ca:46:79:71:8e:c6:ae:56:44:b0:ca:ac:55:bf:
                    5f:16:e3:58:6e:07:df:14:6a:04:2a:bd:e0:cd:31:d3:
                    f6:86:53:f0:7f:8c:ab:4c:c0:56:8d:b2:9c:3b:b2:41:
                    a8:1a:63:c5:64:3e:9a:69:6f:a9:de:33:2a:1d:95:b8:
                    d7:2b:4c:5c:e0:d9:e5:29:b0:b0:e8:81:69:9c:02:61:
                    1d:f1:1f:84:d1:3d:50:d0:f0:37:ac:dc:39:43:e1:0a:
                    72:11:77:2e:29:36:54:d4:5c:cc:26:b6:0b:14:b0:4c:
                    2a:f9:25:6c:9b:59:c3:e9:8e:f3:c1:ed:c8:d6:3f:1d:
                    e9:b3:10:e7:46:10:68:9e:b7:bb:bd:6c:27:47:84:97:
                    fb:16:fa:58:b1:b4:9e:6d:d5:7c:bc:7b:8c:db:4a:6d:
                    ba:d2:4e:55:92:d8:5b:da:08:3e:75:de:2f:41:2c:03:
                    89:17:1a:57:1c:c5:36:e6:98:e9:d4:1b:a7:4e:55:5a:
                    fb:97:89:48:8c:bc:e7:e9:c5:7d:52:ad:0f:df:af:7d:
                    a5:01:ae:b6:06:d2:63:ac:a8:de:1d:85:f6:16:86:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:8e:ed:8f:03:2b:c2:cf:44:5d:d0:c6:72:8c:bd:e4:
        b1:e1:93:99:e8:a1:46:d3:4b:5f:9e:1e:e0:f6:43:aa:
        07:49:1a:2c:31:ab:e9:1a:0f:60:8e:8e:82:cc:b4:6f:
        87:e0:cd:37:a7:e2:61:19:95:3a:73:90:21:9b:56:42:
        8c:7b:6a:33:87:c8:e7:ac:d6:ef:6e:d7:db:ba:f8:eb:
        24:64:11:7d:d5:32:5b:ca:fc:b0:40:9f:85:86:78:56:
        ba:0c:c0:7f:ff:7c:c3:6d:75:ac:d6:20:ad:66:5a:91:
        02:25:8b:6d:ab:d5:3a:fb:c6:b6:99:bc:4e:a1:82:59:
        14:6d:8e:6b:f0:7f:68:21:db:83:51:a1:3e:96:48:61:
        0f:49:d2:4f:97:65:ac:53:34:ce:b7:5f:b4:f3:4d:09:
        1f:e7:3c:26:f0:d4:b5:61:08:11:83:9a:16:bd:d0:da:
        42:cf:1b:b3:6c:72:70:c1:ea:e0:57:9a:b8:6a:1a:de:
        3c:98:31:02:48:83:1a:6a:17:5b:fb:e9:f5:2b:f9:64:
        6f:f4:c6:bf:45:44:8e:fd:8a:5e:f4:5f:43:97:ca:00:
        42:66:ec:e9:e7:95:0f:77:1c:e4:3d:32:bc:cc:3e:9d:
        7d:da:b0:13:98:fa:6f:79:d0:7d:ac:ef:14:4e:53:7a
    Fingerprint (SHA-256):
        09:76:B2:C6:AE:16:C5:75:66:81:A3:5F:7F:CA:A0:F3:F0:A8:34:95:49:94:26:E4:56:BC:1A:B2:BC:81:E3:31
    Fingerprint (SHA1):
        B6:D1:67:BF:70:84:AC:63:8B:34:34:09:10:5B:48:5F:43:1D:CE:E1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13776: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13777: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124509 (0x310fe21d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:19 2017
            Not After : Tue Aug 23 12:46:19 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:01:a4:41:c5:f9:40:d2:15:a6:68:61:4a:2d:82:e9:
                    16:31:4c:4b:e7:e6:f4:20:01:49:f3:f1:54:92:01:23:
                    c4:26:1b:83:67:55:42:81:ec:53:f9:d5:bd:d2:d1:0b:
                    c0:57:89:9b:e4:03:91:06:a1:9b:1e:e1:89:89:9c:0d:
                    5a:e0:31:f3:1c:c3:82:48:60:6e:9e:0f:0c:fa:e0:98:
                    3f:68:8b:28:ee:9e:da:24:09:55:95:9c:a4:05:e7:2f:
                    0b:41:4d:8d:6b:21:eb:86:c8:f9:dd:3a:45:80:01:36:
                    5f:de:46:72:3e:83:31:e3:af:a3:06:14:8e:50:09:95:
                    4f:24:05:5f:20:41:90:dd:f0:f4:b9:72:ee:3b:a2:98:
                    54:3d:ee:e9:f4:fe:45:49:a5:05:c3:5d:e7:a0:e3:40:
                    f3:83:5c:ed:2b:33:18:90:b5:1a:f1:60:7e:01:de:63:
                    76:da:3b:26:d9:3b:78:cb:37:99:c2:ba:25:9e:e1:d6:
                    77:e1:ed:ea:2d:5d:e4:67:8b:2b:08:91:13:ec:71:ab:
                    b0:69:19:d3:f6:8b:da:0a:1c:90:70:36:91:8e:b4:7c:
                    d9:d4:7e:f0:ab:e6:52:6d:e5:42:c9:1f:67:91:e9:ac:
                    d4:93:6a:d4:3a:1d:ad:9c:09:2c:ab:f8:4a:b2:c6:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:8b:9b:b3:db:ad:56:fc:ed:99:ad:f8:40:30:53:5c:
        f4:a8:c1:5d:44:81:17:d6:a0:d8:0d:b8:6c:00:d4:fc:
        8e:25:29:85:86:5c:2f:73:fc:08:e7:b3:32:8c:b7:89:
        0b:53:91:d8:18:5a:d9:4e:e6:bd:3f:4f:da:2f:5f:85:
        09:50:10:4b:ae:e6:9f:0e:22:5d:25:ba:4e:87:d1:4a:
        2d:18:52:f0:3b:61:8b:e8:20:c5:95:4a:0e:34:b3:81:
        bd:4a:f4:e6:9d:12:06:ac:5e:94:5c:e2:f6:fa:61:ee:
        e1:05:d7:23:15:51:d6:8f:4c:01:9c:86:a9:46:a5:16:
        7a:c2:45:79:37:69:9d:c1:d0:be:4f:fa:fd:4e:0c:3d:
        91:c3:fe:ac:9c:1b:14:71:f0:a9:4f:81:06:1b:b8:9b:
        ef:75:57:c3:de:99:b1:f5:52:62:c6:38:45:36:e8:8b:
        71:5a:d9:7b:3f:ab:a3:e8:5b:7b:d6:17:00:fb:fd:45:
        c8:17:14:a9:3a:46:3c:1c:5a:47:26:9f:2d:1a:d0:04:
        8a:bc:3e:9b:c6:4f:a2:99:4a:20:a9:fb:da:d4:96:07:
        ad:ed:81:90:53:22:e3:02:74:a3:49:5d:a0:d1:88:d4:
        cd:09:5c:d6:a2:64:fb:88:8c:18:ad:0a:ee:a5:17:99
    Fingerprint (SHA-256):
        97:DE:F6:AC:92:E4:4F:C4:E7:07:63:F7:BC:31:A6:13:1F:96:D1:AD:8B:20:7E:4C:14:2E:1A:F1:8E:BA:EA:9C
    Fingerprint (SHA1):
        05:45:65:22:D3:7B:55:DD:FC:22:EA:81:7F:D4:C8:0D:5A:9A:91:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13778: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13779: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124511 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13780: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13781: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13782: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13783: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124512   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13784: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13785: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13786: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13787: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124513   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13788: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13789: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13790: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13791: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 823124514   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13792: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13793: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13794: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13795: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 823124515   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13796: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13797: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13798: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13799: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13800: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13801: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #13802: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124511 (0x310fe21f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:22 2017
            Not After : Tue Aug 23 12:46:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:f4:74:0d:9e:7d:f5:42:c2:a4:85:08:53:ec:a8:76:
                    05:79:77:0d:6a:da:19:3e:db:16:f5:c4:01:2e:ad:64:
                    0d:0a:85:a2:3f:db:dd:53:31:00:23:6c:b3:cd:2e:e2:
                    0d:3c:ed:c2:15:40:4e:9f:f4:12:3c:e9:4c:59:71:5b:
                    3a:ac:af:5f:64:77:e2:19:51:47:bc:62:23:9d:bb:cf:
                    c0:25:42:88:73:69:2a:53:68:de:a0:94:5b:af:34:a2:
                    d6:e0:6d:f8:27:60:51:fd:a0:cf:45:db:29:70:4b:11:
                    d8:1b:41:78:29:b6:2a:5c:96:d8:0d:b3:74:63:6c:ca:
                    66:c8:a4:43:a2:f0:8c:5a:53:d4:53:3d:97:70:90:f9:
                    af:03:d2:0a:8d:99:4b:20:2f:f7:4a:51:af:db:ca:4c:
                    92:de:2f:a3:b3:47:23:65:78:d2:cd:e0:98:b2:6e:62:
                    77:f6:b6:71:21:75:f6:51:93:c7:84:6d:cb:de:34:7f:
                    49:31:05:0c:41:a7:3e:17:f4:73:84:ac:06:b7:7e:98:
                    ce:27:f0:9c:ab:26:64:13:e6:91:8b:2b:90:8a:8a:70:
                    b4:a8:91:5e:f8:fb:a3:4b:24:e4:95:5a:70:fc:58:82:
                    fd:8e:1f:59:a6:5a:93:dc:d0:b4:b8:9b:14:87:1c:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:97:26:49:6c:a1:e9:c2:c1:06:5c:e4:de:6d:bd:48:
        2b:e2:15:71:79:e2:66:e6:15:d9:d9:28:89:21:5a:64:
        54:31:83:b9:7b:6e:6f:65:1a:12:98:af:4e:5c:16:dd:
        b4:cf:77:f8:75:e2:b2:b6:85:67:7d:ad:f0:26:08:39:
        1b:36:90:35:84:60:09:15:0a:8a:0e:6a:08:36:c5:b0:
        01:03:5c:a2:d6:22:53:c3:91:1d:17:89:5c:07:cf:f6:
        37:c8:6c:5b:ea:1a:4e:b3:09:79:2e:43:a7:bf:08:bc:
        06:06:08:31:0b:41:54:17:a6:10:54:68:76:52:7c:f4:
        63:d6:f6:00:cb:d7:3d:10:85:7e:a8:b1:d4:89:1c:0f:
        7a:3e:7a:e4:36:b0:aa:94:79:7d:04:44:7e:2b:be:b0:
        8f:de:18:d4:b1:e8:67:81:87:38:72:88:d2:7b:b6:8a:
        5b:28:16:44:67:6d:f7:cb:6b:47:37:7b:ed:f1:6b:d6:
        91:e7:b9:84:4a:64:0c:c6:ee:85:69:11:54:80:86:2b:
        3a:9d:73:77:36:e7:b3:2f:32:d4:98:19:68:38:a7:07:
        ba:47:e8:23:3b:b5:f2:f9:16:a9:8f:ab:45:dc:41:32:
        7c:24:49:32:91:2c:a9:67:ab:5a:d2:d7:f3:5d:f6:15
    Fingerprint (SHA-256):
        47:AF:C6:E6:10:F2:1B:E2:6E:40:04:00:80:25:D6:25:27:1C:D6:09:6D:63:95:19:BF:EF:CA:23:34:18:19:7A
    Fingerprint (SHA1):
        99:4A:BF:B8:3E:69:9C:97:0B:84:33:BC:FC:D3:8F:24:CE:4E:A5:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13803: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13804: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124512 (0x310fe220)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:23 2017
            Not After : Tue Aug 23 12:46:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:db:1b:cf:f6:1c:7e:4f:d0:2c:ad:79:d1:d1:f7:a9:
                    51:f5:7b:86:44:b1:17:19:8e:06:17:41:e8:14:4f:bb:
                    e7:bc:b2:dc:b0:80:69:1f:b6:a7:0a:a7:c0:77:bf:3d:
                    f0:26:26:56:c3:0f:af:a4:3c:06:a4:34:29:0e:9c:24:
                    fd:7e:97:8d:60:ef:e9:aa:9a:a9:78:51:57:9f:70:1a:
                    00:91:a7:c5:58:53:17:0b:5d:87:f9:56:1a:f2:17:28:
                    e4:55:db:34:07:c6:21:9a:e3:59:c1:25:22:2e:15:a2:
                    a2:41:5d:dd:52:31:b0:50:3e:d1:6d:11:2e:7b:8e:a8:
                    52:f7:ae:41:f9:90:67:99:5d:29:12:1c:d6:9b:f4:63:
                    51:29:9d:16:12:48:4c:04:2e:71:14:aa:d9:cc:c8:95:
                    f3:3c:86:d3:1d:17:56:bc:b9:6a:3f:9f:75:83:7a:b6:
                    ad:00:5e:a5:95:bd:bd:94:49:02:f5:4f:f0:ea:ef:d5:
                    f2:ab:33:e0:e7:c9:5a:0a:ee:6d:14:2b:23:23:d4:f4:
                    2b:f1:96:90:29:52:04:83:f6:b9:23:b4:75:df:ff:7d:
                    68:c4:64:d3:47:ee:69:c6:ee:31:09:32:d0:10:e3:a5:
                    da:8d:d0:12:a4:ce:a0:94:f0:3f:1a:92:c3:54:cb:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:3a:57:72:77:d7:8c:65:20:ef:e2:9d:b3:df:8d:08:
        1d:05:bb:e0:ae:47:e9:be:2e:a2:ae:c1:82:fa:35:ff:
        b8:a8:f3:d2:d4:99:17:51:df:91:88:fc:9d:50:7c:78:
        09:be:f0:9e:ef:f0:d1:c7:6e:7e:c3:52:9a:75:a7:ef:
        d1:a3:e0:95:11:3d:88:5d:81:86:3e:ca:8d:bb:b8:d2:
        e3:4c:42:2e:d2:59:d4:ec:02:e6:c0:55:20:75:ea:0f:
        b9:d6:81:39:97:29:b5:68:0a:4d:ac:2b:59:f9:b1:dd:
        6b:2f:7b:52:6a:82:58:e9:d7:82:ef:a5:c3:6d:96:4d:
        2e:7e:15:ac:a5:1d:60:61:04:61:7e:17:96:38:77:4d:
        f9:e8:c9:61:2f:9a:cc:8f:36:2c:bb:4d:aa:b1:75:cd:
        4e:23:e4:df:9f:29:53:84:48:27:49:b3:57:35:21:96:
        19:53:79:52:b7:0a:c3:68:cf:4d:a1:34:9e:ee:f5:a5:
        57:3b:6c:25:35:ad:fa:b9:10:b7:da:2f:d2:1c:07:20:
        3e:2f:cf:bf:c7:17:aa:a3:9b:c5:d2:a6:9a:87:af:86:
        44:88:31:8e:11:5d:4c:47:cf:ee:a0:f1:34:27:69:7a:
        50:d4:3b:79:1e:c3:07:37:ee:04:e3:44:10:a2:4b:ac
    Fingerprint (SHA-256):
        B0:0F:3A:C8:CA:20:AD:62:3C:59:C3:29:BC:00:BE:FE:4A:1A:67:73:C1:CD:61:AD:46:EF:67:DE:E2:4C:1D:9F
    Fingerprint (SHA1):
        6E:AB:B7:4B:E2:01:47:26:6D:92:E2:68:BE:73:D0:47:45:5D:48:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13805: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13806: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13807: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124513 (0x310fe221)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:24 2017
            Not After : Tue Aug 23 12:46:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:87:23:7c:e6:45:c6:b5:17:0c:ab:b8:85:b5:e3:62:
                    00:0b:d8:4f:72:dc:db:17:36:d1:f2:08:e6:f3:eb:95:
                    bb:c1:7c:99:f3:d6:5f:a0:71:8a:ef:12:2a:94:46:18:
                    e1:6f:98:d6:f1:68:b6:ca:eb:96:80:4d:cd:80:8c:4b:
                    6a:f4:18:3c:0e:5b:76:fe:7e:56:d7:ee:83:d0:e9:2e:
                    2b:97:e3:7c:d6:bf:10:5a:f6:b5:e5:f5:ba:88:6d:f9:
                    27:8a:e1:9b:ff:2a:45:a8:ff:15:97:f3:28:e6:48:85:
                    a4:56:71:3d:7b:90:a9:8e:b8:00:b5:05:2c:07:7b:72:
                    31:2c:92:f6:ff:c7:15:34:c7:5d:49:ef:49:69:78:6a:
                    ba:22:c7:7f:17:5b:56:b2:50:65:2b:4d:ee:bd:fc:63:
                    ba:c5:47:ba:d2:30:5c:f8:da:af:d4:3f:0c:ad:41:c9:
                    f7:a2:d2:90:fb:4e:27:13:38:d4:31:9b:30:25:e8:c4:
                    42:81:d7:01:7a:3b:b8:a8:35:31:1b:fb:8f:22:94:e0:
                    21:cb:98:7b:16:0c:40:da:87:9d:f3:a4:2b:90:de:d5:
                    bb:f1:5b:f4:c6:59:3f:3f:73:a6:98:8b:96:12:ea:d6:
                    89:fc:e1:42:a5:79:04:64:1d:0a:b8:f2:2f:74:f7:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:b3:42:6d:ff:3a:2c:d7:0a:68:24:98:71:ae:ec:40:
        a6:e4:5f:22:6b:ef:7f:5c:ec:db:b6:29:fe:e0:28:9c:
        fa:57:14:28:9f:f1:9b:aa:3a:03:27:56:89:fb:66:ea:
        ed:a1:da:c6:d9:5e:e6:3d:fb:46:f2:b8:3b:08:5a:21:
        e4:a6:70:91:1c:08:19:3c:45:e3:b5:43:73:43:96:56:
        82:c3:dd:45:a8:05:1c:37:5c:87:80:97:22:8a:b5:8c:
        26:a5:d5:81:57:c2:e3:17:ef:44:63:da:b2:09:ac:23:
        52:ac:f3:62:d5:d4:f9:e9:d4:2e:81:00:15:ef:de:f8:
        4a:a7:1f:64:02:48:d8:26:37:84:15:2b:23:78:b0:e3:
        14:b0:36:85:8d:e3:b8:5b:28:5e:5d:7e:00:d4:36:b0:
        58:32:3e:1e:75:fd:3f:64:7b:ca:66:81:ba:39:19:c9:
        06:6b:6d:9b:ad:18:be:9f:fa:d0:92:da:c3:22:1b:d9:
        5f:46:85:50:b2:32:53:80:d6:c7:a2:89:82:30:b6:2e:
        c0:5e:5e:4b:6f:2b:44:c0:00:28:8c:47:0d:e8:ee:08:
        ed:48:e2:55:19:e0:09:f5:a3:5f:dc:0a:f2:f9:6a:30:
        dd:3c:17:95:09:e1:57:1b:66:13:0b:08:a9:10:e6:66
    Fingerprint (SHA-256):
        E8:60:B4:FB:66:BD:51:00:2F:AD:27:84:23:C5:35:F0:3C:CA:26:9D:2E:89:75:A8:3B:0F:6D:68:D9:30:7B:63
    Fingerprint (SHA1):
        FF:FC:82:DE:41:89:4F:5C:57:AD:AA:BB:EF:4D:2C:AB:A9:38:9D:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #13808: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13809: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124516 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13810: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13811: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13812: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13813: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124517   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13814: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13815: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13816: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13817: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124518   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA1Root-823124425.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13818: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13819: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13820: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13821: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823124519   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13822: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13823: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #13824: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124516 (0x310fe224)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:28 2017
            Not After : Tue Aug 23 12:46:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:c0:d1:ec:9e:c8:e1:02:ad:e5:f3:af:1b:6e:b4:cc:
                    ca:89:28:9e:97:24:d6:1c:97:ac:ee:08:d7:07:d3:f5:
                    d3:a4:fd:7f:1f:01:1d:b9:46:69:52:02:ba:ea:09:bb:
                    94:97:44:68:6f:e8:6e:5e:d7:72:fc:3f:52:f3:54:a8:
                    e0:fe:0e:e1:1d:3c:56:a0:b5:ab:75:bf:9b:92:7f:86:
                    0b:be:cf:a5:5c:bd:32:66:11:d6:c3:f5:cc:05:9e:62:
                    e3:6c:59:33:fd:25:b9:d7:7f:cc:c8:47:7f:54:3e:19:
                    01:b9:d5:92:78:1b:4a:66:ff:d3:ba:a5:7c:33:0e:9d:
                    21:ec:8f:ae:81:83:34:3d:58:14:f6:f9:9c:4c:94:75:
                    11:e0:d2:06:c9:23:1b:25:29:36:b1:6e:9b:c1:f9:68:
                    12:42:6b:d2:ce:d1:c2:14:ba:fa:fd:52:a8:50:cd:72:
                    90:16:4f:33:59:a6:5b:5c:c1:e1:fa:7f:d9:1b:11:39:
                    c2:17:c4:38:ad:30:92:b6:32:da:90:36:22:2d:24:01:
                    ea:e3:24:73:bf:f3:76:d0:92:4e:ce:1f:16:68:d4:87:
                    d8:3a:06:f6:24:cd:a7:11:d7:ab:5d:75:d7:c3:03:69:
                    a7:e0:2e:28:c3:37:14:73:f2:89:61:26:bc:08:5a:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:e1:b7:c2:8a:ca:5d:df:c0:d2:b1:80:e0:fb:87:03:
        25:62:b1:32:8f:4d:72:b2:04:c1:56:6f:47:f1:7b:51:
        d7:ca:1d:f3:4a:f7:7b:1f:de:ca:6b:7e:91:98:e7:ac:
        99:be:a4:35:b3:81:2e:69:64:98:a6:93:2a:d1:35:20:
        c9:ee:e3:9e:11:ca:6d:5d:58:9c:19:7c:11:04:2d:b5:
        8a:1b:b5:6c:a0:1d:64:af:ef:5d:0b:27:24:c2:76:b1:
        a3:a2:d5:3f:1b:88:7f:79:d9:26:60:8b:3c:d9:4b:84:
        fe:a7:49:bc:e2:57:ba:86:ed:fe:b9:66:99:c6:89:cb:
        73:7c:9d:53:d5:b2:29:77:b1:11:29:77:3e:4d:ee:f7:
        0a:e8:e8:4f:1c:08:33:be:5e:f9:6c:e4:e7:1a:37:45:
        22:28:c2:92:29:e1:b2:d9:f2:4f:e8:aa:66:da:68:03:
        81:85:b8:eb:41:ad:03:99:2c:82:57:d3:89:c9:0c:ff:
        1d:c2:b5:65:ae:52:e6:b8:f4:83:67:ca:e9:90:bf:39:
        7f:e5:fa:3d:19:b1:29:f3:0e:de:88:1b:a1:64:94:96:
        11:9c:47:27:41:1e:68:ad:47:b0:64:d7:c0:f6:03:81:
        e3:e9:9b:3e:ce:1f:23:0b:00:35:bf:d7:61:74:bc:78
    Fingerprint (SHA-256):
        8A:39:85:18:E7:0E:5E:A2:35:80:BB:AF:F8:CD:D4:91:42:2D:21:25:B9:C0:49:38:63:68:84:ED:57:E0:49:EE
    Fingerprint (SHA1):
        C6:AA:E9:15:D7:2C:BB:FD:AA:5C:F0:E7:10:05:9B:29:BB:AD:F3:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13825: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13826: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124520 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13827: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13828: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13829: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124521 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13830: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13831: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13832: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13833: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823124522 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13834: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13835: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823124523 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13836: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13837: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13838: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13839: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13840: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823124524   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823124426.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13841: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13842: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13843: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13844: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124525   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13845: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13846: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13847: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124520 (0x310fe228)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:32 2017
            Not After : Tue Aug 23 12:46:32 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:b1:e9:f6:b5:f7:89:ec:b6:7b:a8:20:5d:34:43:d3:
                    55:f5:39:92:e8:31:a8:b7:4b:ed:42:6f:4a:95:e1:91:
                    94:34:62:a7:d4:5c:1e:b6:46:eb:3e:e0:43:65:2a:72:
                    d5:e4:e1:f7:63:88:18:e9:04:78:dc:2f:00:16:87:25:
                    2d:37:b4:e4:1e:4d:4e:ca:26:12:a7:49:c0:78:47:d1:
                    01:e7:00:fc:78:59:11:ce:df:27:a6:ef:f1:5e:12:b4:
                    f2:12:b8:10:2e:12:3a:95:87:70:9d:16:c4:ed:dd:69:
                    a6:4f:fd:5e:e7:57:aa:ef:a9:4c:36:8f:ec:d4:f0:62:
                    d8:29:58:41:91:c3:a0:dd:a5:ce:7b:5e:d7:4c:4f:fc:
                    e5:ab:c5:e7:67:1d:c5:ff:4e:de:b3:48:e2:8f:7f:ec:
                    91:41:6c:72:fb:39:fa:af:51:1a:19:33:5a:34:0a:61:
                    5a:81:91:00:87:e5:09:d7:6a:0f:ff:0a:72:27:0f:f9:
                    79:a5:6c:ba:40:3b:bc:49:81:fe:4f:42:2d:45:78:4f:
                    8a:7e:f6:99:f4:6b:32:1d:44:8b:8d:f9:84:8d:5b:5f:
                    58:d6:dc:38:d5:fe:17:38:90:fb:4b:2c:43:4f:fe:12:
                    0b:47:3d:03:19:9a:71:83:c2:f2:d1:88:db:99:65:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0c:8e:5a:9b:3f:94:b0:24:dc:09:9c:16:7c:d5:74:
        e8:f3:e6:31:dc:55:8c:a2:74:58:fb:81:ce:59:e4:3e:
        d4:ec:8a:58:a0:91:4a:88:07:52:fb:d5:bf:36:be:37:
        6c:69:7c:12:0b:41:e1:0b:9d:9d:91:67:2f:ae:a0:0e:
        c3:e7:e5:d4:fc:2c:64:47:58:c3:d4:e1:14:26:d8:d7:
        87:14:07:6d:cc:20:54:5a:28:ac:1d:bd:73:83:b2:b2:
        c6:77:f5:95:45:ef:8a:5a:36:2c:1e:77:c9:cd:8e:41:
        4b:4d:f3:26:4c:58:05:dc:50:7b:a0:5e:d4:d7:8d:8d:
        47:12:6e:9f:8d:e3:8b:a4:b9:26:50:86:85:fa:31:54:
        03:e6:ee:72:ee:c4:1f:c0:26:cf:36:1f:8e:40:fd:80:
        1f:b4:e0:23:a8:2c:7e:7e:4c:4e:34:cd:a5:76:ca:6a:
        3d:27:76:bc:d8:9c:bd:b1:39:e3:8f:4f:98:29:cb:a1:
        21:d6:27:4d:6e:b6:0d:d9:85:d4:e0:5d:15:a0:95:4d:
        da:3e:c8:e5:c5:51:36:3b:a3:d2:a5:3f:7e:3f:2a:22:
        dc:fb:2c:a5:b1:02:9f:e6:01:3a:ac:42:98:23:6b:1e:
        4d:cd:fc:87:ca:34:15:f3:d7:50:77:72:b3:c7:87:e4
    Fingerprint (SHA-256):
        9B:5B:BD:07:13:81:E3:59:E9:72:CC:56:37:32:82:E4:7A:30:E1:9D:E4:3F:1B:9A:DB:DB:2C:72:95:4E:45:B1
    Fingerprint (SHA1):
        C4:17:DF:31:2D:67:79:9D:3E:97:0D:71:53:67:E8:04:BE:29:CE:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13848: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124521 (0x310fe229)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:33 2017
            Not After : Tue Aug 23 12:46:33 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:84:26:0f:d2:41:27:d2:d7:b9:bd:0a:5c:ed:18:3e:
                    8c:26:d9:39:cf:75:09:b9:af:78:c3:65:f5:d7:7c:a2:
                    5a:f1:b4:5d:3e:3b:d9:b9:2c:90:e4:5c:09:74:d5:fb:
                    57:d5:98:06:4e:97:93:8a:0c:23:ca:42:ed:1c:ee:1b:
                    b6:e1:ea:0c:7c:8b:0c:57:44:cd:c2:c8:0f:32:33:ea:
                    fa:47:7b:65:64:a0:0e:79:62:6c:d4:5a:52:da:1b:78:
                    ae:ab:07:46:61:89:a4:37:45:0a:ac:f4:38:94:20:9f:
                    68:7f:f2:ed:86:47:00:de:5d:6f:16:4f:f0:79:c6:6d:
                    0e:54:ab:92:14:0e:a6:e6:58:cd:0c:80:d9:a7:6b:04:
                    9c:cb:0c:9c:73:05:65:02:2a:2c:72:10:2d:04:b0:f5:
                    65:33:27:2f:bb:1c:fd:ec:f2:05:5e:cb:fc:53:88:c0:
                    f6:45:29:1d:57:05:69:aa:e0:80:78:d8:7d:8c:5d:05:
                    dc:20:97:97:51:bc:ff:28:dd:6e:72:fb:89:7f:f4:9f:
                    31:86:c1:aa:73:05:66:40:65:0a:43:6f:c2:45:7d:83:
                    ce:2b:04:97:a5:dc:5e:12:11:01:77:44:d8:27:3c:16:
                    3e:a8:36:b4:cf:3d:02:23:e2:64:7a:56:3e:9c:11:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:a9:f8:fb:0f:bc:1d:6a:6f:d0:e8:38:c6:64:8c:2a:
        ef:d7:e0:0d:db:e0:2f:63:5d:2f:25:a2:10:e8:44:75:
        82:19:8a:33:a9:f1:cd:73:8f:6a:0a:5d:ab:0b:da:86:
        0d:59:41:94:35:a7:2b:f7:d3:8d:ee:ad:9e:90:07:7c:
        93:fc:a3:3e:a3:d8:f5:5a:39:9f:a0:78:72:65:a3:c3:
        85:e7:52:c1:5a:fb:dd:44:cf:0a:cb:92:64:a5:b4:ee:
        de:0c:ad:ce:ba:e9:fc:3b:b2:81:41:5b:94:3f:85:bf:
        9e:2d:f2:5a:51:57:21:c1:59:7e:d2:d9:67:bb:e4:24:
        f2:8a:50:d7:2b:45:19:45:17:64:a1:d7:0e:cf:96:e0:
        e5:db:a4:aa:cc:00:81:74:0c:08:46:47:0e:c3:17:71:
        1a:a9:2c:e8:64:3f:2a:21:57:ff:c3:c8:09:57:a6:bd:
        ac:c1:bb:7d:a2:56:04:0e:b9:54:da:39:a6:cf:20:2e:
        be:0a:2d:5e:dc:a7:da:f3:d4:2a:eb:d9:fd:70:4d:73:
        e1:61:63:ce:a3:f9:20:f1:e8:28:80:a3:bd:53:91:9d:
        a5:e9:43:27:4c:88:ab:26:00:c1:f3:38:cd:f2:81:bb:
        74:40:17:f3:b9:c1:97:6b:97:83:34:f3:08:a4:38:ab
    Fingerprint (SHA-256):
        66:97:E7:66:8A:E4:66:DE:A7:CF:17:1C:95:E4:6F:47:08:D1:DD:37:9A:56:82:3A:B9:11:B7:9E:54:32:81:D2
    Fingerprint (SHA1):
        E3:9D:99:7E:61:87:56:C9:C3:04:F8:A5:98:73:2B:12:9C:97:3B:9D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13849: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124521 (0x310fe229)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:33 2017
            Not After : Tue Aug 23 12:46:33 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:84:26:0f:d2:41:27:d2:d7:b9:bd:0a:5c:ed:18:3e:
                    8c:26:d9:39:cf:75:09:b9:af:78:c3:65:f5:d7:7c:a2:
                    5a:f1:b4:5d:3e:3b:d9:b9:2c:90:e4:5c:09:74:d5:fb:
                    57:d5:98:06:4e:97:93:8a:0c:23:ca:42:ed:1c:ee:1b:
                    b6:e1:ea:0c:7c:8b:0c:57:44:cd:c2:c8:0f:32:33:ea:
                    fa:47:7b:65:64:a0:0e:79:62:6c:d4:5a:52:da:1b:78:
                    ae:ab:07:46:61:89:a4:37:45:0a:ac:f4:38:94:20:9f:
                    68:7f:f2:ed:86:47:00:de:5d:6f:16:4f:f0:79:c6:6d:
                    0e:54:ab:92:14:0e:a6:e6:58:cd:0c:80:d9:a7:6b:04:
                    9c:cb:0c:9c:73:05:65:02:2a:2c:72:10:2d:04:b0:f5:
                    65:33:27:2f:bb:1c:fd:ec:f2:05:5e:cb:fc:53:88:c0:
                    f6:45:29:1d:57:05:69:aa:e0:80:78:d8:7d:8c:5d:05:
                    dc:20:97:97:51:bc:ff:28:dd:6e:72:fb:89:7f:f4:9f:
                    31:86:c1:aa:73:05:66:40:65:0a:43:6f:c2:45:7d:83:
                    ce:2b:04:97:a5:dc:5e:12:11:01:77:44:d8:27:3c:16:
                    3e:a8:36:b4:cf:3d:02:23:e2:64:7a:56:3e:9c:11:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:a9:f8:fb:0f:bc:1d:6a:6f:d0:e8:38:c6:64:8c:2a:
        ef:d7:e0:0d:db:e0:2f:63:5d:2f:25:a2:10:e8:44:75:
        82:19:8a:33:a9:f1:cd:73:8f:6a:0a:5d:ab:0b:da:86:
        0d:59:41:94:35:a7:2b:f7:d3:8d:ee:ad:9e:90:07:7c:
        93:fc:a3:3e:a3:d8:f5:5a:39:9f:a0:78:72:65:a3:c3:
        85:e7:52:c1:5a:fb:dd:44:cf:0a:cb:92:64:a5:b4:ee:
        de:0c:ad:ce:ba:e9:fc:3b:b2:81:41:5b:94:3f:85:bf:
        9e:2d:f2:5a:51:57:21:c1:59:7e:d2:d9:67:bb:e4:24:
        f2:8a:50:d7:2b:45:19:45:17:64:a1:d7:0e:cf:96:e0:
        e5:db:a4:aa:cc:00:81:74:0c:08:46:47:0e:c3:17:71:
        1a:a9:2c:e8:64:3f:2a:21:57:ff:c3:c8:09:57:a6:bd:
        ac:c1:bb:7d:a2:56:04:0e:b9:54:da:39:a6:cf:20:2e:
        be:0a:2d:5e:dc:a7:da:f3:d4:2a:eb:d9:fd:70:4d:73:
        e1:61:63:ce:a3:f9:20:f1:e8:28:80:a3:bd:53:91:9d:
        a5:e9:43:27:4c:88:ab:26:00:c1:f3:38:cd:f2:81:bb:
        74:40:17:f3:b9:c1:97:6b:97:83:34:f3:08:a4:38:ab
    Fingerprint (SHA-256):
        66:97:E7:66:8A:E4:66:DE:A7:CF:17:1C:95:E4:6F:47:08:D1:DD:37:9A:56:82:3A:B9:11:B7:9E:54:32:81:D2
    Fingerprint (SHA1):
        E3:9D:99:7E:61:87:56:C9:C3:04:F8:A5:98:73:2B:12:9C:97:3B:9D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13850: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13851: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124526 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13852: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13853: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13854: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124527 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13855: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13856: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13857: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13858: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823124528 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13859: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13860: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823124529 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13861: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13862: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13863: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13864: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13865: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823124530   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823124427.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13866: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13867: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13868: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13869: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124531   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13870: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13871: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13872: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13873: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823124532   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-BridgeNavy-823124428.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13874: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13875: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13876: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13877: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823124533   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13878: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13879: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13880: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124526 (0x310fe22e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:39 2017
            Not After : Tue Aug 23 12:46:39 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:a0:05:ab:68:ed:9c:cf:e9:30:76:08:98:7b:ae:04:
                    2b:11:ab:17:d9:ee:72:20:c8:0d:d2:25:de:01:a6:2f:
                    00:94:f9:82:22:d2:16:75:9d:2d:ed:b9:ad:37:4b:4d:
                    3f:86:75:4e:76:c1:6a:07:ec:f3:4e:9d:87:d6:e7:3f:
                    db:89:7b:72:bb:77:08:e5:82:00:63:07:57:f4:e3:71:
                    49:e8:de:2d:82:c0:c1:39:21:f2:fb:23:cc:95:7b:f1:
                    e5:14:8c:ae:8f:1e:69:18:ee:67:4c:b5:4d:b5:13:2a:
                    42:ef:f9:23:10:19:21:96:79:66:b0:b5:f3:a0:01:ab:
                    73:36:be:cd:ae:a9:35:e5:2c:fe:0b:24:1e:fa:02:df:
                    81:b0:96:f7:8e:3d:a1:b7:76:7b:a5:8e:aa:45:54:b3:
                    20:c1:7a:8b:e8:ed:c2:11:33:2c:1b:d7:82:22:e5:e5:
                    53:87:dc:fe:ea:9e:34:8b:76:e0:58:b9:b5:3b:ba:6a:
                    13:4c:92:6e:1e:64:19:5e:7a:0c:88:49:de:90:e8:17:
                    a2:0b:bc:9c:c0:13:ed:fc:bc:f3:7b:a2:43:4b:32:1b:
                    ab:9d:1d:5c:3c:28:76:c8:ff:d4:f6:f8:d6:1e:0b:1f:
                    1b:6c:5a:48:f1:a8:85:7a:19:b9:57:47:da:0c:cc:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:d9:3a:ef:61:a2:a4:e1:e9:11:fa:eb:1e:9f:85:6a:
        93:7f:46:88:44:46:4a:ec:8b:2a:b5:40:70:16:5a:85:
        55:42:f0:47:32:6d:2f:bb:d7:91:78:e0:57:3f:51:52:
        4d:b8:c3:a5:b6:37:c9:dc:21:23:7c:4e:1b:f9:53:1a:
        78:01:a5:f0:d0:30:ea:51:ad:3c:a2:cb:f7:c4:2a:58:
        67:34:3f:61:a8:33:3a:e5:d1:62:66:ca:8c:57:a6:ae:
        84:35:12:23:01:f1:0f:5f:97:83:67:f8:d3:11:49:bf:
        91:8b:75:d7:27:09:3d:16:80:22:f9:42:2a:2b:e7:0f:
        ac:3c:4a:0e:3c:4e:86:6b:1a:20:4e:fa:82:8c:50:79:
        6f:96:07:44:4b:fb:78:22:28:e7:f6:b4:92:a7:5f:8a:
        f3:74:f3:81:4e:eb:89:91:c1:a7:d8:3b:a3:f5:07:a1:
        95:35:fa:f9:74:bc:55:ae:66:a1:de:28:26:dd:d7:79:
        46:7d:b5:16:5f:63:c0:4b:50:f2:ab:21:c4:a1:84:85:
        c1:08:0a:6b:ba:93:ab:5f:a6:95:c8:05:7b:d0:fa:e1:
        78:75:dd:80:20:0a:26:97:b8:d9:9f:b4:b6:49:23:72:
        ef:2b:68:e3:3f:2a:cd:22:30:d9:35:39:b0:9e:f9:04
    Fingerprint (SHA-256):
        E7:3A:3B:E8:AE:B1:9C:61:F2:02:D4:1A:63:06:CC:B9:64:9B:09:FC:FB:1F:D9:F4:1B:76:C1:9F:A3:84:82:02
    Fingerprint (SHA1):
        FC:D4:86:B1:EE:50:45:0E:79:F8:BC:FE:B8:56:EA:AE:76:62:7F:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13881: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124527 (0x310fe22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:40 2017
            Not After : Tue Aug 23 12:46:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:0e:3a:6a:9d:3e:9c:99:76:cb:89:fd:b0:e6:c3:35:
                    83:04:48:45:2b:29:e9:25:2b:cc:b6:ee:df:f3:b3:a3:
                    0f:37:74:05:73:39:18:e0:ef:33:97:2e:56:68:02:a3:
                    f6:57:41:90:9d:6a:cd:dd:50:3b:6a:e9:7c:05:8d:df:
                    89:83:f3:96:e1:36:0a:85:09:d5:7b:6e:d2:06:51:33:
                    e7:d4:e8:85:33:3f:5d:05:5b:af:0b:9c:9e:46:e5:c3:
                    75:bc:64:26:02:20:77:c1:4f:38:60:da:89:58:74:c2:
                    73:8d:7c:9d:34:06:7e:60:f3:b3:e9:f2:1c:58:ca:88:
                    f9:10:5c:dc:1e:26:3e:56:e8:8d:8d:64:7f:bf:7c:a0:
                    06:30:b3:06:17:80:fe:f9:23:84:ab:4c:70:1d:7a:3e:
                    32:f8:94:8f:9f:bc:bb:b1:a5:35:0f:02:33:05:c4:80:
                    d1:83:66:82:ec:4c:00:5f:68:66:a9:4a:ad:42:42:47:
                    93:e6:c2:73:cd:38:af:62:f0:37:e9:63:e9:f3:8f:97:
                    a7:84:ff:84:1d:4d:55:93:97:e4:ab:9b:2c:7a:3a:a6:
                    fe:2d:f1:14:06:2f:8f:c3:4a:4e:b6:e7:0a:42:3f:1a:
                    15:70:4f:b9:a0:13:67:27:52:54:f6:7f:63:f3:3e:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:85:1e:85:1b:f1:81:90:50:8b:98:96:12:61:f4:41:
        72:3e:92:80:ce:2f:f7:0a:c5:39:d5:91:50:81:6b:85:
        f3:ec:c4:d1:42:58:32:b4:b1:24:d3:3a:24:9c:88:37:
        ea:25:03:8e:c6:12:78:1e:1d:aa:f1:7b:95:f6:fc:35:
        22:34:23:dc:95:e6:90:6a:59:6e:5c:b2:1d:31:ba:a4:
        4f:2e:2f:32:e9:5e:e5:bd:43:4c:c2:fb:2a:0d:aa:9d:
        b9:a7:b3:e0:b5:39:5e:56:6c:cd:f6:e0:bd:89:3e:ea:
        e0:75:b9:b2:a3:c5:b6:3c:54:cd:ce:22:21:2a:bf:7a:
        b6:d3:e2:ac:33:f2:cb:af:d3:35:48:6f:2f:e2:8f:83:
        3b:2b:6f:15:24:b9:7a:15:71:29:7c:b8:e8:e5:28:87:
        ed:ec:05:89:b7:b3:ad:92:d1:ca:32:50:ea:21:aa:c8:
        e3:d5:0f:9f:8b:c6:7a:ef:2a:02:e3:02:d8:9c:a1:1c:
        27:81:35:f4:d5:25:33:be:f1:27:b5:77:7b:2e:c2:e5:
        38:82:5c:ed:a7:a3:a1:32:fc:8a:1d:90:34:de:9c:a5:
        af:a4:be:9b:70:41:47:e6:fb:96:18:61:c4:a0:42:29:
        29:75:05:74:0d:51:48:d3:b2:92:73:16:22:77:98:7d
    Fingerprint (SHA-256):
        EF:CC:14:9F:3E:7D:10:85:8A:4F:E5:51:E4:3A:07:81:54:EF:3F:40:F6:41:34:08:FE:34:97:C7:F8:B5:01:00
    Fingerprint (SHA1):
        5E:DA:12:E3:A0:CB:99:1F:95:63:11:3B:B5:04:D5:5B:02:19:E6:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13882: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124527 (0x310fe22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:40 2017
            Not After : Tue Aug 23 12:46:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:0e:3a:6a:9d:3e:9c:99:76:cb:89:fd:b0:e6:c3:35:
                    83:04:48:45:2b:29:e9:25:2b:cc:b6:ee:df:f3:b3:a3:
                    0f:37:74:05:73:39:18:e0:ef:33:97:2e:56:68:02:a3:
                    f6:57:41:90:9d:6a:cd:dd:50:3b:6a:e9:7c:05:8d:df:
                    89:83:f3:96:e1:36:0a:85:09:d5:7b:6e:d2:06:51:33:
                    e7:d4:e8:85:33:3f:5d:05:5b:af:0b:9c:9e:46:e5:c3:
                    75:bc:64:26:02:20:77:c1:4f:38:60:da:89:58:74:c2:
                    73:8d:7c:9d:34:06:7e:60:f3:b3:e9:f2:1c:58:ca:88:
                    f9:10:5c:dc:1e:26:3e:56:e8:8d:8d:64:7f:bf:7c:a0:
                    06:30:b3:06:17:80:fe:f9:23:84:ab:4c:70:1d:7a:3e:
                    32:f8:94:8f:9f:bc:bb:b1:a5:35:0f:02:33:05:c4:80:
                    d1:83:66:82:ec:4c:00:5f:68:66:a9:4a:ad:42:42:47:
                    93:e6:c2:73:cd:38:af:62:f0:37:e9:63:e9:f3:8f:97:
                    a7:84:ff:84:1d:4d:55:93:97:e4:ab:9b:2c:7a:3a:a6:
                    fe:2d:f1:14:06:2f:8f:c3:4a:4e:b6:e7:0a:42:3f:1a:
                    15:70:4f:b9:a0:13:67:27:52:54:f6:7f:63:f3:3e:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:85:1e:85:1b:f1:81:90:50:8b:98:96:12:61:f4:41:
        72:3e:92:80:ce:2f:f7:0a:c5:39:d5:91:50:81:6b:85:
        f3:ec:c4:d1:42:58:32:b4:b1:24:d3:3a:24:9c:88:37:
        ea:25:03:8e:c6:12:78:1e:1d:aa:f1:7b:95:f6:fc:35:
        22:34:23:dc:95:e6:90:6a:59:6e:5c:b2:1d:31:ba:a4:
        4f:2e:2f:32:e9:5e:e5:bd:43:4c:c2:fb:2a:0d:aa:9d:
        b9:a7:b3:e0:b5:39:5e:56:6c:cd:f6:e0:bd:89:3e:ea:
        e0:75:b9:b2:a3:c5:b6:3c:54:cd:ce:22:21:2a:bf:7a:
        b6:d3:e2:ac:33:f2:cb:af:d3:35:48:6f:2f:e2:8f:83:
        3b:2b:6f:15:24:b9:7a:15:71:29:7c:b8:e8:e5:28:87:
        ed:ec:05:89:b7:b3:ad:92:d1:ca:32:50:ea:21:aa:c8:
        e3:d5:0f:9f:8b:c6:7a:ef:2a:02:e3:02:d8:9c:a1:1c:
        27:81:35:f4:d5:25:33:be:f1:27:b5:77:7b:2e:c2:e5:
        38:82:5c:ed:a7:a3:a1:32:fc:8a:1d:90:34:de:9c:a5:
        af:a4:be:9b:70:41:47:e6:fb:96:18:61:c4:a0:42:29:
        29:75:05:74:0d:51:48:d3:b2:92:73:16:22:77:98:7d
    Fingerprint (SHA-256):
        EF:CC:14:9F:3E:7D:10:85:8A:4F:E5:51:E4:3A:07:81:54:EF:3F:40:F6:41:34:08:FE:34:97:C7:F8:B5:01:00
    Fingerprint (SHA1):
        5E:DA:12:E3:A0:CB:99:1F:95:63:11:3B:B5:04:D5:5B:02:19:E6:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13883: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #13884: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124526 (0x310fe22e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:39 2017
            Not After : Tue Aug 23 12:46:39 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:a0:05:ab:68:ed:9c:cf:e9:30:76:08:98:7b:ae:04:
                    2b:11:ab:17:d9:ee:72:20:c8:0d:d2:25:de:01:a6:2f:
                    00:94:f9:82:22:d2:16:75:9d:2d:ed:b9:ad:37:4b:4d:
                    3f:86:75:4e:76:c1:6a:07:ec:f3:4e:9d:87:d6:e7:3f:
                    db:89:7b:72:bb:77:08:e5:82:00:63:07:57:f4:e3:71:
                    49:e8:de:2d:82:c0:c1:39:21:f2:fb:23:cc:95:7b:f1:
                    e5:14:8c:ae:8f:1e:69:18:ee:67:4c:b5:4d:b5:13:2a:
                    42:ef:f9:23:10:19:21:96:79:66:b0:b5:f3:a0:01:ab:
                    73:36:be:cd:ae:a9:35:e5:2c:fe:0b:24:1e:fa:02:df:
                    81:b0:96:f7:8e:3d:a1:b7:76:7b:a5:8e:aa:45:54:b3:
                    20:c1:7a:8b:e8:ed:c2:11:33:2c:1b:d7:82:22:e5:e5:
                    53:87:dc:fe:ea:9e:34:8b:76:e0:58:b9:b5:3b:ba:6a:
                    13:4c:92:6e:1e:64:19:5e:7a:0c:88:49:de:90:e8:17:
                    a2:0b:bc:9c:c0:13:ed:fc:bc:f3:7b:a2:43:4b:32:1b:
                    ab:9d:1d:5c:3c:28:76:c8:ff:d4:f6:f8:d6:1e:0b:1f:
                    1b:6c:5a:48:f1:a8:85:7a:19:b9:57:47:da:0c:cc:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:d9:3a:ef:61:a2:a4:e1:e9:11:fa:eb:1e:9f:85:6a:
        93:7f:46:88:44:46:4a:ec:8b:2a:b5:40:70:16:5a:85:
        55:42:f0:47:32:6d:2f:bb:d7:91:78:e0:57:3f:51:52:
        4d:b8:c3:a5:b6:37:c9:dc:21:23:7c:4e:1b:f9:53:1a:
        78:01:a5:f0:d0:30:ea:51:ad:3c:a2:cb:f7:c4:2a:58:
        67:34:3f:61:a8:33:3a:e5:d1:62:66:ca:8c:57:a6:ae:
        84:35:12:23:01:f1:0f:5f:97:83:67:f8:d3:11:49:bf:
        91:8b:75:d7:27:09:3d:16:80:22:f9:42:2a:2b:e7:0f:
        ac:3c:4a:0e:3c:4e:86:6b:1a:20:4e:fa:82:8c:50:79:
        6f:96:07:44:4b:fb:78:22:28:e7:f6:b4:92:a7:5f:8a:
        f3:74:f3:81:4e:eb:89:91:c1:a7:d8:3b:a3:f5:07:a1:
        95:35:fa:f9:74:bc:55:ae:66:a1:de:28:26:dd:d7:79:
        46:7d:b5:16:5f:63:c0:4b:50:f2:ab:21:c4:a1:84:85:
        c1:08:0a:6b:ba:93:ab:5f:a6:95:c8:05:7b:d0:fa:e1:
        78:75:dd:80:20:0a:26:97:b8:d9:9f:b4:b6:49:23:72:
        ef:2b:68:e3:3f:2a:cd:22:30:d9:35:39:b0:9e:f9:04
    Fingerprint (SHA-256):
        E7:3A:3B:E8:AE:B1:9C:61:F2:02:D4:1A:63:06:CC:B9:64:9B:09:FC:FB:1F:D9:F4:1B:76:C1:9F:A3:84:82:02
    Fingerprint (SHA1):
        FC:D4:86:B1:EE:50:45:0E:79:F8:BC:FE:B8:56:EA:AE:76:62:7F:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13885: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124527 (0x310fe22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:40 2017
            Not After : Tue Aug 23 12:46:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:0e:3a:6a:9d:3e:9c:99:76:cb:89:fd:b0:e6:c3:35:
                    83:04:48:45:2b:29:e9:25:2b:cc:b6:ee:df:f3:b3:a3:
                    0f:37:74:05:73:39:18:e0:ef:33:97:2e:56:68:02:a3:
                    f6:57:41:90:9d:6a:cd:dd:50:3b:6a:e9:7c:05:8d:df:
                    89:83:f3:96:e1:36:0a:85:09:d5:7b:6e:d2:06:51:33:
                    e7:d4:e8:85:33:3f:5d:05:5b:af:0b:9c:9e:46:e5:c3:
                    75:bc:64:26:02:20:77:c1:4f:38:60:da:89:58:74:c2:
                    73:8d:7c:9d:34:06:7e:60:f3:b3:e9:f2:1c:58:ca:88:
                    f9:10:5c:dc:1e:26:3e:56:e8:8d:8d:64:7f:bf:7c:a0:
                    06:30:b3:06:17:80:fe:f9:23:84:ab:4c:70:1d:7a:3e:
                    32:f8:94:8f:9f:bc:bb:b1:a5:35:0f:02:33:05:c4:80:
                    d1:83:66:82:ec:4c:00:5f:68:66:a9:4a:ad:42:42:47:
                    93:e6:c2:73:cd:38:af:62:f0:37:e9:63:e9:f3:8f:97:
                    a7:84:ff:84:1d:4d:55:93:97:e4:ab:9b:2c:7a:3a:a6:
                    fe:2d:f1:14:06:2f:8f:c3:4a:4e:b6:e7:0a:42:3f:1a:
                    15:70:4f:b9:a0:13:67:27:52:54:f6:7f:63:f3:3e:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:85:1e:85:1b:f1:81:90:50:8b:98:96:12:61:f4:41:
        72:3e:92:80:ce:2f:f7:0a:c5:39:d5:91:50:81:6b:85:
        f3:ec:c4:d1:42:58:32:b4:b1:24:d3:3a:24:9c:88:37:
        ea:25:03:8e:c6:12:78:1e:1d:aa:f1:7b:95:f6:fc:35:
        22:34:23:dc:95:e6:90:6a:59:6e:5c:b2:1d:31:ba:a4:
        4f:2e:2f:32:e9:5e:e5:bd:43:4c:c2:fb:2a:0d:aa:9d:
        b9:a7:b3:e0:b5:39:5e:56:6c:cd:f6:e0:bd:89:3e:ea:
        e0:75:b9:b2:a3:c5:b6:3c:54:cd:ce:22:21:2a:bf:7a:
        b6:d3:e2:ac:33:f2:cb:af:d3:35:48:6f:2f:e2:8f:83:
        3b:2b:6f:15:24:b9:7a:15:71:29:7c:b8:e8:e5:28:87:
        ed:ec:05:89:b7:b3:ad:92:d1:ca:32:50:ea:21:aa:c8:
        e3:d5:0f:9f:8b:c6:7a:ef:2a:02:e3:02:d8:9c:a1:1c:
        27:81:35:f4:d5:25:33:be:f1:27:b5:77:7b:2e:c2:e5:
        38:82:5c:ed:a7:a3:a1:32:fc:8a:1d:90:34:de:9c:a5:
        af:a4:be:9b:70:41:47:e6:fb:96:18:61:c4:a0:42:29:
        29:75:05:74:0d:51:48:d3:b2:92:73:16:22:77:98:7d
    Fingerprint (SHA-256):
        EF:CC:14:9F:3E:7D:10:85:8A:4F:E5:51:E4:3A:07:81:54:EF:3F:40:F6:41:34:08:FE:34:97:C7:F8:B5:01:00
    Fingerprint (SHA1):
        5E:DA:12:E3:A0:CB:99:1F:95:63:11:3B:B5:04:D5:5B:02:19:E6:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13886: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124527 (0x310fe22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:40 2017
            Not After : Tue Aug 23 12:46:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:0e:3a:6a:9d:3e:9c:99:76:cb:89:fd:b0:e6:c3:35:
                    83:04:48:45:2b:29:e9:25:2b:cc:b6:ee:df:f3:b3:a3:
                    0f:37:74:05:73:39:18:e0:ef:33:97:2e:56:68:02:a3:
                    f6:57:41:90:9d:6a:cd:dd:50:3b:6a:e9:7c:05:8d:df:
                    89:83:f3:96:e1:36:0a:85:09:d5:7b:6e:d2:06:51:33:
                    e7:d4:e8:85:33:3f:5d:05:5b:af:0b:9c:9e:46:e5:c3:
                    75:bc:64:26:02:20:77:c1:4f:38:60:da:89:58:74:c2:
                    73:8d:7c:9d:34:06:7e:60:f3:b3:e9:f2:1c:58:ca:88:
                    f9:10:5c:dc:1e:26:3e:56:e8:8d:8d:64:7f:bf:7c:a0:
                    06:30:b3:06:17:80:fe:f9:23:84:ab:4c:70:1d:7a:3e:
                    32:f8:94:8f:9f:bc:bb:b1:a5:35:0f:02:33:05:c4:80:
                    d1:83:66:82:ec:4c:00:5f:68:66:a9:4a:ad:42:42:47:
                    93:e6:c2:73:cd:38:af:62:f0:37:e9:63:e9:f3:8f:97:
                    a7:84:ff:84:1d:4d:55:93:97:e4:ab:9b:2c:7a:3a:a6:
                    fe:2d:f1:14:06:2f:8f:c3:4a:4e:b6:e7:0a:42:3f:1a:
                    15:70:4f:b9:a0:13:67:27:52:54:f6:7f:63:f3:3e:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:85:1e:85:1b:f1:81:90:50:8b:98:96:12:61:f4:41:
        72:3e:92:80:ce:2f:f7:0a:c5:39:d5:91:50:81:6b:85:
        f3:ec:c4:d1:42:58:32:b4:b1:24:d3:3a:24:9c:88:37:
        ea:25:03:8e:c6:12:78:1e:1d:aa:f1:7b:95:f6:fc:35:
        22:34:23:dc:95:e6:90:6a:59:6e:5c:b2:1d:31:ba:a4:
        4f:2e:2f:32:e9:5e:e5:bd:43:4c:c2:fb:2a:0d:aa:9d:
        b9:a7:b3:e0:b5:39:5e:56:6c:cd:f6:e0:bd:89:3e:ea:
        e0:75:b9:b2:a3:c5:b6:3c:54:cd:ce:22:21:2a:bf:7a:
        b6:d3:e2:ac:33:f2:cb:af:d3:35:48:6f:2f:e2:8f:83:
        3b:2b:6f:15:24:b9:7a:15:71:29:7c:b8:e8:e5:28:87:
        ed:ec:05:89:b7:b3:ad:92:d1:ca:32:50:ea:21:aa:c8:
        e3:d5:0f:9f:8b:c6:7a:ef:2a:02:e3:02:d8:9c:a1:1c:
        27:81:35:f4:d5:25:33:be:f1:27:b5:77:7b:2e:c2:e5:
        38:82:5c:ed:a7:a3:a1:32:fc:8a:1d:90:34:de:9c:a5:
        af:a4:be:9b:70:41:47:e6:fb:96:18:61:c4:a0:42:29:
        29:75:05:74:0d:51:48:d3:b2:92:73:16:22:77:98:7d
    Fingerprint (SHA-256):
        EF:CC:14:9F:3E:7D:10:85:8A:4F:E5:51:E4:3A:07:81:54:EF:3F:40:F6:41:34:08:FE:34:97:C7:F8:B5:01:00
    Fingerprint (SHA1):
        5E:DA:12:E3:A0:CB:99:1F:95:63:11:3B:B5:04:D5:5B:02:19:E6:45
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13887: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13888: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124534 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13889: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13890: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13891: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124535 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13892: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13893: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #13894: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13895: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 823124536   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13896: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13897: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #13898: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13899: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 823124537   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13900: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13901: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13902: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13903: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 823124538 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13904: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13905: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 823124539 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13906: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13907: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #13908: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13909: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13910: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823124540   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13911: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13912: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13913: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13914: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823124541   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13915: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13916: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13917: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13918: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124542   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13919: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13920: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13921: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13922: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823124543   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13923: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13924: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13925: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124534 (0x310fe236)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:47 2017
            Not After : Tue Aug 23 12:46:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:25:e8:ac:20:d3:22:20:59:30:bd:c4:21:8a:d4:01:
                    f2:4b:2a:8c:f7:34:96:da:e3:91:c1:36:8f:64:07:16:
                    66:de:5f:85:6f:5a:2f:70:7a:88:f4:4c:8a:1e:70:9b:
                    50:e5:a0:b1:34:40:3c:a1:d6:db:a3:47:41:ea:c1:57:
                    96:f5:45:69:6f:45:9d:d5:ab:fd:e6:62:a2:fa:65:01:
                    7b:b6:f0:c1:ba:ef:e4:90:02:e8:30:8e:9b:f6:43:ff:
                    0b:10:33:e9:d9:04:64:3e:b7:df:5d:b9:17:ab:8a:38:
                    8b:55:91:ed:3e:40:2b:07:af:5d:27:ff:cb:e3:e5:ab:
                    58:b1:57:77:95:64:be:97:ad:97:18:8b:0f:ae:da:f8:
                    c4:15:f4:7a:84:9c:f2:9a:88:70:11:3d:3f:ba:c0:2c:
                    aa:d7:f9:22:3f:91:93:cc:6c:46:f7:9d:2b:5f:18:53:
                    4c:65:1a:90:95:cb:d4:87:e3:c9:90:34:f2:b3:d8:e0:
                    14:59:ee:4e:aa:ee:64:68:8a:a9:55:09:e3:eb:61:bd:
                    fd:f6:56:30:42:05:5e:17:4f:85:34:65:e5:78:aa:0a:
                    9c:fa:37:33:49:67:d0:d9:aa:e7:35:e6:f3:be:9b:c2:
                    f0:3c:96:c8:3e:88:ef:d9:13:41:05:65:b8:ec:3a:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:77:93:76:6c:22:63:5f:c3:66:09:d7:80:a9:60:73:
        37:57:d5:ac:a1:8e:55:29:71:97:7c:3e:04:09:83:20:
        c2:00:b0:28:85:e5:44:49:cf:a2:0b:02:25:c3:1d:f7:
        29:3b:93:c6:5b:c1:56:c8:73:52:ba:03:e7:55:44:10:
        88:8f:00:bf:fd:ed:5f:b3:98:94:7a:1b:a1:40:ab:80:
        13:b9:3d:8b:d7:19:dc:e4:e4:24:f7:c3:9a:e0:d2:e0:
        3c:6e:fd:49:f8:9f:fc:46:af:a6:e6:93:94:31:4b:1e:
        7f:86:95:29:8c:18:63:ee:24:17:f2:9e:03:52:77:30:
        d1:b1:13:ae:68:b4:9a:53:64:47:e6:e0:91:15:1f:69:
        83:f2:11:65:3f:f0:4e:ed:7d:4c:3c:7e:6b:45:f3:11:
        1c:7c:fa:cc:20:4e:67:a8:fc:d1:69:0d:aa:46:25:34:
        48:14:1e:dc:57:52:16:fd:d9:38:4a:e3:11:42:2d:27:
        cf:e9:5d:8f:fa:ac:18:df:ee:78:be:6a:cc:bd:23:57:
        c1:1b:d0:f0:49:c5:e3:85:2d:83:84:e1:88:7a:d5:8c:
        a6:b6:08:bb:e2:2d:8c:83:29:f5:71:a5:0b:6d:20:a4:
        ef:7a:fc:92:47:af:69:fb:ae:12:b4:ac:78:f6:82:36
    Fingerprint (SHA-256):
        D1:A4:CD:6A:7D:83:66:FD:31:AA:A4:E7:AF:74:E3:89:5F:F0:61:68:20:AF:A5:BF:D3:15:6D:CA:76:CD:69:E5
    Fingerprint (SHA1):
        A2:4D:71:CA:CB:33:B3:AC:01:03:FA:06:EB:4B:0D:A4:95:01:34:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #13926: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13927: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13928: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13929: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13930: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13931: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13932: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13933: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13934: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124535 (0x310fe237)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:48 2017
            Not After : Tue Aug 23 12:46:48 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:9a:f4:bf:c5:1e:93:0a:48:73:db:08:29:62:5b:73:
                    fe:07:56:2d:1d:47:42:fc:00:e9:31:09:73:62:48:02:
                    6b:6e:3b:9b:7e:51:94:1c:49:16:28:8e:15:f2:bc:ac:
                    53:a9:f4:c8:fc:9a:23:10:09:c6:65:94:0e:15:e0:43:
                    bc:7e:bd:83:2b:f5:b0:2a:6e:1f:56:89:7c:4a:00:5d:
                    36:b1:dc:20:69:9c:d4:d5:f9:df:57:9b:53:d8:7a:71:
                    2b:fc:bf:49:5e:1b:a0:87:9e:40:6f:d4:e3:2f:31:4d:
                    c0:3a:c3:a1:74:2d:79:1c:b1:81:22:15:56:e6:ac:40:
                    5a:ec:bf:9e:d2:df:5a:e1:bc:36:f8:21:28:5d:2d:fb:
                    f6:06:03:37:ca:67:00:10:e4:cd:57:e7:2a:60:19:61:
                    08:aa:38:2e:18:ab:97:dc:fe:37:dd:4d:27:28:47:1a:
                    22:b4:a1:8c:8d:89:d8:59:ba:27:3f:2d:82:d1:ab:70:
                    cd:7d:81:66:70:7d:e9:b5:42:11:9d:6a:16:cf:43:8a:
                    da:5f:b0:12:56:b2:9a:59:ed:d6:75:ce:00:99:54:b8:
                    54:7f:27:b6:f1:60:bf:f4:47:bc:3c:02:5a:5d:11:e2:
                    e9:34:d7:20:19:e3:87:40:27:ee:5a:15:3e:8a:97:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:20:1a:4d:52:f7:3f:e2:75:8f:6e:9d:3a:00:90:96:
        20:d4:a2:e7:d6:1f:7a:02:db:bd:e6:6b:32:28:db:f0:
        c3:6a:23:5a:47:b1:0a:9d:72:01:82:8b:fd:01:ff:0c:
        9d:64:15:2b:af:ad:da:bc:37:82:ba:d4:c9:4c:50:c5:
        49:91:83:f4:3f:a1:18:40:f9:13:d0:07:12:f0:82:22:
        b3:b0:70:23:7d:ea:0e:46:5c:64:93:93:48:32:51:2f:
        5e:78:9f:d9:48:e8:3b:ff:3b:7b:80:5c:a6:a2:8d:cb:
        28:cc:9f:82:74:f0:c3:e1:9d:6c:c0:6a:01:10:7a:4a:
        40:8d:10:23:fb:33:33:18:57:7d:49:3f:3c:18:04:3c:
        72:db:36:38:cf:78:9a:96:80:cc:42:30:55:20:c2:1b:
        a8:90:dc:c6:00:d1:92:db:55:1e:b0:40:6d:fe:4c:b2:
        83:3f:0d:29:31:ad:82:fe:81:93:f2:7d:de:34:40:f6:
        7b:e2:b7:cc:d6:2c:67:b6:1a:bf:1a:50:d3:0b:83:9f:
        8c:7f:a6:20:e0:f1:dd:02:00:49:5b:a7:78:07:4d:a0:
        d6:f4:73:fe:a4:34:56:52:4e:4a:94:e7:8c:1c:6b:e9:
        43:02:57:2a:01:32:01:31:76:59:78:89:3b:0a:fd:2f
    Fingerprint (SHA-256):
        B0:1F:3B:A1:DA:7E:3D:31:35:15:A3:C5:A6:54:08:C6:48:73:94:3D:2E:E2:86:70:F7:47:EF:46:4C:73:1E:14
    Fingerprint (SHA1):
        84:E4:5A:14:8A:13:8B:BD:FE:65:B4:B4:53:A1:57:10:F9:85:35:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #13935: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13936: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13937: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13938: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13939: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13940: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13941: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #13942: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #13943: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #13944: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #13945: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #13946: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #13947: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #13948: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #13949: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #13950: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #13951: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #13952: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13953: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124544 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13954: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13955: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13956: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13957: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124545   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13958: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13959: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13960: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13961: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124546   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13962: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13963: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13964: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13965: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 823124547   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13966: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13967: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13968: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13969: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823124548   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13970: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13971: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13972: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13973: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 823124549   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13974: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13975: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #13976: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13977: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 823124550   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13978: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13979: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #13980: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13981: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 823124551   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13982: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13983: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #13984: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13985: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 823124552   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13986: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13987: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13988: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124544 (0x310fe240)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:59 2017
            Not After : Tue Aug 23 12:46:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bf:15:c4:8d:71:5d:66:72:e1:5e:1b:c8:80:53:62:02:
                    81:02:66:26:30:d5:5c:93:f4:48:3b:22:87:ff:aa:61:
                    27:16:36:7c:a8:02:63:ce:9f:6a:67:84:9b:a7:36:8f:
                    78:9a:65:1b:28:e0:85:27:d4:d9:fd:43:12:7d:f9:19:
                    b7:8f:7e:e4:61:c3:37:68:d3:d2:46:4a:cd:44:61:12:
                    cb:87:62:59:37:66:4b:66:c6:13:97:1b:46:2a:25:53:
                    ef:d8:e7:17:9d:54:2a:b1:e6:87:b4:34:ab:17:bf:f7:
                    0c:f3:f9:69:ef:a3:78:f2:52:03:54:97:31:db:8c:7d:
                    e8:1b:36:0d:5f:aa:c9:e6:4d:e1:b2:fb:b3:66:6d:c2:
                    a2:fa:79:d6:1c:95:fe:93:29:d7:a4:8a:a4:f5:95:eb:
                    40:12:ae:da:13:f0:5e:92:dd:c8:de:fc:0b:57:60:27:
                    3d:7d:c1:d4:5e:60:20:f7:0f:00:ec:ab:f2:6c:36:cc:
                    db:97:0d:fe:7c:6c:ca:47:89:7c:dd:e6:9d:ac:66:4d:
                    31:76:11:3f:8c:df:1a:82:12:18:29:30:17:e7:80:16:
                    ac:f1:1b:61:18:4f:57:32:5c:8b:81:36:58:e6:4b:d8:
                    51:45:9d:98:c7:fb:33:8f:1e:e9:2e:12:c7:7c:2b:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:77:2d:fd:70:69:e9:10:19:35:87:92:63:
        78:2b:7d:4a:0f:61:c7:95:ab:f9:44:43:53:88:09:cd:
        02:1d:00:8b:34:1b:83:37:e6:86:79:8c:ec:2c:a6:48:
        ef:cc:60:29:a6:e9:13:17:6b:f0:07:a5:5c:10:a3
    Fingerprint (SHA-256):
        E6:AE:31:4C:71:BC:6B:0C:B3:DA:ED:C6:F2:21:5A:F9:81:1F:15:C8:83:06:3A:30:85:3C:0C:26:ED:D0:C3:B0
    Fingerprint (SHA1):
        7D:B4:0B:FB:E2:5E:4C:94:B3:D9:F3:35:33:9F:F5:DF:EA:A6:E5:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13989: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124544 (0x310fe240)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:59 2017
            Not After : Tue Aug 23 12:46:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bf:15:c4:8d:71:5d:66:72:e1:5e:1b:c8:80:53:62:02:
                    81:02:66:26:30:d5:5c:93:f4:48:3b:22:87:ff:aa:61:
                    27:16:36:7c:a8:02:63:ce:9f:6a:67:84:9b:a7:36:8f:
                    78:9a:65:1b:28:e0:85:27:d4:d9:fd:43:12:7d:f9:19:
                    b7:8f:7e:e4:61:c3:37:68:d3:d2:46:4a:cd:44:61:12:
                    cb:87:62:59:37:66:4b:66:c6:13:97:1b:46:2a:25:53:
                    ef:d8:e7:17:9d:54:2a:b1:e6:87:b4:34:ab:17:bf:f7:
                    0c:f3:f9:69:ef:a3:78:f2:52:03:54:97:31:db:8c:7d:
                    e8:1b:36:0d:5f:aa:c9:e6:4d:e1:b2:fb:b3:66:6d:c2:
                    a2:fa:79:d6:1c:95:fe:93:29:d7:a4:8a:a4:f5:95:eb:
                    40:12:ae:da:13:f0:5e:92:dd:c8:de:fc:0b:57:60:27:
                    3d:7d:c1:d4:5e:60:20:f7:0f:00:ec:ab:f2:6c:36:cc:
                    db:97:0d:fe:7c:6c:ca:47:89:7c:dd:e6:9d:ac:66:4d:
                    31:76:11:3f:8c:df:1a:82:12:18:29:30:17:e7:80:16:
                    ac:f1:1b:61:18:4f:57:32:5c:8b:81:36:58:e6:4b:d8:
                    51:45:9d:98:c7:fb:33:8f:1e:e9:2e:12:c7:7c:2b:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:77:2d:fd:70:69:e9:10:19:35:87:92:63:
        78:2b:7d:4a:0f:61:c7:95:ab:f9:44:43:53:88:09:cd:
        02:1d:00:8b:34:1b:83:37:e6:86:79:8c:ec:2c:a6:48:
        ef:cc:60:29:a6:e9:13:17:6b:f0:07:a5:5c:10:a3
    Fingerprint (SHA-256):
        E6:AE:31:4C:71:BC:6B:0C:B3:DA:ED:C6:F2:21:5A:F9:81:1F:15:C8:83:06:3A:30:85:3C:0C:26:ED:D0:C3:B0
    Fingerprint (SHA1):
        7D:B4:0B:FB:E2:5E:4C:94:B3:D9:F3:35:33:9F:F5:DF:EA:A6:E5:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13990: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124544 (0x310fe240)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:59 2017
            Not After : Tue Aug 23 12:46:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bf:15:c4:8d:71:5d:66:72:e1:5e:1b:c8:80:53:62:02:
                    81:02:66:26:30:d5:5c:93:f4:48:3b:22:87:ff:aa:61:
                    27:16:36:7c:a8:02:63:ce:9f:6a:67:84:9b:a7:36:8f:
                    78:9a:65:1b:28:e0:85:27:d4:d9:fd:43:12:7d:f9:19:
                    b7:8f:7e:e4:61:c3:37:68:d3:d2:46:4a:cd:44:61:12:
                    cb:87:62:59:37:66:4b:66:c6:13:97:1b:46:2a:25:53:
                    ef:d8:e7:17:9d:54:2a:b1:e6:87:b4:34:ab:17:bf:f7:
                    0c:f3:f9:69:ef:a3:78:f2:52:03:54:97:31:db:8c:7d:
                    e8:1b:36:0d:5f:aa:c9:e6:4d:e1:b2:fb:b3:66:6d:c2:
                    a2:fa:79:d6:1c:95:fe:93:29:d7:a4:8a:a4:f5:95:eb:
                    40:12:ae:da:13:f0:5e:92:dd:c8:de:fc:0b:57:60:27:
                    3d:7d:c1:d4:5e:60:20:f7:0f:00:ec:ab:f2:6c:36:cc:
                    db:97:0d:fe:7c:6c:ca:47:89:7c:dd:e6:9d:ac:66:4d:
                    31:76:11:3f:8c:df:1a:82:12:18:29:30:17:e7:80:16:
                    ac:f1:1b:61:18:4f:57:32:5c:8b:81:36:58:e6:4b:d8:
                    51:45:9d:98:c7:fb:33:8f:1e:e9:2e:12:c7:7c:2b:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:77:2d:fd:70:69:e9:10:19:35:87:92:63:
        78:2b:7d:4a:0f:61:c7:95:ab:f9:44:43:53:88:09:cd:
        02:1d:00:8b:34:1b:83:37:e6:86:79:8c:ec:2c:a6:48:
        ef:cc:60:29:a6:e9:13:17:6b:f0:07:a5:5c:10:a3
    Fingerprint (SHA-256):
        E6:AE:31:4C:71:BC:6B:0C:B3:DA:ED:C6:F2:21:5A:F9:81:1F:15:C8:83:06:3A:30:85:3C:0C:26:ED:D0:C3:B0
    Fingerprint (SHA1):
        7D:B4:0B:FB:E2:5E:4C:94:B3:D9:F3:35:33:9F:F5:DF:EA:A6:E5:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #13991: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124544 (0x310fe240)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:46:59 2017
            Not After : Tue Aug 23 12:46:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    bf:15:c4:8d:71:5d:66:72:e1:5e:1b:c8:80:53:62:02:
                    81:02:66:26:30:d5:5c:93:f4:48:3b:22:87:ff:aa:61:
                    27:16:36:7c:a8:02:63:ce:9f:6a:67:84:9b:a7:36:8f:
                    78:9a:65:1b:28:e0:85:27:d4:d9:fd:43:12:7d:f9:19:
                    b7:8f:7e:e4:61:c3:37:68:d3:d2:46:4a:cd:44:61:12:
                    cb:87:62:59:37:66:4b:66:c6:13:97:1b:46:2a:25:53:
                    ef:d8:e7:17:9d:54:2a:b1:e6:87:b4:34:ab:17:bf:f7:
                    0c:f3:f9:69:ef:a3:78:f2:52:03:54:97:31:db:8c:7d:
                    e8:1b:36:0d:5f:aa:c9:e6:4d:e1:b2:fb:b3:66:6d:c2:
                    a2:fa:79:d6:1c:95:fe:93:29:d7:a4:8a:a4:f5:95:eb:
                    40:12:ae:da:13:f0:5e:92:dd:c8:de:fc:0b:57:60:27:
                    3d:7d:c1:d4:5e:60:20:f7:0f:00:ec:ab:f2:6c:36:cc:
                    db:97:0d:fe:7c:6c:ca:47:89:7c:dd:e6:9d:ac:66:4d:
                    31:76:11:3f:8c:df:1a:82:12:18:29:30:17:e7:80:16:
                    ac:f1:1b:61:18:4f:57:32:5c:8b:81:36:58:e6:4b:d8:
                    51:45:9d:98:c7:fb:33:8f:1e:e9:2e:12:c7:7c:2b:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:77:2d:fd:70:69:e9:10:19:35:87:92:63:
        78:2b:7d:4a:0f:61:c7:95:ab:f9:44:43:53:88:09:cd:
        02:1d:00:8b:34:1b:83:37:e6:86:79:8c:ec:2c:a6:48:
        ef:cc:60:29:a6:e9:13:17:6b:f0:07:a5:5c:10:a3
    Fingerprint (SHA-256):
        E6:AE:31:4C:71:BC:6B:0C:B3:DA:ED:C6:F2:21:5A:F9:81:1F:15:C8:83:06:3A:30:85:3C:0C:26:ED:D0:C3:B0
    Fingerprint (SHA1):
        7D:B4:0B:FB:E2:5E:4C:94:B3:D9:F3:35:33:9F:F5:DF:EA:A6:E5:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #13992: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13993: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13994: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13995: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #13996: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13997: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13998: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13999: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14000: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14001: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14002: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14003: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14004: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14005: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14006: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14007: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #14008: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14009: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14010: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14011: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14012: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14013: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14014: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14015: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14016: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14017: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14018: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14019: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823124714Z
nextupdate=20180823124714Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:47:14 2017
    Next Update: Thu Aug 23 12:47:14 2018
    CRL Extensions:
chains.sh: #14020: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823124714Z
nextupdate=20180823124714Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:47:14 2017
    Next Update: Thu Aug 23 12:47:14 2018
    CRL Extensions:
chains.sh: #14021: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823124714Z
nextupdate=20180823124714Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:47:14 2017
    Next Update: Thu Aug 23 12:47:14 2018
    CRL Extensions:
chains.sh: #14022: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823124715Z
nextupdate=20180823124715Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:47:15 2017
    Next Update: Thu Aug 23 12:47:15 2018
    CRL Extensions:
chains.sh: #14023: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823124716Z
addcert 14 20170823124716Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:47:16 2017
    Next Update: Thu Aug 23 12:47:14 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed Aug 23 12:47:16 2017
    CRL Extensions:
chains.sh: #14024: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823124717Z
addcert 15 20170823124717Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:47:17 2017
    Next Update: Thu Aug 23 12:47:14 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed Aug 23 12:47:17 2017
    CRL Extensions:
chains.sh: #14025: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14026: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14027: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14028: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #14029: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #14030: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #14031: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #14032: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #14033: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #14034: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:09 2017
            Not After : Tue Aug 23 12:47:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:66:ea:8a:b8:dd:4a:5e:3d:b1:e3:2c:33:f4:43:51:
                    b6:c8:0c:14:c4:b1:4c:d9:da:a8:50:0e:d2:65:3d:7b:
                    b8:ea:93:d4:af:74:52:ad:dd:41:14:3c:9c:d8:f2:62:
                    57:b6:7c:e0:aa:00:fa:95:0e:80:55:89:a8:3f:1c:31:
                    16:15:f2:f7:22:87:b1:b5:d1:67:57:05:85:62:92:00:
                    5d:50:3c:9e:84:ca:18:30:90:bf:00:0f:91:e5:16:90:
                    6f:6a:6a:7b:5e:33:29:6b:f5:7c:9c:6f:5e:7e:2c:31:
                    b0:ce:fd:39:58:a8:b0:1c:77:5f:49:9b:cc:73:a9:4c:
                    94:97:e4:54:24:8c:75:59:c6:eb:b6:5d:17:1b:89:9c:
                    d6:9d:49:2a:c3:75:e4:67:8f:73:fd:14:e1:9e:06:98:
                    ca:cf:02:83:69:5b:de:a8:f9:d1:ad:ff:56:c6:e7:e5:
                    96:12:5b:31:23:bd:6e:2c:84:4b:86:ab:52:55:a9:70:
                    cf:2a:05:72:d6:d9:9d:94:40:48:5d:15:e6:8a:cc:ae:
                    16:9b:7c:f3:95:60:17:40:89:22:5e:db:a1:a0:f2:e6:
                    2a:eb:b3:b6:b2:13:3a:1c:be:15:44:79:c4:40:c8:0a:
                    37:51:93:0b:e1:05:ec:03:84:37:e6:2b:d6:a7:9e:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:3d:a7:5d:87:e5:10:4c:e6:0a:2b:12:10:a8:f9:5a:
        d4:05:aa:e6:4a:2f:cb:14:ab:2d:85:fa:17:d5:15:81:
        37:5a:ca:c4:38:c1:01:c4:0e:27:1a:f3:47:f9:79:e5:
        9d:ed:1c:84:33:fb:a1:80:a0:b5:50:30:46:de:7f:27:
        83:34:fe:24:61:40:b9:25:e8:67:b6:2b:d5:48:c1:16:
        d5:7d:dd:49:7c:f3:72:e7:75:fe:24:6f:ee:6d:b0:f7:
        cd:8d:40:13:8f:dd:68:d3:99:cd:7e:1e:ca:b8:67:6c:
        73:a3:1f:24:d1:60:5d:87:d9:6f:21:93:85:bc:7b:09:
        28:c4:04:a9:54:c3:34:9c:b4:48:dd:7d:47:8a:b1:0d:
        27:14:2c:fa:2f:11:82:93:33:52:4d:30:a5:bf:52:50:
        24:9e:ce:07:41:4c:b7:88:82:e9:57:35:36:93:32:63:
        d4:6d:29:d6:97:fe:79:e2:3f:20:d5:80:96:68:bb:37:
        47:90:56:d6:2f:b3:50:4c:3e:36:7e:e6:65:7f:f0:69:
        ba:34:77:98:99:31:b0:b1:4b:70:77:6c:c5:c3:79:5b:
        92:c9:02:bb:31:29:e7:3f:7f:6e:25:3b:9b:63:fc:3d:
        50:e7:b0:be:4e:49:0f:c1:4f:a9:c9:9b:11:64:b3:9e
    Fingerprint (SHA-256):
        5B:2A:0D:5A:B8:B2:DF:7F:65:4C:48:04:B9:4E:43:D3:4C:E4:8F:93:EC:1F:28:47:E6:07:E1:64:7F:D7:9B:75
    Fingerprint (SHA1):
        1A:EA:EA:AA:A7:0B:72:6C:10:84:DC:52:5A:F4:EB:8E:6D:73:C7:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14035: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14036: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:09 2017
            Not After : Tue Aug 23 12:47:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:66:ea:8a:b8:dd:4a:5e:3d:b1:e3:2c:33:f4:43:51:
                    b6:c8:0c:14:c4:b1:4c:d9:da:a8:50:0e:d2:65:3d:7b:
                    b8:ea:93:d4:af:74:52:ad:dd:41:14:3c:9c:d8:f2:62:
                    57:b6:7c:e0:aa:00:fa:95:0e:80:55:89:a8:3f:1c:31:
                    16:15:f2:f7:22:87:b1:b5:d1:67:57:05:85:62:92:00:
                    5d:50:3c:9e:84:ca:18:30:90:bf:00:0f:91:e5:16:90:
                    6f:6a:6a:7b:5e:33:29:6b:f5:7c:9c:6f:5e:7e:2c:31:
                    b0:ce:fd:39:58:a8:b0:1c:77:5f:49:9b:cc:73:a9:4c:
                    94:97:e4:54:24:8c:75:59:c6:eb:b6:5d:17:1b:89:9c:
                    d6:9d:49:2a:c3:75:e4:67:8f:73:fd:14:e1:9e:06:98:
                    ca:cf:02:83:69:5b:de:a8:f9:d1:ad:ff:56:c6:e7:e5:
                    96:12:5b:31:23:bd:6e:2c:84:4b:86:ab:52:55:a9:70:
                    cf:2a:05:72:d6:d9:9d:94:40:48:5d:15:e6:8a:cc:ae:
                    16:9b:7c:f3:95:60:17:40:89:22:5e:db:a1:a0:f2:e6:
                    2a:eb:b3:b6:b2:13:3a:1c:be:15:44:79:c4:40:c8:0a:
                    37:51:93:0b:e1:05:ec:03:84:37:e6:2b:d6:a7:9e:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:3d:a7:5d:87:e5:10:4c:e6:0a:2b:12:10:a8:f9:5a:
        d4:05:aa:e6:4a:2f:cb:14:ab:2d:85:fa:17:d5:15:81:
        37:5a:ca:c4:38:c1:01:c4:0e:27:1a:f3:47:f9:79:e5:
        9d:ed:1c:84:33:fb:a1:80:a0:b5:50:30:46:de:7f:27:
        83:34:fe:24:61:40:b9:25:e8:67:b6:2b:d5:48:c1:16:
        d5:7d:dd:49:7c:f3:72:e7:75:fe:24:6f:ee:6d:b0:f7:
        cd:8d:40:13:8f:dd:68:d3:99:cd:7e:1e:ca:b8:67:6c:
        73:a3:1f:24:d1:60:5d:87:d9:6f:21:93:85:bc:7b:09:
        28:c4:04:a9:54:c3:34:9c:b4:48:dd:7d:47:8a:b1:0d:
        27:14:2c:fa:2f:11:82:93:33:52:4d:30:a5:bf:52:50:
        24:9e:ce:07:41:4c:b7:88:82:e9:57:35:36:93:32:63:
        d4:6d:29:d6:97:fe:79:e2:3f:20:d5:80:96:68:bb:37:
        47:90:56:d6:2f:b3:50:4c:3e:36:7e:e6:65:7f:f0:69:
        ba:34:77:98:99:31:b0:b1:4b:70:77:6c:c5:c3:79:5b:
        92:c9:02:bb:31:29:e7:3f:7f:6e:25:3b:9b:63:fc:3d:
        50:e7:b0:be:4e:49:0f:c1:4f:a9:c9:9b:11:64:b3:9e
    Fingerprint (SHA-256):
        5B:2A:0D:5A:B8:B2:DF:7F:65:4C:48:04:B9:4E:43:D3:4C:E4:8F:93:EC:1F:28:47:E6:07:E1:64:7F:D7:9B:75
    Fingerprint (SHA1):
        1A:EA:EA:AA:A7:0B:72:6C:10:84:DC:52:5A:F4:EB:8E:6D:73:C7:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14037: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14038: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14039: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124553 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14040: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14041: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14042: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14043: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 823124554   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14044: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14045: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14046: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124444.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14047: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124429.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14048: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14049: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14050: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124444.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14051: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 823124555   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14052: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14053: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14054: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124444.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14055: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124430.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14056: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14057: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14058: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14059: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 823124556   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14060: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14061: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14062: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124444.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14063: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124431.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14064: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14065: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14066: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124444.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14067: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124432.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14068: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14069: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823124726Z
nextupdate=20180823124726Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:47:26 2017
    Next Update: Thu Aug 23 12:47:26 2018
    CRL Extensions:
chains.sh: #14070: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823124726Z
nextupdate=20180823124726Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:47:26 2017
    Next Update: Thu Aug 23 12:47:26 2018
    CRL Extensions:
chains.sh: #14071: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823124726Z
nextupdate=20180823124726Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:47:26 2017
    Next Update: Thu Aug 23 12:47:26 2018
    CRL Extensions:
chains.sh: #14072: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823124726Z
nextupdate=20180823124726Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:47:26 2017
    Next Update: Thu Aug 23 12:47:26 2018
    CRL Extensions:
chains.sh: #14073: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823124727Z
addcert 20 20170823124727Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:47:27 2017
    Next Update: Thu Aug 23 12:47:26 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:47:27 2017
    CRL Extensions:
chains.sh: #14074: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823124728Z
addcert 40 20170823124728Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:47:28 2017
    Next Update: Thu Aug 23 12:47:26 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:47:27 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:47:28 2017
    CRL Extensions:
chains.sh: #14075: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14076: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14077: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14078: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124553 (0x310fe249)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:19 2017
            Not After : Tue Aug 23 12:47:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:f6:6a:be:6d:de:50:38:4b:25:e5:e9:d0:ba:f2:25:
                    28:b1:41:58:55:33:0c:12:8e:61:79:68:42:e7:6a:11:
                    4f:58:35:3d:06:11:de:53:26:7c:6d:be:75:ee:c8:45:
                    15:34:18:d7:e9:5d:0d:88:66:5c:a9:d9:34:74:c5:e4:
                    dc:1e:eb:3d:77:8f:23:7f:c0:97:77:03:d7:37:8d:94:
                    f5:47:d9:f4:38:7b:77:fd:b3:ac:56:1a:d3:88:40:d8:
                    37:71:74:37:37:d4:e8:3e:6e:a6:d2:b6:f4:2a:32:4d:
                    45:33:c2:56:06:61:04:d3:b1:26:de:d6:21:05:41:04:
                    ed:69:ed:99:c0:15:4f:1c:14:5f:dd:22:43:de:02:5d:
                    38:90:f9:bb:10:68:02:61:05:f8:a7:94:eb:da:e1:a9:
                    4e:ef:06:4f:e6:36:be:c5:0e:d6:e8:85:2a:54:5f:cc:
                    49:22:81:5c:9d:c6:45:e9:15:8c:59:d1:ba:a1:06:ae:
                    cc:a4:e1:3f:cc:5f:ce:1f:3a:23:d8:a2:79:44:d5:6d:
                    31:eb:0d:e3:ed:b2:e0:8c:0a:3b:6c:41:36:58:d4:ea:
                    2e:66:01:88:84:2b:03:9e:b7:d6:d6:76:e9:e7:a5:ac:
                    08:60:b4:45:4b:db:10:95:c2:2e:4a:2a:a3:33:8c:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:46:ae:e9:e8:da:f1:8e:eb:78:94:b7:b3:51:4b:04:
        c1:5e:a1:68:d6:e1:ff:e7:19:24:eb:0b:df:f6:b7:12:
        24:36:89:84:a4:4a:a0:d3:8c:4f:78:87:a5:6a:4e:23:
        42:d6:0d:e1:95:1c:10:71:ee:14:9a:05:bb:07:45:cd:
        fc:8e:0f:3f:4b:06:dd:fa:4f:6f:7a:95:be:1a:ee:5e:
        5c:e1:05:e6:2c:d7:50:08:cf:45:fa:48:23:68:27:53:
        df:06:31:23:3b:81:49:6f:88:00:f5:a4:f7:e4:12:e3:
        c1:97:52:f0:1a:9a:a4:3d:28:d3:80:54:18:2a:8a:4b:
        80:2f:07:47:b5:e2:2b:ad:df:2b:fb:b5:9a:ef:c3:38:
        96:bb:ef:ab:20:96:40:65:88:f6:1f:59:e7:15:1d:c8:
        d1:c4:15:e1:2a:de:75:a9:d8:96:30:16:e3:6d:22:5b:
        31:de:9e:0b:18:18:7f:0c:4a:7b:9b:dd:b6:1b:15:eb:
        2e:3a:81:57:07:9b:2e:44:09:ff:d8:fa:97:e2:a5:ef:
        40:8f:a0:75:bd:27:16:3e:99:0a:9c:43:bf:f7:2b:db:
        9a:29:f7:c9:09:f4:66:0e:c8:c5:d8:be:6c:69:61:5c:
        36:f7:3d:0b:a1:72:cf:bc:d0:01:0c:07:9b:7e:bf:1f
    Fingerprint (SHA-256):
        A1:65:07:32:23:EE:AB:E5:10:E6:02:7A:2D:A3:1C:BB:05:E9:D3:2E:1C:16:CA:29:6B:44:85:BB:C0:A8:60:96
    Fingerprint (SHA1):
        81:F3:25:50:54:01:AB:C4:D7:D7:ED:C8:BD:B9:AD:B4:84:65:17:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14079: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14080: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124553 (0x310fe249)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:19 2017
            Not After : Tue Aug 23 12:47:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:f6:6a:be:6d:de:50:38:4b:25:e5:e9:d0:ba:f2:25:
                    28:b1:41:58:55:33:0c:12:8e:61:79:68:42:e7:6a:11:
                    4f:58:35:3d:06:11:de:53:26:7c:6d:be:75:ee:c8:45:
                    15:34:18:d7:e9:5d:0d:88:66:5c:a9:d9:34:74:c5:e4:
                    dc:1e:eb:3d:77:8f:23:7f:c0:97:77:03:d7:37:8d:94:
                    f5:47:d9:f4:38:7b:77:fd:b3:ac:56:1a:d3:88:40:d8:
                    37:71:74:37:37:d4:e8:3e:6e:a6:d2:b6:f4:2a:32:4d:
                    45:33:c2:56:06:61:04:d3:b1:26:de:d6:21:05:41:04:
                    ed:69:ed:99:c0:15:4f:1c:14:5f:dd:22:43:de:02:5d:
                    38:90:f9:bb:10:68:02:61:05:f8:a7:94:eb:da:e1:a9:
                    4e:ef:06:4f:e6:36:be:c5:0e:d6:e8:85:2a:54:5f:cc:
                    49:22:81:5c:9d:c6:45:e9:15:8c:59:d1:ba:a1:06:ae:
                    cc:a4:e1:3f:cc:5f:ce:1f:3a:23:d8:a2:79:44:d5:6d:
                    31:eb:0d:e3:ed:b2:e0:8c:0a:3b:6c:41:36:58:d4:ea:
                    2e:66:01:88:84:2b:03:9e:b7:d6:d6:76:e9:e7:a5:ac:
                    08:60:b4:45:4b:db:10:95:c2:2e:4a:2a:a3:33:8c:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:46:ae:e9:e8:da:f1:8e:eb:78:94:b7:b3:51:4b:04:
        c1:5e:a1:68:d6:e1:ff:e7:19:24:eb:0b:df:f6:b7:12:
        24:36:89:84:a4:4a:a0:d3:8c:4f:78:87:a5:6a:4e:23:
        42:d6:0d:e1:95:1c:10:71:ee:14:9a:05:bb:07:45:cd:
        fc:8e:0f:3f:4b:06:dd:fa:4f:6f:7a:95:be:1a:ee:5e:
        5c:e1:05:e6:2c:d7:50:08:cf:45:fa:48:23:68:27:53:
        df:06:31:23:3b:81:49:6f:88:00:f5:a4:f7:e4:12:e3:
        c1:97:52:f0:1a:9a:a4:3d:28:d3:80:54:18:2a:8a:4b:
        80:2f:07:47:b5:e2:2b:ad:df:2b:fb:b5:9a:ef:c3:38:
        96:bb:ef:ab:20:96:40:65:88:f6:1f:59:e7:15:1d:c8:
        d1:c4:15:e1:2a:de:75:a9:d8:96:30:16:e3:6d:22:5b:
        31:de:9e:0b:18:18:7f:0c:4a:7b:9b:dd:b6:1b:15:eb:
        2e:3a:81:57:07:9b:2e:44:09:ff:d8:fa:97:e2:a5:ef:
        40:8f:a0:75:bd:27:16:3e:99:0a:9c:43:bf:f7:2b:db:
        9a:29:f7:c9:09:f4:66:0e:c8:c5:d8:be:6c:69:61:5c:
        36:f7:3d:0b:a1:72:cf:bc:d0:01:0c:07:9b:7e:bf:1f
    Fingerprint (SHA-256):
        A1:65:07:32:23:EE:AB:E5:10:E6:02:7A:2D:A3:1C:BB:05:E9:D3:2E:1C:16:CA:29:6B:44:85:BB:C0:A8:60:96
    Fingerprint (SHA1):
        81:F3:25:50:54:01:AB:C4:D7:D7:ED:C8:BD:B9:AD:B4:84:65:17:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14081: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14082: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14083: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124557 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14084: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14085: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14086: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14087: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823124558   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14088: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14089: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14090: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14091: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124559   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14092: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14093: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14094: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14095: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 823124560   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14096: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14097: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #14098: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124561 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14099: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #14100: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #14101: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14102: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 823124562   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14103: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14104: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14105: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14106: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 823124563   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14107: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14108: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #14109: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #14110: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #14111: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124557 (0x310fe24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:30 2017
            Not After : Tue Aug 23 12:47:30 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:e3:6c:82:7c:1c:7b:83:dd:aa:66:cf:46:54:62:1f:
                    5d:35:30:f5:d6:a4:33:fe:7c:86:02:35:31:c0:ca:3c:
                    4a:03:89:f8:04:72:3d:4b:30:57:9e:7a:e1:14:af:00:
                    42:c1:49:94:0d:4c:99:3a:0f:93:05:38:c1:47:50:0c:
                    90:bd:62:0c:22:20:34:6a:f3:3f:de:71:c0:ed:86:97:
                    70:a0:d3:ef:04:0d:9c:c0:fb:c7:89:76:aa:37:80:f3:
                    66:d9:f9:e4:95:e8:98:24:56:b0:6c:10:78:43:77:89:
                    28:53:8c:6c:cb:de:65:66:42:9e:cf:44:04:40:c2:59:
                    5b:fa:1a:aa:24:5a:df:04:79:ad:93:a9:b8:bc:25:ab:
                    33:87:54:4f:66:74:a1:76:2f:8a:be:25:80:a3:d7:98:
                    50:a3:65:5a:17:dc:bd:3a:f5:92:9b:52:4f:7c:4a:94:
                    e6:e1:53:52:68:3b:89:e4:88:64:64:8c:93:18:73:d2:
                    bf:21:63:65:a3:1e:aa:19:f2:fd:01:2a:6c:f0:eb:38:
                    c5:7d:e5:61:51:bc:a6:57:d1:da:a1:01:59:80:07:ff:
                    4e:96:d0:aa:16:03:4b:e3:b5:11:02:c8:38:2a:f3:7f:
                    36:d5:d9:34:9f:c1:4b:4e:81:d0:9b:03:27:68:3a:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:6d:d0:bb:18:07:e4:39:13:02:55:a1:8e:14:0d:0d:
        6e:4b:f8:2d:64:20:bf:8e:32:be:80:95:ed:b2:79:cf:
        f5:41:31:f3:a3:84:73:3d:c4:3b:aa:51:67:34:a3:29:
        6c:39:c1:e8:a2:16:55:dc:aa:94:92:ce:72:29:65:9b:
        e9:69:a3:48:42:97:a8:4b:31:89:74:43:8c:62:17:73:
        a8:95:ba:7a:60:5e:6c:ca:ce:6d:c2:67:0e:a6:95:27:
        2a:7c:4a:a1:10:d5:2c:58:c2:d0:bd:c3:2e:eb:7f:97:
        28:92:03:9d:b2:89:35:7e:0f:ef:2f:4d:75:a9:3a:f7:
        7c:9e:63:4a:2c:b4:65:3e:b2:8c:28:23:18:20:2e:0d:
        f5:78:ba:e5:0b:50:4d:ed:16:5c:d3:72:7b:57:35:60:
        d8:71:d6:8e:dc:c5:af:cd:e1:73:d6:45:46:c2:68:78:
        f0:c1:f4:17:61:77:a2:2b:a4:9f:d0:0a:ef:7c:71:4c:
        90:fb:2e:b6:d7:70:1d:74:5b:ef:00:d9:71:82:7f:4d:
        bf:aa:11:a4:93:da:24:13:ed:a7:97:56:36:7b:a8:02:
        f9:23:cc:96:4a:0f:32:2a:db:21:67:1a:3d:25:08:02:
        a5:89:94:4b:db:d2:18:3b:23:92:cb:9a:5a:dd:ee:e9
    Fingerprint (SHA-256):
        FD:3F:44:42:BE:97:16:BE:13:08:72:D6:E6:F6:9C:13:71:15:15:16:A1:29:73:5E:F6:2D:30:41:38:8D:ED:27
    Fingerprint (SHA1):
        C6:25:19:33:35:90:48:57:E0:44:17:3E:AB:DE:54:38:A9:3B:A6:AB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14112: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124559 (0x310fe24f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:32 2017
            Not After : Tue Aug 23 12:47:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:56:04:b9:80:24:9e:d8:55:31:0c:97:8e:a6:27:59:
                    ef:bf:56:01:05:37:6a:fb:e9:86:03:38:66:28:55:f3:
                    53:99:2f:6e:72:77:59:f7:55:69:a7:e1:73:1c:ea:05:
                    1c:a1:20:bc:d3:fc:ed:c7:f5:35:c9:75:58:e7:76:5c:
                    51:0d:82:cc:76:50:61:ee:5e:a6:1b:62:9a:c7:4a:89:
                    59:c6:81:14:cc:1a:0b:20:9d:22:19:b8:90:f7:1d:3c:
                    24:7e:dd:fd:17:9f:74:3c:db:22:dc:8b:77:ab:41:df:
                    7a:aa:2f:84:f5:3c:d4:35:0f:ea:1f:82:7e:5b:5e:f3:
                    46:1f:17:bc:5f:34:02:29:ea:d2:4d:c2:86:66:fe:1a:
                    84:ce:ba:59:dc:c8:0f:58:89:d2:76:42:30:e1:f2:40:
                    71:92:2e:55:76:33:56:8a:6e:10:6a:73:8a:fd:32:80:
                    eb:b3:0d:91:d0:58:04:5c:8b:dc:09:62:83:1d:33:e4:
                    6e:96:a0:d2:a0:3b:16:88:45:a2:a2:a0:b7:d2:4c:ae:
                    6e:f7:db:7b:d0:f9:db:e5:ba:da:fc:af:82:a9:00:5c:
                    60:52:a3:f3:54:52:11:56:a5:81:2c:4d:4f:4a:33:43:
                    43:bf:4e:81:81:e4:f8:5d:e0:fc:37:c5:47:e3:19:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:ac:14:fd:0d:aa:ed:4b:d1:14:44:c8:75:26:e3:97:
        f2:54:43:a8:c9:2a:1a:6b:ef:85:24:12:15:47:8d:34:
        2b:64:d3:d5:da:8c:50:a3:28:8c:63:6f:af:df:df:f5:
        22:39:cb:f7:c6:c5:36:d5:92:b4:61:c6:dd:47:2e:ed:
        aa:be:01:81:02:65:d1:07:6a:c7:08:6d:b4:bb:60:19:
        b2:9f:82:f4:10:1e:5b:38:95:3f:b9:ef:ec:9a:f2:93:
        a7:36:a8:96:59:93:f7:86:6e:71:22:1b:b5:19:17:23:
        14:02:ef:33:8d:1d:ff:89:35:2e:89:f4:50:fa:12:88:
        e9:40:70:79:ff:9b:3c:5b:65:5c:25:02:e4:0a:a6:72:
        45:df:6a:a8:eb:b6:46:96:3f:ae:17:e7:7c:2e:ff:8e:
        ff:2a:fa:9a:bc:db:1c:54:71:4c:c8:c1:b7:08:74:f7:
        e2:28:2e:cc:0e:67:a3:7b:c9:6c:66:e6:22:fb:4a:ef:
        16:3d:1c:cd:a2:10:6f:39:6a:42:5d:7d:b1:02:f2:41:
        db:ea:90:1a:3e:2e:bd:12:ab:c4:49:28:4a:55:e8:09:
        49:cf:06:b0:91:2f:52:a9:f6:f8:96:13:57:96:71:ff:
        06:2f:5f:28:3a:fe:dc:5b:52:78:51:9e:63:cb:35:6b
    Fingerprint (SHA-256):
        D5:A4:91:99:54:75:2C:35:91:12:73:61:30:DD:14:C8:4A:61:DC:6E:89:33:C9:2C:F6:2A:7B:5D:4B:69:04:23
    Fingerprint (SHA1):
        F1:0F:A2:96:76:80:E7:EC:BF:49:38:2E:0E:55:FC:56:8F:DB:9F:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14113: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124557 (0x310fe24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:30 2017
            Not After : Tue Aug 23 12:47:30 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:e3:6c:82:7c:1c:7b:83:dd:aa:66:cf:46:54:62:1f:
                    5d:35:30:f5:d6:a4:33:fe:7c:86:02:35:31:c0:ca:3c:
                    4a:03:89:f8:04:72:3d:4b:30:57:9e:7a:e1:14:af:00:
                    42:c1:49:94:0d:4c:99:3a:0f:93:05:38:c1:47:50:0c:
                    90:bd:62:0c:22:20:34:6a:f3:3f:de:71:c0:ed:86:97:
                    70:a0:d3:ef:04:0d:9c:c0:fb:c7:89:76:aa:37:80:f3:
                    66:d9:f9:e4:95:e8:98:24:56:b0:6c:10:78:43:77:89:
                    28:53:8c:6c:cb:de:65:66:42:9e:cf:44:04:40:c2:59:
                    5b:fa:1a:aa:24:5a:df:04:79:ad:93:a9:b8:bc:25:ab:
                    33:87:54:4f:66:74:a1:76:2f:8a:be:25:80:a3:d7:98:
                    50:a3:65:5a:17:dc:bd:3a:f5:92:9b:52:4f:7c:4a:94:
                    e6:e1:53:52:68:3b:89:e4:88:64:64:8c:93:18:73:d2:
                    bf:21:63:65:a3:1e:aa:19:f2:fd:01:2a:6c:f0:eb:38:
                    c5:7d:e5:61:51:bc:a6:57:d1:da:a1:01:59:80:07:ff:
                    4e:96:d0:aa:16:03:4b:e3:b5:11:02:c8:38:2a:f3:7f:
                    36:d5:d9:34:9f:c1:4b:4e:81:d0:9b:03:27:68:3a:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:6d:d0:bb:18:07:e4:39:13:02:55:a1:8e:14:0d:0d:
        6e:4b:f8:2d:64:20:bf:8e:32:be:80:95:ed:b2:79:cf:
        f5:41:31:f3:a3:84:73:3d:c4:3b:aa:51:67:34:a3:29:
        6c:39:c1:e8:a2:16:55:dc:aa:94:92:ce:72:29:65:9b:
        e9:69:a3:48:42:97:a8:4b:31:89:74:43:8c:62:17:73:
        a8:95:ba:7a:60:5e:6c:ca:ce:6d:c2:67:0e:a6:95:27:
        2a:7c:4a:a1:10:d5:2c:58:c2:d0:bd:c3:2e:eb:7f:97:
        28:92:03:9d:b2:89:35:7e:0f:ef:2f:4d:75:a9:3a:f7:
        7c:9e:63:4a:2c:b4:65:3e:b2:8c:28:23:18:20:2e:0d:
        f5:78:ba:e5:0b:50:4d:ed:16:5c:d3:72:7b:57:35:60:
        d8:71:d6:8e:dc:c5:af:cd:e1:73:d6:45:46:c2:68:78:
        f0:c1:f4:17:61:77:a2:2b:a4:9f:d0:0a:ef:7c:71:4c:
        90:fb:2e:b6:d7:70:1d:74:5b:ef:00:d9:71:82:7f:4d:
        bf:aa:11:a4:93:da:24:13:ed:a7:97:56:36:7b:a8:02:
        f9:23:cc:96:4a:0f:32:2a:db:21:67:1a:3d:25:08:02:
        a5:89:94:4b:db:d2:18:3b:23:92:cb:9a:5a:dd:ee:e9
    Fingerprint (SHA-256):
        FD:3F:44:42:BE:97:16:BE:13:08:72:D6:E6:F6:9C:13:71:15:15:16:A1:29:73:5E:F6:2D:30:41:38:8D:ED:27
    Fingerprint (SHA1):
        C6:25:19:33:35:90:48:57:E0:44:17:3E:AB:DE:54:38:A9:3B:A6:AB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14114: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #14115: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124557 (0x310fe24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:30 2017
            Not After : Tue Aug 23 12:47:30 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:e3:6c:82:7c:1c:7b:83:dd:aa:66:cf:46:54:62:1f:
                    5d:35:30:f5:d6:a4:33:fe:7c:86:02:35:31:c0:ca:3c:
                    4a:03:89:f8:04:72:3d:4b:30:57:9e:7a:e1:14:af:00:
                    42:c1:49:94:0d:4c:99:3a:0f:93:05:38:c1:47:50:0c:
                    90:bd:62:0c:22:20:34:6a:f3:3f:de:71:c0:ed:86:97:
                    70:a0:d3:ef:04:0d:9c:c0:fb:c7:89:76:aa:37:80:f3:
                    66:d9:f9:e4:95:e8:98:24:56:b0:6c:10:78:43:77:89:
                    28:53:8c:6c:cb:de:65:66:42:9e:cf:44:04:40:c2:59:
                    5b:fa:1a:aa:24:5a:df:04:79:ad:93:a9:b8:bc:25:ab:
                    33:87:54:4f:66:74:a1:76:2f:8a:be:25:80:a3:d7:98:
                    50:a3:65:5a:17:dc:bd:3a:f5:92:9b:52:4f:7c:4a:94:
                    e6:e1:53:52:68:3b:89:e4:88:64:64:8c:93:18:73:d2:
                    bf:21:63:65:a3:1e:aa:19:f2:fd:01:2a:6c:f0:eb:38:
                    c5:7d:e5:61:51:bc:a6:57:d1:da:a1:01:59:80:07:ff:
                    4e:96:d0:aa:16:03:4b:e3:b5:11:02:c8:38:2a:f3:7f:
                    36:d5:d9:34:9f:c1:4b:4e:81:d0:9b:03:27:68:3a:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:6d:d0:bb:18:07:e4:39:13:02:55:a1:8e:14:0d:0d:
        6e:4b:f8:2d:64:20:bf:8e:32:be:80:95:ed:b2:79:cf:
        f5:41:31:f3:a3:84:73:3d:c4:3b:aa:51:67:34:a3:29:
        6c:39:c1:e8:a2:16:55:dc:aa:94:92:ce:72:29:65:9b:
        e9:69:a3:48:42:97:a8:4b:31:89:74:43:8c:62:17:73:
        a8:95:ba:7a:60:5e:6c:ca:ce:6d:c2:67:0e:a6:95:27:
        2a:7c:4a:a1:10:d5:2c:58:c2:d0:bd:c3:2e:eb:7f:97:
        28:92:03:9d:b2:89:35:7e:0f:ef:2f:4d:75:a9:3a:f7:
        7c:9e:63:4a:2c:b4:65:3e:b2:8c:28:23:18:20:2e:0d:
        f5:78:ba:e5:0b:50:4d:ed:16:5c:d3:72:7b:57:35:60:
        d8:71:d6:8e:dc:c5:af:cd:e1:73:d6:45:46:c2:68:78:
        f0:c1:f4:17:61:77:a2:2b:a4:9f:d0:0a:ef:7c:71:4c:
        90:fb:2e:b6:d7:70:1d:74:5b:ef:00:d9:71:82:7f:4d:
        bf:aa:11:a4:93:da:24:13:ed:a7:97:56:36:7b:a8:02:
        f9:23:cc:96:4a:0f:32:2a:db:21:67:1a:3d:25:08:02:
        a5:89:94:4b:db:d2:18:3b:23:92:cb:9a:5a:dd:ee:e9
    Fingerprint (SHA-256):
        FD:3F:44:42:BE:97:16:BE:13:08:72:D6:E6:F6:9C:13:71:15:15:16:A1:29:73:5E:F6:2D:30:41:38:8D:ED:27
    Fingerprint (SHA1):
        C6:25:19:33:35:90:48:57:E0:44:17:3E:AB:DE:54:38:A9:3B:A6:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14116: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124559 (0x310fe24f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:32 2017
            Not After : Tue Aug 23 12:47:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:56:04:b9:80:24:9e:d8:55:31:0c:97:8e:a6:27:59:
                    ef:bf:56:01:05:37:6a:fb:e9:86:03:38:66:28:55:f3:
                    53:99:2f:6e:72:77:59:f7:55:69:a7:e1:73:1c:ea:05:
                    1c:a1:20:bc:d3:fc:ed:c7:f5:35:c9:75:58:e7:76:5c:
                    51:0d:82:cc:76:50:61:ee:5e:a6:1b:62:9a:c7:4a:89:
                    59:c6:81:14:cc:1a:0b:20:9d:22:19:b8:90:f7:1d:3c:
                    24:7e:dd:fd:17:9f:74:3c:db:22:dc:8b:77:ab:41:df:
                    7a:aa:2f:84:f5:3c:d4:35:0f:ea:1f:82:7e:5b:5e:f3:
                    46:1f:17:bc:5f:34:02:29:ea:d2:4d:c2:86:66:fe:1a:
                    84:ce:ba:59:dc:c8:0f:58:89:d2:76:42:30:e1:f2:40:
                    71:92:2e:55:76:33:56:8a:6e:10:6a:73:8a:fd:32:80:
                    eb:b3:0d:91:d0:58:04:5c:8b:dc:09:62:83:1d:33:e4:
                    6e:96:a0:d2:a0:3b:16:88:45:a2:a2:a0:b7:d2:4c:ae:
                    6e:f7:db:7b:d0:f9:db:e5:ba:da:fc:af:82:a9:00:5c:
                    60:52:a3:f3:54:52:11:56:a5:81:2c:4d:4f:4a:33:43:
                    43:bf:4e:81:81:e4:f8:5d:e0:fc:37:c5:47:e3:19:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:ac:14:fd:0d:aa:ed:4b:d1:14:44:c8:75:26:e3:97:
        f2:54:43:a8:c9:2a:1a:6b:ef:85:24:12:15:47:8d:34:
        2b:64:d3:d5:da:8c:50:a3:28:8c:63:6f:af:df:df:f5:
        22:39:cb:f7:c6:c5:36:d5:92:b4:61:c6:dd:47:2e:ed:
        aa:be:01:81:02:65:d1:07:6a:c7:08:6d:b4:bb:60:19:
        b2:9f:82:f4:10:1e:5b:38:95:3f:b9:ef:ec:9a:f2:93:
        a7:36:a8:96:59:93:f7:86:6e:71:22:1b:b5:19:17:23:
        14:02:ef:33:8d:1d:ff:89:35:2e:89:f4:50:fa:12:88:
        e9:40:70:79:ff:9b:3c:5b:65:5c:25:02:e4:0a:a6:72:
        45:df:6a:a8:eb:b6:46:96:3f:ae:17:e7:7c:2e:ff:8e:
        ff:2a:fa:9a:bc:db:1c:54:71:4c:c8:c1:b7:08:74:f7:
        e2:28:2e:cc:0e:67:a3:7b:c9:6c:66:e6:22:fb:4a:ef:
        16:3d:1c:cd:a2:10:6f:39:6a:42:5d:7d:b1:02:f2:41:
        db:ea:90:1a:3e:2e:bd:12:ab:c4:49:28:4a:55:e8:09:
        49:cf:06:b0:91:2f:52:a9:f6:f8:96:13:57:96:71:ff:
        06:2f:5f:28:3a:fe:dc:5b:52:78:51:9e:63:cb:35:6b
    Fingerprint (SHA-256):
        D5:A4:91:99:54:75:2C:35:91:12:73:61:30:DD:14:C8:4A:61:DC:6E:89:33:C9:2C:F6:2A:7B:5D:4B:69:04:23
    Fingerprint (SHA1):
        F1:0F:A2:96:76:80:E7:EC:BF:49:38:2E:0E:55:FC:56:8F:DB:9F:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14117: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #14118: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #14119: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #14120: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124557 (0x310fe24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:30 2017
            Not After : Tue Aug 23 12:47:30 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:e3:6c:82:7c:1c:7b:83:dd:aa:66:cf:46:54:62:1f:
                    5d:35:30:f5:d6:a4:33:fe:7c:86:02:35:31:c0:ca:3c:
                    4a:03:89:f8:04:72:3d:4b:30:57:9e:7a:e1:14:af:00:
                    42:c1:49:94:0d:4c:99:3a:0f:93:05:38:c1:47:50:0c:
                    90:bd:62:0c:22:20:34:6a:f3:3f:de:71:c0:ed:86:97:
                    70:a0:d3:ef:04:0d:9c:c0:fb:c7:89:76:aa:37:80:f3:
                    66:d9:f9:e4:95:e8:98:24:56:b0:6c:10:78:43:77:89:
                    28:53:8c:6c:cb:de:65:66:42:9e:cf:44:04:40:c2:59:
                    5b:fa:1a:aa:24:5a:df:04:79:ad:93:a9:b8:bc:25:ab:
                    33:87:54:4f:66:74:a1:76:2f:8a:be:25:80:a3:d7:98:
                    50:a3:65:5a:17:dc:bd:3a:f5:92:9b:52:4f:7c:4a:94:
                    e6:e1:53:52:68:3b:89:e4:88:64:64:8c:93:18:73:d2:
                    bf:21:63:65:a3:1e:aa:19:f2:fd:01:2a:6c:f0:eb:38:
                    c5:7d:e5:61:51:bc:a6:57:d1:da:a1:01:59:80:07:ff:
                    4e:96:d0:aa:16:03:4b:e3:b5:11:02:c8:38:2a:f3:7f:
                    36:d5:d9:34:9f:c1:4b:4e:81:d0:9b:03:27:68:3a:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:6d:d0:bb:18:07:e4:39:13:02:55:a1:8e:14:0d:0d:
        6e:4b:f8:2d:64:20:bf:8e:32:be:80:95:ed:b2:79:cf:
        f5:41:31:f3:a3:84:73:3d:c4:3b:aa:51:67:34:a3:29:
        6c:39:c1:e8:a2:16:55:dc:aa:94:92:ce:72:29:65:9b:
        e9:69:a3:48:42:97:a8:4b:31:89:74:43:8c:62:17:73:
        a8:95:ba:7a:60:5e:6c:ca:ce:6d:c2:67:0e:a6:95:27:
        2a:7c:4a:a1:10:d5:2c:58:c2:d0:bd:c3:2e:eb:7f:97:
        28:92:03:9d:b2:89:35:7e:0f:ef:2f:4d:75:a9:3a:f7:
        7c:9e:63:4a:2c:b4:65:3e:b2:8c:28:23:18:20:2e:0d:
        f5:78:ba:e5:0b:50:4d:ed:16:5c:d3:72:7b:57:35:60:
        d8:71:d6:8e:dc:c5:af:cd:e1:73:d6:45:46:c2:68:78:
        f0:c1:f4:17:61:77:a2:2b:a4:9f:d0:0a:ef:7c:71:4c:
        90:fb:2e:b6:d7:70:1d:74:5b:ef:00:d9:71:82:7f:4d:
        bf:aa:11:a4:93:da:24:13:ed:a7:97:56:36:7b:a8:02:
        f9:23:cc:96:4a:0f:32:2a:db:21:67:1a:3d:25:08:02:
        a5:89:94:4b:db:d2:18:3b:23:92:cb:9a:5a:dd:ee:e9
    Fingerprint (SHA-256):
        FD:3F:44:42:BE:97:16:BE:13:08:72:D6:E6:F6:9C:13:71:15:15:16:A1:29:73:5E:F6:2D:30:41:38:8D:ED:27
    Fingerprint (SHA1):
        C6:25:19:33:35:90:48:57:E0:44:17:3E:AB:DE:54:38:A9:3B:A6:AB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14121: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124561 (0x310fe251)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:34 2017
            Not After : Tue Aug 23 12:47:34 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f9:5c:ed:8a:82:ed:06:22:c6:70:fa:37:e6:fc:9d:8c:
                    c5:9d:ad:d4:44:35:dc:9a:cd:39:82:7c:5c:44:5b:fc:
                    67:d3:08:82:60:fb:dc:36:06:30:7f:60:6b:bf:a9:33:
                    74:ed:43:62:45:85:1f:d9:91:d1:de:be:8e:96:01:dd:
                    89:55:c2:97:db:87:b0:2e:6c:85:f7:98:6e:d9:ca:0f:
                    b4:48:7c:cb:ad:50:4a:f4:70:9a:b5:67:7d:f7:01:89:
                    ac:49:72:0c:0e:cc:7e:da:75:1c:88:df:6d:80:44:51:
                    08:9b:2b:5d:52:82:8b:82:d1:30:61:03:3e:30:fa:ec:
                    ba:a6:a6:3e:cf:92:d4:91:e7:6f:b1:ae:a8:d3:46:54:
                    ab:56:69:b3:27:dd:c3:87:39:a0:01:81:06:bb:a6:6b:
                    0b:35:24:2a:07:79:27:ca:73:69:d6:63:46:8a:47:c7:
                    74:bb:56:c6:71:9d:00:68:f3:f7:1e:02:38:54:97:45:
                    aa:44:00:4f:34:9e:05:b6:e2:9f:5b:f4:53:35:b7:4f:
                    04:70:1f:4d:2b:e4:c9:6e:88:08:bd:3a:5b:d3:bc:08:
                    a0:d2:b4:cc:21:08:9b:2b:61:8d:f0:50:92:5c:a9:e6:
                    0f:58:75:c7:47:15:ab:13:57:56:8e:0b:47:87:fe:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:10:ea:43:84:02:b8:13:ae:d7:bc:9d:f1:79:1e:fc:
        a7:73:c2:fd:51:f5:84:ce:54:aa:04:69:76:ee:f7:84:
        fd:92:c0:41:21:ba:84:15:3f:b0:9a:a5:e8:ce:40:c0:
        4f:fe:2e:ad:29:a8:c4:ab:ff:1a:d6:7e:a2:8b:f5:68:
        8c:0d:5a:8c:27:3b:e2:fa:7b:7c:b5:75:31:fb:fd:a6:
        39:79:d4:0b:1d:2e:7d:f2:6e:c8:67:b1:1d:a3:c8:30:
        71:50:9f:cd:8b:fb:f1:b9:90:bc:09:81:47:69:6f:38:
        6b:44:1b:34:8c:04:ed:aa:21:63:d5:bf:a4:1b:35:71:
        c2:d9:56:b7:77:08:d5:13:ee:2d:d6:f8:bb:5f:d3:52:
        01:e6:ce:65:cb:60:b9:e9:82:19:7a:df:7b:6a:89:8c:
        2b:5c:23:67:53:12:8f:7e:c6:46:94:34:47:21:3b:48:
        59:7e:5c:ea:4a:94:9e:cb:53:75:79:ab:0c:8d:bc:ab:
        04:de:4a:7c:2d:04:31:17:05:19:95:46:2b:00:22:f8:
        9b:d9:63:ee:a9:4e:20:5a:b9:f9:85:12:c9:5b:8e:43:
        d1:c4:6e:7e:a9:5a:fd:54:24:bf:68:4f:a3:2a:64:3b:
        88:79:9d:c4:20:88:be:2b:be:ac:eb:e9:0f:7b:01:9b
    Fingerprint (SHA-256):
        39:AC:51:6D:83:C8:78:C3:33:DF:72:02:82:BF:73:C3:3C:6C:19:E2:DC:06:11:C1:9B:94:90:79:A6:F5:91:F0
    Fingerprint (SHA1):
        80:A4:83:91:FB:7E:F3:98:4A:AE:E5:F2:8D:D2:48:FD:40:4A:E6:A1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #14122: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124557 (0x310fe24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:30 2017
            Not After : Tue Aug 23 12:47:30 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:e3:6c:82:7c:1c:7b:83:dd:aa:66:cf:46:54:62:1f:
                    5d:35:30:f5:d6:a4:33:fe:7c:86:02:35:31:c0:ca:3c:
                    4a:03:89:f8:04:72:3d:4b:30:57:9e:7a:e1:14:af:00:
                    42:c1:49:94:0d:4c:99:3a:0f:93:05:38:c1:47:50:0c:
                    90:bd:62:0c:22:20:34:6a:f3:3f:de:71:c0:ed:86:97:
                    70:a0:d3:ef:04:0d:9c:c0:fb:c7:89:76:aa:37:80:f3:
                    66:d9:f9:e4:95:e8:98:24:56:b0:6c:10:78:43:77:89:
                    28:53:8c:6c:cb:de:65:66:42:9e:cf:44:04:40:c2:59:
                    5b:fa:1a:aa:24:5a:df:04:79:ad:93:a9:b8:bc:25:ab:
                    33:87:54:4f:66:74:a1:76:2f:8a:be:25:80:a3:d7:98:
                    50:a3:65:5a:17:dc:bd:3a:f5:92:9b:52:4f:7c:4a:94:
                    e6:e1:53:52:68:3b:89:e4:88:64:64:8c:93:18:73:d2:
                    bf:21:63:65:a3:1e:aa:19:f2:fd:01:2a:6c:f0:eb:38:
                    c5:7d:e5:61:51:bc:a6:57:d1:da:a1:01:59:80:07:ff:
                    4e:96:d0:aa:16:03:4b:e3:b5:11:02:c8:38:2a:f3:7f:
                    36:d5:d9:34:9f:c1:4b:4e:81:d0:9b:03:27:68:3a:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:6d:d0:bb:18:07:e4:39:13:02:55:a1:8e:14:0d:0d:
        6e:4b:f8:2d:64:20:bf:8e:32:be:80:95:ed:b2:79:cf:
        f5:41:31:f3:a3:84:73:3d:c4:3b:aa:51:67:34:a3:29:
        6c:39:c1:e8:a2:16:55:dc:aa:94:92:ce:72:29:65:9b:
        e9:69:a3:48:42:97:a8:4b:31:89:74:43:8c:62:17:73:
        a8:95:ba:7a:60:5e:6c:ca:ce:6d:c2:67:0e:a6:95:27:
        2a:7c:4a:a1:10:d5:2c:58:c2:d0:bd:c3:2e:eb:7f:97:
        28:92:03:9d:b2:89:35:7e:0f:ef:2f:4d:75:a9:3a:f7:
        7c:9e:63:4a:2c:b4:65:3e:b2:8c:28:23:18:20:2e:0d:
        f5:78:ba:e5:0b:50:4d:ed:16:5c:d3:72:7b:57:35:60:
        d8:71:d6:8e:dc:c5:af:cd:e1:73:d6:45:46:c2:68:78:
        f0:c1:f4:17:61:77:a2:2b:a4:9f:d0:0a:ef:7c:71:4c:
        90:fb:2e:b6:d7:70:1d:74:5b:ef:00:d9:71:82:7f:4d:
        bf:aa:11:a4:93:da:24:13:ed:a7:97:56:36:7b:a8:02:
        f9:23:cc:96:4a:0f:32:2a:db:21:67:1a:3d:25:08:02:
        a5:89:94:4b:db:d2:18:3b:23:92:cb:9a:5a:dd:ee:e9
    Fingerprint (SHA-256):
        FD:3F:44:42:BE:97:16:BE:13:08:72:D6:E6:F6:9C:13:71:15:15:16:A1:29:73:5E:F6:2D:30:41:38:8D:ED:27
    Fingerprint (SHA1):
        C6:25:19:33:35:90:48:57:E0:44:17:3E:AB:DE:54:38:A9:3B:A6:AB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14123: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #14124: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #14125: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #14126: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #14127: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #14128: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124562 (0x310fe252)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:35 2017
            Not After : Tue Aug 23 12:47:35 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:a4:7e:a8:fb:e0:12:28:0c:47:1a:3b:7d:92:29:10:
                    a0:2a:16:5c:ee:9b:de:48:d3:aa:68:26:69:e2:7a:f5:
                    6e:3e:29:33:2b:fb:2f:bb:a4:bc:c5:1e:78:ac:18:39:
                    75:4a:b9:fe:61:27:9c:aa:57:40:76:0f:55:46:ca:82:
                    a9:e8:92:f7:4d:3d:da:30:66:52:d4:6d:e0:35:45:0d:
                    d6:2c:18:e7:76:c1:29:6f:aa:86:08:2d:e3:56:81:fe:
                    d2:c2:21:24:36:0f:2f:17:8c:9f:25:14:55:3d:fa:ae:
                    49:b4:cf:47:f4:7f:d0:37:28:67:1c:eb:24:3b:6b:44:
                    ca:b4:ba:ed:dd:82:25:04:66:10:6a:06:61:ca:46:13:
                    49:f5:7c:13:49:4b:b9:a5:5e:fd:0f:fe:bb:aa:e4:78:
                    6e:01:9e:d9:fa:84:1f:fc:09:3a:c1:28:4b:1b:1d:c4:
                    31:c9:25:00:7a:ae:81:34:9a:53:a7:72:82:0c:24:99:
                    a8:ec:3d:f4:81:d1:4d:a3:5d:16:da:e9:4b:26:f8:38:
                    3c:c8:be:47:ef:85:5b:fc:cb:b7:fa:85:ed:0f:56:31:
                    27:22:20:95:43:0f:4c:d7:b5:38:df:c0:bd:ab:90:89:
                    ea:d7:a9:e1:1f:8d:9b:2c:01:c6:a3:f4:e2:f5:36:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:59:2a:19:31:1b:15:58:f3:d2:9b:d8:30:b9:c9:2a:
        24:62:04:06:16:52:28:5a:b0:61:91:5c:0f:03:53:8a:
        1d:76:d8:d8:80:cf:e6:2d:15:94:69:69:fd:5e:b5:26:
        1f:37:75:36:56:2b:60:78:24:20:fc:d3:7d:dc:f7:a1:
        92:02:fd:9e:22:d8:1c:d9:e2:40:df:0a:75:6a:c3:71:
        22:39:bf:68:34:a3:6c:c7:a7:11:c8:7c:20:3f:8b:32:
        a7:62:73:f3:fc:e7:f3:47:7a:b5:fe:4c:fe:17:44:de:
        7c:d1:95:bc:e4:9b:43:ce:7b:92:86:d6:cb:8f:14:0a:
        39:7f:59:ae:b8:cd:67:fa:02:6f:58:5c:48:1f:bb:97:
        bf:83:05:46:55:f8:32:4a:29:5d:b8:9b:63:1b:88:83:
        1f:19:66:05:24:1c:60:05:8f:09:2f:19:08:46:6c:0b:
        00:71:3a:26:bf:69:92:82:42:6a:f4:d0:2c:23:0b:06:
        4e:89:79:80:c5:10:8c:49:de:a7:ba:43:11:e0:cd:40:
        f5:89:69:f0:d3:a8:e0:07:bc:0f:b8:b0:9b:35:03:d3:
        67:e5:a4:0d:cc:dd:85:20:94:1c:a8:4e:53:2b:a5:59:
        85:38:0e:90:27:bf:37:fc:27:55:57:77:d6:6f:ea:f4
    Fingerprint (SHA-256):
        C4:0D:F9:7E:E0:13:F6:34:02:D5:9B:1C:A4:D3:07:C8:C9:31:96:E8:7C:C6:2B:CC:20:D3:A1:22:09:EE:6E:48
    Fingerprint (SHA1):
        30:C4:00:74:10:E5:B0:65:A5:A9:53:E9:43:0B:59:05:48:47:51:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14129: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #14130: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #14131: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #14132: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #14133: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14134: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14135: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14136: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14137: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14138: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14139: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14140: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14141: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14142: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14143: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14144: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14145: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14146: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14147: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14148: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14149: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14150: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14151: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14152: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 9964 at Wed Aug 23 12:47:42 UTC 2017
kill -USR1 9964
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 9964 killed at Wed Aug 23 12:47:42 UTC 2017
httpserv starting at Wed Aug 23 12:47:42 UTC 2017
httpserv -D -p 9233  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.30054  &
trying to connect to httpserv at Wed Aug 23 12:47:42 UTC 2017
tstclnt -p 9233 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9233 (address=::1)
tstclnt: exiting with return code 0
kill -0 25495 >/dev/null 2>/dev/null
httpserv with PID 25495 found at Wed Aug 23 12:47:42 UTC 2017
httpserv with PID 25495 started at Wed Aug 23 12:47:42 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14153: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124564 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14154: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14155: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14156: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124565 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14157: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14158: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14159: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14160: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823124566 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14161: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14162: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823124567 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14163: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14164: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14165: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14166: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14167: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 823124568   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14168: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14169: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14170: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #14171: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #14172: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124565 (0x310fe255)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:43 2017
            Not After : Tue Aug 23 12:47:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9c:bf:ec:2c:3d:0e:19:49:38:9a:f7:40:3d:14:f7:
                    30:e5:4d:77:2e:42:38:0c:f1:a0:00:80:ce:e9:4c:ea:
                    ab:06:8d:d3:22:e5:a9:b9:24:95:50:56:c7:f7:a4:36:
                    7c:f1:d8:1e:65:26:af:11:63:5b:ee:24:15:e6:ab:9b:
                    64:cb:a9:5a:fa:ba:be:45:56:03:3e:ee:0e:0a:0d:12:
                    9c:4c:08:f9:2c:cc:ab:b3:22:38:af:19:4a:b3:c9:05:
                    f0:05:d8:f1:35:9f:85:8b:51:65:88:10:94:0d:3f:f0:
                    66:b1:1a:84:fa:f9:55:c0:b7:ec:b4:f4:74:a2:96:67:
                    fb:74:72:83:91:af:2b:77:12:07:dc:6b:6f:76:70:d3:
                    4b:59:27:72:ff:29:6d:da:f4:bc:32:a8:61:60:a9:9b:
                    22:de:b8:cf:02:e8:53:a5:39:58:8c:ac:9f:4f:81:c0:
                    fc:e1:ce:a2:8f:2c:2f:7e:cb:58:65:60:e8:cd:01:5d:
                    00:4c:ee:27:cf:cf:7a:83:4b:f1:63:a3:6d:2d:dd:76:
                    5c:1f:e2:af:60:25:34:74:d7:41:3a:5a:5c:a1:46:6d:
                    be:15:bf:84:f8:fb:33:1e:bb:f3:18:72:7a:b1:c2:14:
                    5b:5c:5e:a9:e3:9b:9c:0c:68:4c:f8:1f:e5:19:d1:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:b0:d7:33:db:8e:20:6e:24:b6:e6:84:56:2c:6b:8b:
        a9:60:0e:70:5a:32:e1:5f:4d:6e:6f:ee:96:02:6b:12:
        99:7f:d1:5c:5a:b5:7a:a7:67:34:13:c6:70:12:86:50:
        3d:df:dd:55:20:e9:c0:92:3e:15:a2:b8:32:34:a0:f9:
        c2:ca:77:57:97:91:da:82:09:20:97:2b:7e:98:7e:29:
        d1:2c:7d:03:66:87:05:01:f1:23:2b:19:7f:d9:22:0d:
        4d:5d:a3:4e:09:3e:c0:0a:7b:74:52:5f:b0:9e:ac:1f:
        a5:87:1d:ec:be:fa:6e:54:b5:b2:7b:99:12:eb:98:32:
        c3:76:3a:c6:0a:66:22:71:02:d0:01:a4:46:ee:5d:a5:
        63:d6:19:f0:e1:28:cb:9c:5a:43:af:de:a5:ad:37:1c:
        b8:1e:18:73:5a:fb:2d:37:75:51:72:ff:d2:11:dd:2d:
        19:65:ab:50:66:12:9f:5c:b4:27:b1:fa:de:58:9c:c9:
        78:0b:f5:13:0f:35:f4:11:e8:56:7c:40:e6:61:10:80:
        c0:ef:6e:b7:f5:eb:93:ce:49:31:1e:7a:09:3a:0b:e7:
        9a:dd:ac:8f:0f:ca:71:1e:22:d7:39:e3:83:0e:17:f7:
        ad:75:35:83:c8:79:ea:08:22:1e:29:49:24:0e:9a:86
    Fingerprint (SHA-256):
        48:C3:13:86:0D:CB:71:32:6C:4A:1F:BD:AB:81:EC:B4:5B:AC:3F:7B:F4:48:49:3E:8A:FB:BA:F9:F9:27:E0:B9
    Fingerprint (SHA1):
        BF:FF:8D:BB:8D:70:10:E3:C4:A6:C4:C3:70:DA:F7:5A:AF:4F:05:E1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14173: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124564 (0x310fe254)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:42 2017
            Not After : Tue Aug 23 12:47:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:a8:73:5d:91:53:99:cd:4e:6f:84:48:7c:3e:7c:e1:
                    47:07:ff:d3:54:1d:82:eb:4f:13:2b:14:2e:05:f8:c1:
                    e3:2b:f1:db:ae:0c:ec:23:eb:79:eb:b6:a3:a2:25:47:
                    8f:ac:38:3f:4d:cf:2e:10:21:92:52:f4:c0:dd:e9:b7:
                    8e:32:51:69:c1:31:1f:2c:6d:f8:74:db:c9:65:fc:98:
                    37:ec:5f:1a:22:74:51:16:c8:77:d8:b5:44:ce:29:b1:
                    7f:38:17:d3:82:4a:8e:64:41:eb:68:84:da:ca:e5:d1:
                    5f:68:6a:68:92:c1:8b:a1:90:70:67:1b:80:54:2d:24:
                    dc:a4:58:fe:c1:d3:d7:f4:22:69:e0:fe:cc:d4:94:28:
                    63:c8:30:d8:49:af:9d:53:c0:0f:97:77:5d:c2:46:6b:
                    fd:c3:32:1c:45:63:97:77:ab:07:58:5a:da:c5:99:1b:
                    ec:a9:83:b6:a5:b8:52:4f:e7:b8:07:ad:44:6b:bb:e8:
                    3a:3b:ae:80:3f:71:1a:32:9f:4e:4e:bf:4a:43:48:43:
                    3e:a1:64:bb:fd:cc:ed:9e:59:44:ea:77:26:de:b2:bd:
                    e0:3f:4d:62:9f:8e:8d:36:70:ea:2e:c6:d9:4a:66:ea:
                    8f:5f:40:d3:ae:1f:a3:7f:34:c3:b5:2d:bb:5a:19:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:c3:15:85:aa:c9:73:35:9a:52:45:8a:35:67:3b:f3:
        74:11:44:e3:1b:de:43:37:49:65:43:cb:40:4a:27:91:
        5b:8f:e6:63:1f:63:0a:95:d9:3f:a4:d2:61:35:90:b4:
        cb:71:6e:d8:cf:be:43:f0:57:a2:45:bd:8e:6d:36:11:
        83:63:41:cf:be:08:46:84:6e:df:36:3a:f9:cc:0b:e0:
        a7:8e:e1:97:c2:ba:7d:ef:bc:71:0e:a6:44:3d:36:6c:
        6c:58:f3:7e:ac:9f:70:cd:7e:04:92:28:35:6c:97:5b:
        c1:5c:f4:0b:13:58:79:54:58:44:f9:3a:49:a7:4e:5d:
        0e:49:59:79:d8:9d:a3:9d:b1:70:7f:ab:4a:8a:49:fe:
        e3:d1:e0:71:08:71:87:2b:6a:2e:2b:86:19:a5:fe:6a:
        1f:39:29:10:47:f5:c1:2d:b6:d7:13:5b:7d:20:05:be:
        95:06:fc:28:15:0c:8d:12:61:5c:04:df:10:bc:31:b1:
        7b:61:f5:7f:d7:14:a8:d1:24:e8:4f:9d:b8:67:76:27:
        16:a2:d8:1a:6d:bc:8d:a8:10:33:76:5a:e7:b5:ad:4c:
        b3:cd:b9:75:71:3f:46:b1:8c:23:72:81:ef:f0:7a:b8:
        90:42:f5:66:af:3e:ec:71:85:d9:dd:ac:68:33:96:fb
    Fingerprint (SHA-256):
        E5:9A:57:C2:CA:5A:81:D0:89:5E:EE:6B:BC:32:37:4F:DB:4F:A5:8D:9E:1A:F5:0C:89:3B:8A:22:D9:0F:90:CA
    Fingerprint (SHA1):
        73:E5:02:A7:CA:7C:05:CB:76:F3:1A:E8:36:FD:EA:C6:1A:C5:49:6E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14174: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14175: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #14176: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #14177: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124564 (0x310fe254)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:42 2017
            Not After : Tue Aug 23 12:47:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:a8:73:5d:91:53:99:cd:4e:6f:84:48:7c:3e:7c:e1:
                    47:07:ff:d3:54:1d:82:eb:4f:13:2b:14:2e:05:f8:c1:
                    e3:2b:f1:db:ae:0c:ec:23:eb:79:eb:b6:a3:a2:25:47:
                    8f:ac:38:3f:4d:cf:2e:10:21:92:52:f4:c0:dd:e9:b7:
                    8e:32:51:69:c1:31:1f:2c:6d:f8:74:db:c9:65:fc:98:
                    37:ec:5f:1a:22:74:51:16:c8:77:d8:b5:44:ce:29:b1:
                    7f:38:17:d3:82:4a:8e:64:41:eb:68:84:da:ca:e5:d1:
                    5f:68:6a:68:92:c1:8b:a1:90:70:67:1b:80:54:2d:24:
                    dc:a4:58:fe:c1:d3:d7:f4:22:69:e0:fe:cc:d4:94:28:
                    63:c8:30:d8:49:af:9d:53:c0:0f:97:77:5d:c2:46:6b:
                    fd:c3:32:1c:45:63:97:77:ab:07:58:5a:da:c5:99:1b:
                    ec:a9:83:b6:a5:b8:52:4f:e7:b8:07:ad:44:6b:bb:e8:
                    3a:3b:ae:80:3f:71:1a:32:9f:4e:4e:bf:4a:43:48:43:
                    3e:a1:64:bb:fd:cc:ed:9e:59:44:ea:77:26:de:b2:bd:
                    e0:3f:4d:62:9f:8e:8d:36:70:ea:2e:c6:d9:4a:66:ea:
                    8f:5f:40:d3:ae:1f:a3:7f:34:c3:b5:2d:bb:5a:19:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:c3:15:85:aa:c9:73:35:9a:52:45:8a:35:67:3b:f3:
        74:11:44:e3:1b:de:43:37:49:65:43:cb:40:4a:27:91:
        5b:8f:e6:63:1f:63:0a:95:d9:3f:a4:d2:61:35:90:b4:
        cb:71:6e:d8:cf:be:43:f0:57:a2:45:bd:8e:6d:36:11:
        83:63:41:cf:be:08:46:84:6e:df:36:3a:f9:cc:0b:e0:
        a7:8e:e1:97:c2:ba:7d:ef:bc:71:0e:a6:44:3d:36:6c:
        6c:58:f3:7e:ac:9f:70:cd:7e:04:92:28:35:6c:97:5b:
        c1:5c:f4:0b:13:58:79:54:58:44:f9:3a:49:a7:4e:5d:
        0e:49:59:79:d8:9d:a3:9d:b1:70:7f:ab:4a:8a:49:fe:
        e3:d1:e0:71:08:71:87:2b:6a:2e:2b:86:19:a5:fe:6a:
        1f:39:29:10:47:f5:c1:2d:b6:d7:13:5b:7d:20:05:be:
        95:06:fc:28:15:0c:8d:12:61:5c:04:df:10:bc:31:b1:
        7b:61:f5:7f:d7:14:a8:d1:24:e8:4f:9d:b8:67:76:27:
        16:a2:d8:1a:6d:bc:8d:a8:10:33:76:5a:e7:b5:ad:4c:
        b3:cd:b9:75:71:3f:46:b1:8c:23:72:81:ef:f0:7a:b8:
        90:42:f5:66:af:3e:ec:71:85:d9:dd:ac:68:33:96:fb
    Fingerprint (SHA-256):
        E5:9A:57:C2:CA:5A:81:D0:89:5E:EE:6B:BC:32:37:4F:DB:4F:A5:8D:9E:1A:F5:0C:89:3B:8A:22:D9:0F:90:CA
    Fingerprint (SHA1):
        73:E5:02:A7:CA:7C:05:CB:76:F3:1A:E8:36:FD:EA:C6:1A:C5:49:6E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14178: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124565 (0x310fe255)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:43 2017
            Not After : Tue Aug 23 12:47:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9c:bf:ec:2c:3d:0e:19:49:38:9a:f7:40:3d:14:f7:
                    30:e5:4d:77:2e:42:38:0c:f1:a0:00:80:ce:e9:4c:ea:
                    ab:06:8d:d3:22:e5:a9:b9:24:95:50:56:c7:f7:a4:36:
                    7c:f1:d8:1e:65:26:af:11:63:5b:ee:24:15:e6:ab:9b:
                    64:cb:a9:5a:fa:ba:be:45:56:03:3e:ee:0e:0a:0d:12:
                    9c:4c:08:f9:2c:cc:ab:b3:22:38:af:19:4a:b3:c9:05:
                    f0:05:d8:f1:35:9f:85:8b:51:65:88:10:94:0d:3f:f0:
                    66:b1:1a:84:fa:f9:55:c0:b7:ec:b4:f4:74:a2:96:67:
                    fb:74:72:83:91:af:2b:77:12:07:dc:6b:6f:76:70:d3:
                    4b:59:27:72:ff:29:6d:da:f4:bc:32:a8:61:60:a9:9b:
                    22:de:b8:cf:02:e8:53:a5:39:58:8c:ac:9f:4f:81:c0:
                    fc:e1:ce:a2:8f:2c:2f:7e:cb:58:65:60:e8:cd:01:5d:
                    00:4c:ee:27:cf:cf:7a:83:4b:f1:63:a3:6d:2d:dd:76:
                    5c:1f:e2:af:60:25:34:74:d7:41:3a:5a:5c:a1:46:6d:
                    be:15:bf:84:f8:fb:33:1e:bb:f3:18:72:7a:b1:c2:14:
                    5b:5c:5e:a9:e3:9b:9c:0c:68:4c:f8:1f:e5:19:d1:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:b0:d7:33:db:8e:20:6e:24:b6:e6:84:56:2c:6b:8b:
        a9:60:0e:70:5a:32:e1:5f:4d:6e:6f:ee:96:02:6b:12:
        99:7f:d1:5c:5a:b5:7a:a7:67:34:13:c6:70:12:86:50:
        3d:df:dd:55:20:e9:c0:92:3e:15:a2:b8:32:34:a0:f9:
        c2:ca:77:57:97:91:da:82:09:20:97:2b:7e:98:7e:29:
        d1:2c:7d:03:66:87:05:01:f1:23:2b:19:7f:d9:22:0d:
        4d:5d:a3:4e:09:3e:c0:0a:7b:74:52:5f:b0:9e:ac:1f:
        a5:87:1d:ec:be:fa:6e:54:b5:b2:7b:99:12:eb:98:32:
        c3:76:3a:c6:0a:66:22:71:02:d0:01:a4:46:ee:5d:a5:
        63:d6:19:f0:e1:28:cb:9c:5a:43:af:de:a5:ad:37:1c:
        b8:1e:18:73:5a:fb:2d:37:75:51:72:ff:d2:11:dd:2d:
        19:65:ab:50:66:12:9f:5c:b4:27:b1:fa:de:58:9c:c9:
        78:0b:f5:13:0f:35:f4:11:e8:56:7c:40:e6:61:10:80:
        c0:ef:6e:b7:f5:eb:93:ce:49:31:1e:7a:09:3a:0b:e7:
        9a:dd:ac:8f:0f:ca:71:1e:22:d7:39:e3:83:0e:17:f7:
        ad:75:35:83:c8:79:ea:08:22:1e:29:49:24:0e:9a:86
    Fingerprint (SHA-256):
        48:C3:13:86:0D:CB:71:32:6C:4A:1F:BD:AB:81:EC:B4:5B:AC:3F:7B:F4:48:49:3E:8A:FB:BA:F9:F9:27:E0:B9
    Fingerprint (SHA1):
        BF:FF:8D:BB:8D:70:10:E3:C4:A6:C4:C3:70:DA:F7:5A:AF:4F:05:E1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14179: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #14180: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #14181: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14182: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14183: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14184: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124565 (0x310fe255)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:43 2017
            Not After : Tue Aug 23 12:47:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9c:bf:ec:2c:3d:0e:19:49:38:9a:f7:40:3d:14:f7:
                    30:e5:4d:77:2e:42:38:0c:f1:a0:00:80:ce:e9:4c:ea:
                    ab:06:8d:d3:22:e5:a9:b9:24:95:50:56:c7:f7:a4:36:
                    7c:f1:d8:1e:65:26:af:11:63:5b:ee:24:15:e6:ab:9b:
                    64:cb:a9:5a:fa:ba:be:45:56:03:3e:ee:0e:0a:0d:12:
                    9c:4c:08:f9:2c:cc:ab:b3:22:38:af:19:4a:b3:c9:05:
                    f0:05:d8:f1:35:9f:85:8b:51:65:88:10:94:0d:3f:f0:
                    66:b1:1a:84:fa:f9:55:c0:b7:ec:b4:f4:74:a2:96:67:
                    fb:74:72:83:91:af:2b:77:12:07:dc:6b:6f:76:70:d3:
                    4b:59:27:72:ff:29:6d:da:f4:bc:32:a8:61:60:a9:9b:
                    22:de:b8:cf:02:e8:53:a5:39:58:8c:ac:9f:4f:81:c0:
                    fc:e1:ce:a2:8f:2c:2f:7e:cb:58:65:60:e8:cd:01:5d:
                    00:4c:ee:27:cf:cf:7a:83:4b:f1:63:a3:6d:2d:dd:76:
                    5c:1f:e2:af:60:25:34:74:d7:41:3a:5a:5c:a1:46:6d:
                    be:15:bf:84:f8:fb:33:1e:bb:f3:18:72:7a:b1:c2:14:
                    5b:5c:5e:a9:e3:9b:9c:0c:68:4c:f8:1f:e5:19:d1:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:b0:d7:33:db:8e:20:6e:24:b6:e6:84:56:2c:6b:8b:
        a9:60:0e:70:5a:32:e1:5f:4d:6e:6f:ee:96:02:6b:12:
        99:7f:d1:5c:5a:b5:7a:a7:67:34:13:c6:70:12:86:50:
        3d:df:dd:55:20:e9:c0:92:3e:15:a2:b8:32:34:a0:f9:
        c2:ca:77:57:97:91:da:82:09:20:97:2b:7e:98:7e:29:
        d1:2c:7d:03:66:87:05:01:f1:23:2b:19:7f:d9:22:0d:
        4d:5d:a3:4e:09:3e:c0:0a:7b:74:52:5f:b0:9e:ac:1f:
        a5:87:1d:ec:be:fa:6e:54:b5:b2:7b:99:12:eb:98:32:
        c3:76:3a:c6:0a:66:22:71:02:d0:01:a4:46:ee:5d:a5:
        63:d6:19:f0:e1:28:cb:9c:5a:43:af:de:a5:ad:37:1c:
        b8:1e:18:73:5a:fb:2d:37:75:51:72:ff:d2:11:dd:2d:
        19:65:ab:50:66:12:9f:5c:b4:27:b1:fa:de:58:9c:c9:
        78:0b:f5:13:0f:35:f4:11:e8:56:7c:40:e6:61:10:80:
        c0:ef:6e:b7:f5:eb:93:ce:49:31:1e:7a:09:3a:0b:e7:
        9a:dd:ac:8f:0f:ca:71:1e:22:d7:39:e3:83:0e:17:f7:
        ad:75:35:83:c8:79:ea:08:22:1e:29:49:24:0e:9a:86
    Fingerprint (SHA-256):
        48:C3:13:86:0D:CB:71:32:6C:4A:1F:BD:AB:81:EC:B4:5B:AC:3F:7B:F4:48:49:3E:8A:FB:BA:F9:F9:27:E0:B9
    Fingerprint (SHA1):
        BF:FF:8D:BB:8D:70:10:E3:C4:A6:C4:C3:70:DA:F7:5A:AF:4F:05:E1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14185: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124565 (0x310fe255)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:43 2017
            Not After : Tue Aug 23 12:47:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:9c:bf:ec:2c:3d:0e:19:49:38:9a:f7:40:3d:14:f7:
                    30:e5:4d:77:2e:42:38:0c:f1:a0:00:80:ce:e9:4c:ea:
                    ab:06:8d:d3:22:e5:a9:b9:24:95:50:56:c7:f7:a4:36:
                    7c:f1:d8:1e:65:26:af:11:63:5b:ee:24:15:e6:ab:9b:
                    64:cb:a9:5a:fa:ba:be:45:56:03:3e:ee:0e:0a:0d:12:
                    9c:4c:08:f9:2c:cc:ab:b3:22:38:af:19:4a:b3:c9:05:
                    f0:05:d8:f1:35:9f:85:8b:51:65:88:10:94:0d:3f:f0:
                    66:b1:1a:84:fa:f9:55:c0:b7:ec:b4:f4:74:a2:96:67:
                    fb:74:72:83:91:af:2b:77:12:07:dc:6b:6f:76:70:d3:
                    4b:59:27:72:ff:29:6d:da:f4:bc:32:a8:61:60:a9:9b:
                    22:de:b8:cf:02:e8:53:a5:39:58:8c:ac:9f:4f:81:c0:
                    fc:e1:ce:a2:8f:2c:2f:7e:cb:58:65:60:e8:cd:01:5d:
                    00:4c:ee:27:cf:cf:7a:83:4b:f1:63:a3:6d:2d:dd:76:
                    5c:1f:e2:af:60:25:34:74:d7:41:3a:5a:5c:a1:46:6d:
                    be:15:bf:84:f8:fb:33:1e:bb:f3:18:72:7a:b1:c2:14:
                    5b:5c:5e:a9:e3:9b:9c:0c:68:4c:f8:1f:e5:19:d1:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:b0:d7:33:db:8e:20:6e:24:b6:e6:84:56:2c:6b:8b:
        a9:60:0e:70:5a:32:e1:5f:4d:6e:6f:ee:96:02:6b:12:
        99:7f:d1:5c:5a:b5:7a:a7:67:34:13:c6:70:12:86:50:
        3d:df:dd:55:20:e9:c0:92:3e:15:a2:b8:32:34:a0:f9:
        c2:ca:77:57:97:91:da:82:09:20:97:2b:7e:98:7e:29:
        d1:2c:7d:03:66:87:05:01:f1:23:2b:19:7f:d9:22:0d:
        4d:5d:a3:4e:09:3e:c0:0a:7b:74:52:5f:b0:9e:ac:1f:
        a5:87:1d:ec:be:fa:6e:54:b5:b2:7b:99:12:eb:98:32:
        c3:76:3a:c6:0a:66:22:71:02:d0:01:a4:46:ee:5d:a5:
        63:d6:19:f0:e1:28:cb:9c:5a:43:af:de:a5:ad:37:1c:
        b8:1e:18:73:5a:fb:2d:37:75:51:72:ff:d2:11:dd:2d:
        19:65:ab:50:66:12:9f:5c:b4:27:b1:fa:de:58:9c:c9:
        78:0b:f5:13:0f:35:f4:11:e8:56:7c:40:e6:61:10:80:
        c0:ef:6e:b7:f5:eb:93:ce:49:31:1e:7a:09:3a:0b:e7:
        9a:dd:ac:8f:0f:ca:71:1e:22:d7:39:e3:83:0e:17:f7:
        ad:75:35:83:c8:79:ea:08:22:1e:29:49:24:0e:9a:86
    Fingerprint (SHA-256):
        48:C3:13:86:0D:CB:71:32:6C:4A:1F:BD:AB:81:EC:B4:5B:AC:3F:7B:F4:48:49:3E:8A:FB:BA:F9:F9:27:E0:B9
    Fingerprint (SHA1):
        BF:FF:8D:BB:8D:70:10:E3:C4:A6:C4:C3:70:DA:F7:5A:AF:4F:05:E1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14186: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #14187: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #14188: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14189: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #14190: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #14191: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124564 (0x310fe254)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:42 2017
            Not After : Tue Aug 23 12:47:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:a8:73:5d:91:53:99:cd:4e:6f:84:48:7c:3e:7c:e1:
                    47:07:ff:d3:54:1d:82:eb:4f:13:2b:14:2e:05:f8:c1:
                    e3:2b:f1:db:ae:0c:ec:23:eb:79:eb:b6:a3:a2:25:47:
                    8f:ac:38:3f:4d:cf:2e:10:21:92:52:f4:c0:dd:e9:b7:
                    8e:32:51:69:c1:31:1f:2c:6d:f8:74:db:c9:65:fc:98:
                    37:ec:5f:1a:22:74:51:16:c8:77:d8:b5:44:ce:29:b1:
                    7f:38:17:d3:82:4a:8e:64:41:eb:68:84:da:ca:e5:d1:
                    5f:68:6a:68:92:c1:8b:a1:90:70:67:1b:80:54:2d:24:
                    dc:a4:58:fe:c1:d3:d7:f4:22:69:e0:fe:cc:d4:94:28:
                    63:c8:30:d8:49:af:9d:53:c0:0f:97:77:5d:c2:46:6b:
                    fd:c3:32:1c:45:63:97:77:ab:07:58:5a:da:c5:99:1b:
                    ec:a9:83:b6:a5:b8:52:4f:e7:b8:07:ad:44:6b:bb:e8:
                    3a:3b:ae:80:3f:71:1a:32:9f:4e:4e:bf:4a:43:48:43:
                    3e:a1:64:bb:fd:cc:ed:9e:59:44:ea:77:26:de:b2:bd:
                    e0:3f:4d:62:9f:8e:8d:36:70:ea:2e:c6:d9:4a:66:ea:
                    8f:5f:40:d3:ae:1f:a3:7f:34:c3:b5:2d:bb:5a:19:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:c3:15:85:aa:c9:73:35:9a:52:45:8a:35:67:3b:f3:
        74:11:44:e3:1b:de:43:37:49:65:43:cb:40:4a:27:91:
        5b:8f:e6:63:1f:63:0a:95:d9:3f:a4:d2:61:35:90:b4:
        cb:71:6e:d8:cf:be:43:f0:57:a2:45:bd:8e:6d:36:11:
        83:63:41:cf:be:08:46:84:6e:df:36:3a:f9:cc:0b:e0:
        a7:8e:e1:97:c2:ba:7d:ef:bc:71:0e:a6:44:3d:36:6c:
        6c:58:f3:7e:ac:9f:70:cd:7e:04:92:28:35:6c:97:5b:
        c1:5c:f4:0b:13:58:79:54:58:44:f9:3a:49:a7:4e:5d:
        0e:49:59:79:d8:9d:a3:9d:b1:70:7f:ab:4a:8a:49:fe:
        e3:d1:e0:71:08:71:87:2b:6a:2e:2b:86:19:a5:fe:6a:
        1f:39:29:10:47:f5:c1:2d:b6:d7:13:5b:7d:20:05:be:
        95:06:fc:28:15:0c:8d:12:61:5c:04:df:10:bc:31:b1:
        7b:61:f5:7f:d7:14:a8:d1:24:e8:4f:9d:b8:67:76:27:
        16:a2:d8:1a:6d:bc:8d:a8:10:33:76:5a:e7:b5:ad:4c:
        b3:cd:b9:75:71:3f:46:b1:8c:23:72:81:ef:f0:7a:b8:
        90:42:f5:66:af:3e:ec:71:85:d9:dd:ac:68:33:96:fb
    Fingerprint (SHA-256):
        E5:9A:57:C2:CA:5A:81:D0:89:5E:EE:6B:BC:32:37:4F:DB:4F:A5:8D:9E:1A:F5:0C:89:3B:8A:22:D9:0F:90:CA
    Fingerprint (SHA1):
        73:E5:02:A7:CA:7C:05:CB:76:F3:1A:E8:36:FD:EA:C6:1A:C5:49:6E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14192: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124564 (0x310fe254)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:42 2017
            Not After : Tue Aug 23 12:47:42 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:a8:73:5d:91:53:99:cd:4e:6f:84:48:7c:3e:7c:e1:
                    47:07:ff:d3:54:1d:82:eb:4f:13:2b:14:2e:05:f8:c1:
                    e3:2b:f1:db:ae:0c:ec:23:eb:79:eb:b6:a3:a2:25:47:
                    8f:ac:38:3f:4d:cf:2e:10:21:92:52:f4:c0:dd:e9:b7:
                    8e:32:51:69:c1:31:1f:2c:6d:f8:74:db:c9:65:fc:98:
                    37:ec:5f:1a:22:74:51:16:c8:77:d8:b5:44:ce:29:b1:
                    7f:38:17:d3:82:4a:8e:64:41:eb:68:84:da:ca:e5:d1:
                    5f:68:6a:68:92:c1:8b:a1:90:70:67:1b:80:54:2d:24:
                    dc:a4:58:fe:c1:d3:d7:f4:22:69:e0:fe:cc:d4:94:28:
                    63:c8:30:d8:49:af:9d:53:c0:0f:97:77:5d:c2:46:6b:
                    fd:c3:32:1c:45:63:97:77:ab:07:58:5a:da:c5:99:1b:
                    ec:a9:83:b6:a5:b8:52:4f:e7:b8:07:ad:44:6b:bb:e8:
                    3a:3b:ae:80:3f:71:1a:32:9f:4e:4e:bf:4a:43:48:43:
                    3e:a1:64:bb:fd:cc:ed:9e:59:44:ea:77:26:de:b2:bd:
                    e0:3f:4d:62:9f:8e:8d:36:70:ea:2e:c6:d9:4a:66:ea:
                    8f:5f:40:d3:ae:1f:a3:7f:34:c3:b5:2d:bb:5a:19:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:c3:15:85:aa:c9:73:35:9a:52:45:8a:35:67:3b:f3:
        74:11:44:e3:1b:de:43:37:49:65:43:cb:40:4a:27:91:
        5b:8f:e6:63:1f:63:0a:95:d9:3f:a4:d2:61:35:90:b4:
        cb:71:6e:d8:cf:be:43:f0:57:a2:45:bd:8e:6d:36:11:
        83:63:41:cf:be:08:46:84:6e:df:36:3a:f9:cc:0b:e0:
        a7:8e:e1:97:c2:ba:7d:ef:bc:71:0e:a6:44:3d:36:6c:
        6c:58:f3:7e:ac:9f:70:cd:7e:04:92:28:35:6c:97:5b:
        c1:5c:f4:0b:13:58:79:54:58:44:f9:3a:49:a7:4e:5d:
        0e:49:59:79:d8:9d:a3:9d:b1:70:7f:ab:4a:8a:49:fe:
        e3:d1:e0:71:08:71:87:2b:6a:2e:2b:86:19:a5:fe:6a:
        1f:39:29:10:47:f5:c1:2d:b6:d7:13:5b:7d:20:05:be:
        95:06:fc:28:15:0c:8d:12:61:5c:04:df:10:bc:31:b1:
        7b:61:f5:7f:d7:14:a8:d1:24:e8:4f:9d:b8:67:76:27:
        16:a2:d8:1a:6d:bc:8d:a8:10:33:76:5a:e7:b5:ad:4c:
        b3:cd:b9:75:71:3f:46:b1:8c:23:72:81:ef:f0:7a:b8:
        90:42:f5:66:af:3e:ec:71:85:d9:dd:ac:68:33:96:fb
    Fingerprint (SHA-256):
        E5:9A:57:C2:CA:5A:81:D0:89:5E:EE:6B:BC:32:37:4F:DB:4F:A5:8D:9E:1A:F5:0C:89:3B:8A:22:D9:0F:90:CA
    Fingerprint (SHA1):
        73:E5:02:A7:CA:7C:05:CB:76:F3:1A:E8:36:FD:EA:C6:1A:C5:49:6E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14193: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #14194: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124569 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14195: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #14196: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #14197: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124570 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14198: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #14199: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #14200: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124571 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14201: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #14202: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #14203: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124572 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14204: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #14205: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #14206: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124573 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14207: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #14208: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #14209: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124574 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14210: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #14211: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #14212: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124575 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14213: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #14214: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #14215: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124576 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14216: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #14217: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #14218: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124577 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14219: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #14220: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #14221: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14222: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 823124578 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14223: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14224: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 823124579 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14225: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14226: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 823124580 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14227: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14228: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #14229: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #14230: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14231: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 823124581 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14232: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14233: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 823124582 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14234: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14235: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 823124583 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14236: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14237: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #14238: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #14239: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14240: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 823124584 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14241: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14242: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 823124585 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14243: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14244: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 823124586 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14245: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14246: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #14247: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #14248: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14249: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 823124587 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14250: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14251: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 823124588 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14252: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14253: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 823124589 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14254: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14255: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #14256: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14257: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14258: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 823124590   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14259: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14260: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14261: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14262: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124591   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14263: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14264: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124569 (0x310fe259)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:49 2017
            Not After : Tue Aug 23 12:47:49 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:20:d5:e7:d1:9e:a9:2d:87:ed:70:eb:91:4b:b8:1c:
                    ec:8f:c9:fd:63:fe:8b:22:c5:0a:04:1d:1c:e5:d2:73:
                    df:7d:83:db:b3:9f:91:0f:97:10:86:28:1f:d2:e8:1a:
                    68:67:aa:ca:08:3a:f5:58:52:d9:12:66:56:ab:de:9d:
                    94:f0:23:da:c8:c4:8c:f7:e4:64:31:7b:85:c2:49:f5:
                    74:a7:a6:ee:15:3a:40:c0:61:9e:f4:1a:2d:2b:8b:77:
                    70:3d:8e:44:87:0c:1a:c7:71:41:82:bb:48:19:05:c1:
                    d7:18:48:7e:6f:93:c1:5f:f8:df:1b:4a:5f:55:eb:7b:
                    e5:92:ee:4b:c3:6a:9a:e0:67:b7:3a:58:9f:da:1e:05:
                    a3:7e:b4:43:71:ce:a4:43:79:ed:3a:15:fc:88:19:d0:
                    ce:c8:cc:90:af:31:ca:94:43:41:08:65:e1:02:44:a5:
                    bc:66:83:97:4c:a2:7b:dd:44:42:39:ca:c4:17:4a:46:
                    bd:f5:7a:32:28:09:70:e1:3e:84:96:ec:5d:87:db:9d:
                    60:01:e9:ba:9b:62:87:b3:cf:a3:3e:90:df:78:cf:e9:
                    49:8a:4f:5b:f5:9c:4b:1c:00:0c:32:04:6a:a5:85:f9:
                    3a:44:07:d0:fb:d9:51:95:f7:2b:d5:50:04:cb:1c:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:8b:2c:0d:41:b1:af:69:57:c0:3d:6b:ef:ba:9b:57:
        3a:07:49:95:d3:40:d6:c0:a3:4a:c7:40:89:4e:5c:36:
        7f:6f:33:2c:3b:21:57:79:7b:48:0d:75:17:9f:d8:81:
        06:73:ea:97:71:b1:e9:06:77:a7:8c:79:f8:56:ac:f2:
        4a:e1:59:80:85:bf:74:9a:0c:3a:c8:93:43:3b:6d:c4:
        7f:d1:48:c2:b3:63:57:c3:37:4d:38:1b:9f:65:2b:2b:
        14:27:54:b0:66:f3:bc:39:ed:74:3a:f4:f6:f6:99:8b:
        ce:c2:3b:f7:80:14:35:34:1c:d5:0b:3e:99:47:f1:ef:
        fe:18:13:3b:9e:87:ad:73:9c:b2:82:39:77:ab:47:71:
        14:53:09:48:7a:ef:64:13:dd:c9:1c:5a:6b:e8:fd:17:
        7a:29:fc:ed:53:7a:1c:b8:46:f7:41:d6:8c:92:c5:3c:
        b7:93:4a:cd:a2:17:ca:09:b3:82:d7:e3:ea:27:a7:d4:
        88:b1:06:e0:a3:04:d9:c9:be:4d:63:28:82:e7:26:04:
        7f:d1:1a:3a:32:46:04:cc:2f:58:08:cd:58:54:38:48:
        7a:27:20:78:0c:cf:0a:84:34:1d:3f:62:51:38:17:99:
        8a:31:70:a3:de:ca:e1:a9:63:5d:13:ff:34:fb:69:df
    Fingerprint (SHA-256):
        28:6A:BD:9F:FA:DD:6B:68:3E:BD:5C:21:2E:C5:01:D2:20:C7:57:0E:ED:6F:EC:ED:E9:EA:13:C3:2D:BE:A0:E3
    Fingerprint (SHA1):
        F2:96:4D:28:AF:0C:5C:DD:1F:E7:40:46:E7:01:3D:33:95:01:B0:34
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14265: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124570 (0x310fe25a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:50 2017
            Not After : Tue Aug 23 12:47:50 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:39:b4:f7:4a:e2:f7:6f:41:35:b1:03:52:18:02:a7:
                    d8:73:53:da:34:bb:32:ae:ac:db:ff:66:4a:cd:12:a2:
                    e1:91:84:a6:05:60:2c:a1:c9:37:76:3c:83:2d:a2:ed:
                    63:73:ce:65:ed:e1:13:ff:d6:39:5e:eb:44:77:70:d8:
                    65:8d:77:08:bc:08:54:07:21:be:21:a8:07:c1:4e:e1:
                    1b:50:6a:6a:6a:1e:9f:76:8a:a6:8e:4a:12:33:a2:89:
                    af:c2:e5:7f:0e:43:bd:81:10:de:0c:d2:e6:bf:ae:ce:
                    04:a7:10:48:0c:7b:bc:09:cd:0f:1c:cb:35:b8:2f:ce:
                    e1:24:9e:a9:e6:34:62:ca:19:4b:a6:4f:d3:91:d1:3b:
                    d2:71:20:e3:a7:9f:37:e0:6f:27:0d:78:0a:b6:55:9c:
                    9e:bb:3f:85:7a:09:aa:e8:e0:dc:f1:18:fc:11:6d:c7:
                    bb:72:46:bc:4d:3f:1b:07:93:13:7f:f3:1c:4c:49:75:
                    67:19:7d:80:33:40:9a:d9:db:8d:2d:45:d8:2d:05:16:
                    f2:eb:44:1e:23:92:16:4e:dc:45:e3:73:f3:8f:d2:e9:
                    30:ce:b8:92:5d:19:7e:e9:67:2f:2c:7c:c9:86:cf:86:
                    47:3f:d1:cf:68:3a:4d:a4:2d:7c:53:0f:ca:73:e2:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:6d:c0:57:af:52:e5:3d:fc:ed:76:04:1a:b8:c3:9f:
        5b:8e:d5:e2:13:9b:16:9f:60:70:b7:fc:fa:c8:b1:c7:
        39:7c:a5:95:6d:69:b4:5b:64:d8:2b:e9:11:3f:d9:dd:
        98:8a:75:b3:64:84:82:04:6b:2b:5c:f5:a6:27:70:94:
        23:77:5d:97:24:2b:73:6d:dd:05:60:2d:ed:0b:66:83:
        c3:27:27:d9:f5:76:35:b6:9c:19:11:88:b6:cb:ae:9f:
        11:b1:f1:3e:ac:e5:d8:97:4c:4f:5e:28:1a:73:9e:70:
        49:25:49:da:9c:02:c2:cf:07:9c:b3:86:d4:c0:34:a1:
        19:54:d0:63:56:05:52:95:ab:88:b2:3a:17:7b:b7:c6:
        bf:b3:0f:2d:97:91:97:b0:3f:e2:0a:7e:ed:ba:21:5e:
        c5:43:37:9d:92:a9:24:53:24:67:64:89:17:2f:e2:17:
        d4:d4:5c:e1:e6:ac:09:cc:56:e6:8c:7d:66:8b:fd:a6:
        ea:55:f5:c1:c1:e4:61:f0:0f:5a:a0:5f:c3:66:e8:9a:
        f9:ee:13:ed:f9:0b:e7:26:ff:44:1a:6b:70:9b:33:97:
        95:49:be:b2:01:6a:97:31:2f:c1:13:e6:2e:0d:25:a0:
        ae:9e:74:47:c4:0a:71:c4:a5:02:5c:67:44:e2:0c:ac
    Fingerprint (SHA-256):
        8D:F2:88:F3:61:45:92:F5:E6:BF:85:04:C6:4A:A6:9B:06:6A:75:2F:FF:66:D1:5E:4C:18:76:CD:5E:56:C5:16
    Fingerprint (SHA1):
        1F:C6:62:09:00:67:9E:7C:53:14:C9:53:14:52:50:11:53:AD:79:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14266: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124571 (0x310fe25b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:51 2017
            Not After : Tue Aug 23 12:47:51 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:33:17:72:52:1d:bc:d2:37:86:c5:53:83:72:b7:b0:
                    ce:a0:28:c0:65:85:e2:5c:f8:e1:c7:ad:fb:c4:27:78:
                    ea:74:26:5c:84:be:1a:cf:a0:62:5f:f8:11:57:5b:20:
                    0a:aa:5e:fe:7c:15:70:30:0e:de:87:97:ea:b4:89:0a:
                    9f:c1:f5:b3:a0:f4:2c:7c:1f:3f:b9:47:5c:17:2e:73:
                    8e:84:35:c0:c7:60:44:a4:50:03:47:f3:ad:fd:47:09:
                    74:dc:4b:85:af:6c:a7:da:f2:31:7f:49:fd:ec:33:61:
                    f5:16:8f:ac:ca:6a:b3:23:ca:19:ee:a2:35:69:80:b6:
                    10:dd:4c:59:ab:67:4f:d2:d3:a7:98:02:de:23:2a:b1:
                    fa:63:2c:6f:4a:48:83:12:73:a0:c7:f5:bf:e9:1c:d9:
                    64:61:2e:29:c4:0e:0f:ef:d2:d2:46:08:2e:56:a3:fb:
                    96:f1:d9:9c:11:35:1b:ec:4a:43:8c:41:2a:5e:ba:d7:
                    24:9e:5b:db:1a:7b:4c:df:83:ac:6d:67:47:c9:c7:10:
                    7a:de:22:34:1c:0b:7f:1d:3a:3f:64:8c:01:fa:7e:9d:
                    e6:4b:b7:62:cf:35:83:a0:aa:8f:e5:14:0e:a3:61:a3:
                    a4:56:09:65:34:8c:48:a7:b5:b1:e8:b2:a7:4c:2b:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:96:37:37:fe:79:db:e7:67:c6:cb:95:d5:d4:2a:c1:
        54:b0:27:f3:a4:95:33:eb:10:a4:44:72:7f:21:dd:92:
        6f:67:0d:1b:3a:f3:58:c7:81:64:2a:a8:77:72:4f:b7:
        18:53:80:68:45:6a:57:b2:a0:52:18:90:8e:ec:cd:3b:
        be:de:80:d6:50:c7:f7:f9:9f:24:11:0a:e1:22:7c:40:
        fc:6b:b2:d8:db:a0:82:7c:f0:a9:55:0d:c1:55:c9:f9:
        49:4b:13:ef:d4:58:57:d4:6b:7b:3f:08:1e:6f:82:41:
        01:b0:2e:19:e0:5a:db:26:d6:74:09:65:a5:49:b0:aa:
        99:ef:98:8e:5d:cb:e6:ff:35:3a:ae:f2:ad:9f:c9:ac:
        a1:33:9e:45:61:b6:cf:ef:fe:fc:5f:a7:5a:66:17:dc:
        ad:ab:25:d5:b0:17:a6:f3:f6:c0:7e:2b:d8:5e:79:92:
        6c:3f:43:0f:6f:6e:85:75:0f:8f:18:98:07:5f:df:c8:
        2b:03:e3:e9:28:df:5e:54:96:5b:64:b5:4f:f8:4d:40:
        ae:fe:9f:4f:88:12:e6:ff:78:b5:9d:1e:5d:af:74:fa:
        08:6a:34:a2:10:d5:4d:d0:ba:8c:d2:1a:4e:b3:26:d4:
        e2:ff:10:27:c5:0c:a6:03:7a:a5:4c:6b:a0:86:a6:69
    Fingerprint (SHA-256):
        28:7D:2D:DA:75:E4:74:3A:4C:C4:33:EA:89:D6:30:FD:B8:C2:C7:65:4A:3D:1A:D0:C9:F8:A4:8C:5E:9E:76:59
    Fingerprint (SHA1):
        42:74:C3:FF:E4:68:71:A4:FE:30:13:94:3F:3D:DA:93:C4:8D:B4:6E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14267: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124572 (0x310fe25c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:52 2017
            Not After : Tue Aug 23 12:47:52 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:88:06:ee:2a:39:cc:0c:75:03:e7:3d:df:23:bb:bf:
                    c7:bc:6a:a2:80:86:3a:15:7c:70:bb:18:95:7c:4a:8e:
                    2b:bc:14:7a:82:39:29:b9:31:a9:38:4b:6a:72:e4:5f:
                    c6:6c:9d:3c:4b:65:8a:8e:eb:4a:11:fc:cb:bc:ad:f6:
                    06:b0:be:55:ff:de:8c:cc:c4:52:98:dd:b9:b1:90:e5:
                    a3:96:9c:be:85:57:46:f0:cc:f2:c2:ef:8f:87:53:8e:
                    57:86:93:ab:6c:2e:19:89:66:8d:d4:68:6f:e0:57:ea:
                    8b:d7:45:bd:63:50:5b:3d:1b:b4:aa:4f:df:a5:dc:e8:
                    dd:21:b4:83:2d:3b:06:94:08:a9:a8:d0:94:f9:6f:55:
                    6f:3a:0a:8e:ec:c5:98:ba:a3:d5:5f:86:39:47:e3:94:
                    40:66:af:4e:12:40:e0:bb:8c:7f:05:87:a8:06:55:75:
                    45:81:49:f9:39:ea:b7:a2:ea:8f:af:77:f4:72:cc:4d:
                    4f:0d:ba:8d:3d:03:31:37:b4:6b:2c:e5:7e:53:d1:ab:
                    f6:47:e9:56:34:20:84:0b:ea:f0:59:4a:c5:48:7e:0a:
                    04:9a:6e:a8:17:4d:77:e2:6c:90:e8:7f:69:67:64:68:
                    15:77:2e:c1:c1:bf:b9:17:79:ea:a2:30:17:35:81:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:e1:5c:ce:26:72:3d:88:95:e8:bd:5d:f6:55:16:e7:
        ec:1a:9f:f0:e1:d1:e4:3d:c6:fb:c2:c8:4d:65:fd:bf:
        e9:5a:c4:a0:d9:f9:44:a1:66:7a:0a:ca:93:d8:d4:07:
        a2:cb:60:8b:f3:22:44:cf:2e:1b:f8:2b:51:4c:25:ed:
        74:f3:ec:49:24:56:7e:1a:7f:57:3a:e7:a4:3d:84:98:
        f9:e4:cb:9b:e8:e8:60:e4:c3:10:af:37:c5:32:b7:02:
        ba:c7:fa:0c:a3:e7:cf:80:c8:0c:25:a9:0c:98:24:21:
        fa:ed:0f:4b:f4:e5:c8:14:8f:fa:ce:b4:18:22:95:5a:
        9a:0f:43:74:e5:e8:34:47:a4:e8:61:a7:58:6a:85:7a:
        66:51:02:43:ed:bf:72:0d:83:54:09:32:bc:2c:f0:99:
        ca:40:a4:a3:fc:49:fa:fa:ed:be:6a:75:fd:1f:fc:5c:
        6d:21:19:c6:61:7c:ae:dd:ad:93:70:51:f5:65:29:7f:
        3a:e4:a5:df:0a:80:ac:bf:40:6f:26:14:0f:61:c2:67:
        68:62:10:56:23:3f:00:17:d6:9e:06:9b:f4:c1:9c:16:
        a2:b9:84:34:f5:98:ab:28:7c:55:f9:4c:75:f9:b3:7f:
        2a:22:b7:d8:08:9c:b2:fd:2e:96:01:4a:93:9e:76:89
    Fingerprint (SHA-256):
        79:60:9C:FB:2D:2C:BF:82:F6:14:22:DD:D8:BA:CF:7D:91:D6:41:24:DB:08:87:B6:D4:A4:02:DE:BB:DC:73:29
    Fingerprint (SHA1):
        8E:A8:B6:97:71:C3:A1:A6:DC:E0:1E:E6:4B:D4:69:A2:E8:B4:81:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14268: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124573 (0x310fe25d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:53 2017
            Not After : Tue Aug 23 12:47:53 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    93:72:57:b9:66:35:80:71:ca:56:26:29:37:c9:3c:61:
                    4a:b7:94:f9:a5:33:8e:5a:65:e1:8f:51:18:20:9f:d5:
                    bd:92:dd:a2:79:7d:c7:9c:91:29:eb:9d:06:c2:db:40:
                    00:44:35:7a:a9:b9:11:e7:d8:84:aa:97:10:c1:3d:8a:
                    6f:3a:40:83:1c:a8:79:16:86:e1:8a:20:bc:30:a9:26:
                    12:16:3f:91:f1:b8:41:16:6d:5c:43:8f:62:e4:51:4b:
                    09:db:2b:97:e9:c9:f4:1a:0b:ac:e6:52:a4:8a:2f:cf:
                    45:4a:b9:ed:a0:67:9b:a2:b6:61:66:2c:e4:5c:89:58:
                    fe:56:e7:c1:62:ba:6f:09:da:36:d1:82:05:a5:47:88:
                    f7:9d:9c:5b:7e:73:15:8a:7b:d9:b6:58:00:a2:43:dd:
                    2a:04:37:25:6c:db:28:40:c7:50:be:64:44:a2:cd:0c:
                    2b:1b:60:1e:4d:f8:bc:31:ce:b2:5b:2f:7d:37:92:04:
                    2b:37:ca:95:d7:25:3e:07:ec:85:20:f0:0a:4f:10:3f:
                    ae:de:a2:22:95:e5:d3:4a:85:22:ba:20:fd:4f:c9:ff:
                    ce:28:19:3b:9d:9e:fc:fb:41:e6:01:6f:e1:10:b5:8a:
                    92:2b:66:d1:50:02:42:4e:e5:a0:17:56:47:ab:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:aa:6b:00:dc:04:de:3f:bc:b4:2f:4a:dc:09:75:ec:
        31:d7:de:0c:05:74:e2:38:0d:45:58:22:74:26:3a:72:
        cb:33:88:e4:e5:d1:53:48:ce:a9:cb:8a:2b:da:fb:aa:
        b2:9f:51:03:5d:c7:15:0e:06:81:65:7b:1f:83:fc:fc:
        4d:01:bf:69:48:ac:37:a4:54:ee:49:32:49:63:a9:17:
        17:0a:41:2c:70:82:b7:b5:8c:11:bf:df:00:77:e5:5f:
        60:c9:ae:12:52:69:82:8b:09:c8:4b:59:1e:90:78:85:
        d2:b4:b9:2e:27:5a:90:7a:3c:b9:b8:16:b3:84:4a:7f:
        f6:c0:49:94:e1:34:cd:82:ab:49:d6:53:2b:03:5b:11:
        88:d6:e0:26:af:34:68:92:82:2d:22:ef:52:09:23:19:
        93:f2:29:11:4d:da:73:99:0b:3b:43:86:04:34:4b:17:
        1d:77:42:4e:cf:00:d8:ca:e5:94:57:84:5a:56:a6:9a:
        d2:07:7d:d4:17:4f:7b:e0:88:63:69:15:f0:84:94:2c:
        23:c4:00:fb:0d:84:5b:88:3c:a5:2f:19:9b:20:23:21:
        2d:5e:98:92:49:3c:3b:fd:a0:00:c8:82:eb:ab:f5:ce:
        ee:ca:b8:bf:49:1e:68:ea:8b:e9:a1:1f:0c:fc:a4:56
    Fingerprint (SHA-256):
        10:B3:36:DA:C0:84:49:5C:2C:62:AB:59:1D:7C:C1:54:65:2F:3D:1A:37:17:BE:88:E1:08:86:C5:19:75:9A:59
    Fingerprint (SHA1):
        DE:88:32:32:74:F8:E3:A5:10:DA:7B:3C:6C:25:05:5D:22:4F:39:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14269: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124574 (0x310fe25e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:54 2017
            Not After : Tue Aug 23 12:47:54 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:f0:1f:e6:f8:24:f1:40:90:0b:9a:9f:dd:41:ad:56:
                    68:3f:b7:2e:28:05:16:5c:02:64:6d:cb:1b:1c:51:2c:
                    26:66:ca:e4:63:46:0c:3e:59:a5:3c:85:42:4f:91:0e:
                    52:d9:c7:2f:61:93:82:16:45:4c:92:49:d4:04:ca:3f:
                    e7:10:ba:ba:17:f7:96:d5:89:5d:05:09:22:d5:92:ec:
                    85:55:28:76:80:47:30:8b:62:fa:31:35:37:eb:a0:20:
                    a7:09:4d:98:67:11:78:75:3c:fa:fc:99:ff:10:e4:fd:
                    75:81:c4:5e:20:4f:6e:8f:c1:bc:7b:ba:fb:37:fd:0a:
                    2c:9c:6a:61:3e:0e:2f:28:4b:4e:fa:09:17:60:39:18:
                    5b:1a:30:93:e8:b1:53:1c:2f:81:19:2c:7a:19:f1:2b:
                    31:6d:a3:00:a7:47:48:89:d8:44:37:41:51:63:0b:d2:
                    b6:a5:ae:cd:a2:09:2c:11:fb:c6:1c:c0:c0:38:57:e1:
                    b9:93:52:e5:d3:44:df:36:70:48:e4:eb:e2:8a:da:39:
                    95:59:28:28:30:24:01:d4:df:00:cf:85:b7:b6:45:73:
                    96:d0:1c:76:35:31:11:77:c3:3a:84:01:d5:5a:72:da:
                    2e:64:c7:b2:ec:12:a3:a6:b9:29:08:80:7e:e0:5e:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:a1:a2:fb:0e:14:df:43:b0:64:1f:62:c8:92:59:4c:
        ff:4a:aa:9f:e4:e9:8e:8a:aa:63:52:20:29:6a:e8:ca:
        39:3b:16:5f:d1:ed:e1:f8:8c:fc:e5:83:9e:05:7c:01:
        66:f7:43:ed:3a:e7:1b:83:95:ce:36:6f:7e:32:97:fb:
        72:a2:57:eb:a2:78:3f:3c:33:27:7d:62:99:63:b2:76:
        19:8f:1e:94:74:3c:45:e0:5f:7e:bc:36:c0:50:2d:77:
        cd:67:9f:ba:72:d4:70:7e:e1:98:fb:86:08:0e:da:e5:
        cc:e4:22:b4:37:e0:db:03:dd:f6:47:5a:21:0e:7f:b6:
        90:5d:80:6f:d9:dc:ae:6e:91:51:23:48:56:10:69:ab:
        62:e1:32:c5:36:3b:93:1c:7e:62:c9:dd:f5:73:3e:b9:
        05:0b:ce:c6:47:e5:d9:76:ab:43:8c:fe:20:98:64:e0:
        3e:0c:75:56:78:c9:71:9c:94:c2:1f:27:00:f3:3f:6e:
        01:df:a9:18:d1:e0:fd:8d:af:5f:10:d8:c1:63:7f:9c:
        5c:58:6f:bc:30:31:99:01:d4:0a:af:e0:a3:31:a3:83:
        b4:29:30:4a:cd:af:d8:ed:ee:f7:46:b6:75:d4:30:54:
        e7:97:0f:28:19:b3:10:1e:60:99:9d:ab:00:a8:08:be
    Fingerprint (SHA-256):
        CE:BC:CA:CF:8E:CA:AE:B9:8F:B5:42:75:AE:D5:84:D8:89:A2:03:5E:A8:5E:B3:42:3C:E0:9C:41:58:72:30:0E
    Fingerprint (SHA1):
        B2:D4:D4:F2:A7:C9:88:3D:B7:0B:3D:92:6B:A5:BA:23:1F:DE:7A:16
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14270: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124575 (0x310fe25f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:55 2017
            Not After : Tue Aug 23 12:47:55 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:a2:51:2a:68:5b:c2:df:c5:82:58:9b:4c:8f:d7:a6:
                    0d:31:dd:f4:f7:0e:31:f6:67:bb:0c:39:54:35:c8:ab:
                    da:9e:36:8f:f6:bb:73:d6:a1:43:ee:8d:d9:a2:79:28:
                    9f:17:4f:9a:45:7a:e5:85:6d:1a:81:38:a2:74:ce:1f:
                    37:65:bb:07:c6:4e:70:2d:99:04:df:df:70:7c:07:da:
                    b0:80:01:8d:08:83:f2:0c:9e:4d:2b:40:78:74:89:24:
                    a6:5c:8a:a2:58:7b:b3:0a:03:5b:a5:7a:3f:3b:0f:16:
                    4b:6b:77:22:e0:d7:59:91:82:b7:87:f1:4e:cb:f7:ed:
                    d8:fa:60:93:d9:18:d3:8a:e7:13:a6:69:25:63:2d:2c:
                    af:3e:04:b5:31:b4:1f:09:9f:48:e8:59:47:ba:35:eb:
                    7f:3a:90:00:85:c6:f2:1d:e2:cf:ba:4f:0b:eb:f7:b6:
                    de:30:97:4e:9a:bb:5d:86:a3:d0:5d:c8:d4:25:7e:80:
                    00:2c:45:b3:6a:0f:da:c1:5d:0b:71:28:8a:a7:97:f1:
                    e7:16:d9:89:b9:b2:99:ea:53:b5:94:16:a2:21:86:9b:
                    9f:7b:fc:97:75:1b:79:5e:41:0d:e5:80:be:30:9c:f6:
                    9e:4a:7d:15:22:d8:48:f0:29:b2:7b:49:e2:48:52:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:d2:ed:58:58:5a:4e:7c:10:39:6a:06:7d:83:1e:fd:
        9b:54:d9:45:b8:c6:0b:0f:5a:24:38:1b:05:69:b8:d2:
        f9:dc:ac:5a:6f:22:59:0a:fe:01:70:40:0c:8b:e3:d5:
        d9:10:9e:37:99:03:22:f5:d3:f0:61:82:d0:87:2b:be:
        8f:a6:4f:c0:c0:f1:c9:05:ec:24:35:c2:4c:c7:80:50:
        4a:a8:b2:01:5c:36:d4:2a:f8:94:bc:89:8c:1e:98:e5:
        b1:2c:7d:fa:92:d6:f9:88:2d:32:da:d9:ba:e5:56:f8:
        d7:f6:60:c8:f9:55:b2:48:2c:e2:aa:59:a8:18:e0:b8:
        4a:86:c9:25:89:af:cc:23:f2:9f:7f:8a:5d:77:ff:d4:
        a0:61:f8:2c:42:af:8d:00:01:f3:ed:1a:37:d7:e0:2a:
        83:5f:29:4f:32:04:38:c4:09:e4:06:9e:9a:e0:34:4c:
        76:73:9b:2c:32:36:6e:bb:0b:6e:43:d0:cf:34:ab:08:
        c8:8d:e3:5c:cf:51:0a:48:93:21:91:87:d0:eb:f3:4c:
        0d:5c:a6:2e:fe:d5:71:65:53:b4:db:25:ca:15:5c:11:
        ef:2f:cd:9c:17:8f:5d:dd:e2:1f:1e:c5:c7:eb:07:d2:
        9b:b9:c5:02:9f:ed:bc:ee:91:00:09:f0:8d:b6:43:64
    Fingerprint (SHA-256):
        5F:39:29:14:BB:68:37:FB:43:09:D0:16:FA:F1:B3:CA:61:58:BF:8A:12:FD:86:BF:CA:91:A8:C0:F4:EE:E2:66
    Fingerprint (SHA1):
        5D:6B:89:03:76:CA:89:48:5F:AB:F7:31:79:88:2C:9D:E2:F9:35:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14271: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124576 (0x310fe260)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:56 2017
            Not After : Tue Aug 23 12:47:56 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:43:77:39:e0:65:f9:52:5f:0c:89:6d:be:f0:04:d0:
                    68:3a:68:5e:9b:67:45:73:a1:55:58:f1:3d:13:bf:bd:
                    4b:31:19:c1:e7:b9:f3:9b:14:b1:22:c2:10:d3:d5:cc:
                    81:fe:1e:b7:18:93:6f:5f:de:b2:b9:0c:fb:01:ff:cf:
                    4f:85:24:01:62:b2:49:45:fe:69:6f:f5:cb:3a:41:c5:
                    cc:a5:af:e6:ba:32:f0:81:39:20:3b:5f:7f:2d:d5:97:
                    c4:1a:68:f3:f1:93:36:eb:39:05:70:e6:8f:e0:8f:b2:
                    1a:60:9f:89:b9:c2:52:be:8a:3a:8f:d2:32:cb:8b:3c:
                    1c:b3:79:6d:b1:48:df:fd:61:4e:e8:35:3b:92:8a:63:
                    a5:3c:b9:e6:20:7e:0a:56:bb:a8:c4:8a:46:a0:3b:d9:
                    c3:5e:8e:be:84:46:67:6a:be:e6:57:d7:70:74:10:ff:
                    de:67:bf:98:06:57:49:4f:a5:27:8a:40:05:2e:33:74:
                    34:64:ff:a6:e3:7a:d1:d6:d0:1a:cc:0c:77:62:9b:1b:
                    48:f9:cc:83:7b:82:5d:fe:20:c6:6c:68:36:e7:6f:a3:
                    0d:39:9e:31:3b:cb:a4:2b:22:ef:26:89:0d:b8:55:1e:
                    6d:c4:72:b3:a5:2d:f2:5b:b8:91:1a:fa:39:77:20:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:90:a6:92:fd:b3:d1:13:40:97:55:00:a8:4a:fc:69:
        36:9f:24:3c:17:2d:24:c8:de:8e:4e:56:95:cf:d0:f0:
        09:79:ad:13:c5:b2:bc:e9:c6:27:87:82:ea:15:32:56:
        b1:cc:99:17:d5:34:1d:7b:11:4f:58:82:91:74:b1:3a:
        bf:be:af:19:1e:0f:00:33:81:f8:2e:e8:17:1b:b1:42:
        d3:10:e4:f2:46:e4:f8:5f:72:10:e2:e5:e1:74:66:49:
        74:0d:87:31:8a:b0:41:52:f9:eb:71:a6:5b:de:61:9b:
        4c:ad:1f:12:af:80:fe:47:b1:ce:2f:3b:cf:3b:a9:7b:
        56:77:39:73:55:c3:62:86:94:6d:57:d6:7c:e8:0f:33:
        23:eb:45:45:70:b0:83:be:f7:cb:a9:69:67:a6:5d:64:
        f6:fc:b6:6d:35:a1:8e:4b:29:1d:9e:0a:99:6b:78:87:
        04:30:44:f2:e3:82:d2:48:e0:a8:b2:8a:ce:3b:6e:84:
        8b:54:05:9d:46:81:fd:90:d0:52:3d:9e:48:3f:3f:11:
        52:7a:c3:d0:66:26:5f:48:99:47:5d:3c:c5:a0:cd:d7:
        ff:97:6f:99:d9:e0:5d:83:ce:76:97:fb:ef:e5:c9:ba:
        5e:5e:89:99:e4:6e:e1:81:75:0f:fe:ec:07:d5:65:09
    Fingerprint (SHA-256):
        26:56:71:4F:8F:12:1D:7E:44:3C:AD:CA:BD:5C:F3:D4:6B:69:AB:3F:C3:21:CA:3D:87:A4:03:A9:01:B4:D4:47
    Fingerprint (SHA1):
        FC:36:95:81:CF:05:41:B4:89:60:E1:82:B7:CB:BC:E4:93:50:BA:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14272: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124577 (0x310fe261)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed Aug 23 12:47:57 2017
            Not After : Tue Aug 23 12:47:57 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:50:e1:da:24:50:b5:a3:51:4b:21:e8:1c:d1:d3:bf:
                    f5:b3:57:d8:f6:08:a8:1b:a4:aa:04:e7:96:51:0b:fc:
                    95:74:6a:09:38:9f:be:c4:d1:57:be:9c:d3:18:df:55:
                    8e:da:0e:53:82:0b:e2:4c:f6:d6:83:75:ec:b8:3b:c1:
                    de:89:83:43:8c:19:56:63:fe:0a:6a:2f:55:29:23:04:
                    79:5e:34:03:a2:2a:92:4f:25:5b:61:27:06:91:0d:a3:
                    97:ad:a3:99:e5:3e:e1:c0:db:cc:dd:67:25:f9:41:b8:
                    6c:1e:29:0c:b9:09:21:fe:f1:9c:ca:59:c2:2e:6b:20:
                    d1:02:82:e1:d8:5a:e8:be:d7:8a:7f:31:87:54:be:c6:
                    16:98:ab:13:45:f1:db:40:68:48:49:5a:94:7a:77:e5:
                    b3:79:dc:31:da:4f:1a:0a:db:e9:20:4b:e2:c9:7b:9e:
                    bc:fb:a8:5e:8b:c6:44:1b:7b:78:86:31:82:97:7e:5d:
                    5c:d0:d8:6e:c9:74:ee:06:78:ae:2e:3f:d5:01:7f:57:
                    cc:7e:77:6f:e4:68:58:cd:ab:76:28:b9:7d:f8:1f:fd:
                    2a:18:4e:f1:4a:00:1f:de:75:7c:4d:0a:aa:24:7a:54:
                    7e:5b:e7:39:97:09:bc:0d:99:7e:5d:a1:20:d8:97:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:cf:3d:ae:5e:2c:6e:ad:b0:89:ab:af:1f:ca:a8:ec:
        f0:65:eb:4d:54:62:68:b1:67:6b:3f:4f:18:02:88:a0:
        fb:bb:37:a3:84:7e:70:ae:5f:ad:4e:3c:54:fb:2f:ac:
        ae:59:2c:83:f5:05:1a:5a:9f:8f:e2:4d:2f:63:c4:82:
        0c:db:42:e2:aa:f2:3e:f6:9c:55:f2:6d:59:84:10:2a:
        6d:c5:e8:1b:fe:79:43:e2:79:11:39:03:4e:3e:f9:e7:
        33:36:6d:4b:6f:50:79:08:df:ea:56:3b:ef:32:50:ae:
        53:43:6e:e2:21:57:93:16:41:4f:a6:79:61:86:13:f0:
        68:f4:e8:35:69:80:1d:11:7c:cc:fa:a5:37:26:16:cc:
        54:03:15:f0:f1:82:df:4e:8f:62:83:e9:07:6c:85:04:
        8d:6e:32:2e:fc:fc:81:d9:92:8e:b8:69:e6:40:ec:90:
        79:17:08:5e:18:61:42:df:b8:b7:17:91:f4:59:c4:0d:
        03:8c:36:44:cc:29:7f:b5:84:09:03:3f:5e:66:e7:1a:
        ae:05:0e:51:c6:71:64:6a:03:af:4c:af:27:fb:5a:2e:
        33:02:55:55:19:c7:45:0f:4e:38:6d:e6:78:ea:c1:be:
        b6:a1:51:eb:5b:e9:47:14:5e:b0:94:1a:ee:26:25:66
    Fingerprint (SHA-256):
        B0:7E:AB:9A:0D:87:E1:A0:D5:55:94:74:CF:57:D6:1F:79:1C:00:31:9A:2E:8E:04:C9:A3:92:60:F6:7B:58:36
    Fingerprint (SHA1):
        64:92:DA:74:1D:A8:00:F2:0B:9B:3C:07:13:8C:A4:56:7D:80:0B:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14273: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14274: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124592 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14275: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14276: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14277: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14278: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124593   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14279: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14280: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14281: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14282: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124594   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14283: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14284: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14285: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14286: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823124595   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14287: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14288: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14289: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124592 (0x310fe270)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:07 2017
            Not After : Tue Aug 23 12:48:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:18:1a:16:14:96:c1:75:3f:94:fa:3d:b2:80:fd:96:
                    62:6a:c7:4a:19:50:f1:06:58:9b:07:2d:91:b9:ae:c2:
                    d4:b1:23:c4:ad:46:c3:4a:a0:7f:97:23:41:b9:fc:91:
                    ba:09:cd:42:54:aa:8c:4b:0a:f7:f3:f6:ea:0d:3f:e1:
                    d1:11:bf:0a:94:af:9a:1a:3f:4e:69:58:8c:90:79:5f:
                    29:7a:c9:9e:6c:a3:94:5d:f8:0a:cd:12:0d:26:ec:37:
                    00:cb:f4:e9:e2:e8:f3:83:39:94:08:a7:eb:ff:21:03:
                    19:53:3d:db:ef:50:51:a5:b0:a5:1e:e9:eb:af:2e:84:
                    02:bb:58:48:de:c8:d5:d1:80:91:77:0d:01:10:30:36:
                    ab:8d:ca:f0:bd:13:f3:2d:b3:4a:ea:88:d3:94:49:11:
                    50:a2:5a:1f:56:2c:e0:25:a3:3c:e5:1e:39:b2:4b:64:
                    8a:d1:6c:2a:07:cd:03:66:1c:5c:a8:31:94:03:c2:ec:
                    3e:35:f4:5c:29:56:17:87:5d:db:69:50:7a:5c:8c:5b:
                    04:fd:0d:69:83:7e:ab:7b:c2:99:f0:b4:86:75:ad:7c:
                    03:54:e3:80:ad:a5:a7:e4:09:e0:99:e8:2b:ad:66:68:
                    49:90:56:6f:9c:8e:a0:b9:12:e6:f1:6c:c1:e4:6d:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:bc:b1:a3:b2:57:c8:4e:12:f6:c5:50:16:2d:6f:c5:
        ea:fa:21:53:d5:ad:03:0c:b0:dc:96:2c:ce:4c:25:4d:
        6b:3f:bf:6a:70:f0:c9:c4:aa:3b:3f:0b:a8:84:53:4a:
        e9:56:c5:c0:9c:f0:37:6d:cc:f0:3c:9f:fb:83:52:40:
        1a:aa:d9:83:3d:f7:da:2f:3e:2a:90:58:3c:05:bc:28:
        ab:15:23:ed:ca:f5:de:1b:10:23:68:09:93:85:78:b5:
        25:e5:a3:ff:d1:fa:9f:04:07:1f:fb:1b:d3:06:63:d7:
        ff:31:7b:6f:f5:77:e2:d3:12:37:60:1d:f8:a5:02:ba:
        6a:a6:e2:d2:b8:c4:dc:a1:de:1e:ff:b9:a9:24:ee:15:
        9e:24:14:1d:eb:c6:e1:ee:a9:04:07:2e:7d:9e:ac:b2:
        61:e0:de:1a:b4:32:d3:e4:37:a2:1c:49:1a:f2:a5:a1:
        ba:35:07:16:05:53:1d:aa:5a:d8:66:d2:f0:dc:bf:d2:
        b5:cd:7b:e1:5b:4e:0a:8f:14:b2:fc:f2:f1:0b:20:23:
        71:e9:c1:ff:1a:80:77:ff:40:27:e3:41:b5:5e:1c:40:
        c3:ea:8d:be:c2:a3:fe:96:a4:96:a3:a2:aa:71:7c:20:
        29:07:14:e2:e1:72:f8:ee:79:5f:eb:a9:05:88:dd:59
    Fingerprint (SHA-256):
        6B:FE:B1:1D:AE:31:31:FC:18:74:32:B8:0F:A7:53:47:F9:7C:31:56:F8:02:E7:2C:B2:3E:AB:30:71:D9:B5:89
    Fingerprint (SHA1):
        E0:A0:AE:62:8B:EA:CE:A7:94:7C:46:80:DF:88:33:2E:E6:60:C0:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14290: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14291: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124593 (0x310fe271)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:09 2017
            Not After : Tue Aug 23 12:48:09 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:43:27:ce:e7:c8:07:80:54:ef:bf:cd:77:fe:ce:8b:
                    fb:80:e0:4b:6f:04:3c:fe:db:fc:cf:fe:ee:b1:4a:08:
                    61:10:f2:84:65:cf:7e:ed:08:b0:4f:c0:18:e5:18:70:
                    2b:90:9e:05:0d:f3:4a:fe:d4:e9:7e:d2:e9:7e:ce:3b:
                    1d:1e:65:d4:70:53:6c:d1:07:36:b1:e6:6e:93:e4:98:
                    fe:a4:66:70:65:57:65:00:4c:40:a8:46:09:60:a9:16:
                    86:0c:b4:10:9f:a4:84:03:6c:7b:50:ce:f8:3b:37:e6:
                    f3:1a:9f:64:a7:67:6f:08:ca:ea:f2:37:4c:5b:a3:53:
                    67:eb:8f:e0:16:38:02:80:45:84:19:21:3c:63:fb:13:
                    fc:ed:e5:ec:86:63:96:9c:22:00:f9:6c:e4:df:db:b8:
                    4b:41:5f:ce:a9:0f:e4:f1:97:7f:2e:09:c0:45:70:7a:
                    29:b0:7c:06:a2:6f:f5:b6:0c:8d:c9:13:49:37:84:16:
                    5f:38:3b:1e:e6:37:19:e9:c0:e8:24:40:2f:e2:55:a7:
                    b3:c3:9f:33:80:c7:43:40:9c:0c:65:d9:57:ee:27:ce:
                    f2:a5:87:37:18:b7:b1:57:73:22:92:72:44:42:2f:c5:
                    b6:54:07:30:b7:77:8b:79:d5:f8:cf:80:d9:85:5d:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:9b:36:e4:0e:b9:02:ce:5f:77:6a:e4:5d:8c:9d:e3:
        22:a8:84:27:7d:16:ea:82:43:2e:5e:5d:97:10:dd:f9:
        6b:7d:33:ad:3a:fe:63:9e:1d:94:45:67:24:64:6e:99:
        7f:40:97:e3:0e:94:76:8a:3d:13:74:d0:d1:2e:7c:d1:
        20:90:93:95:10:4f:b2:f5:83:ad:dc:6f:7b:ea:aa:db:
        78:e0:c4:f7:cd:ee:b1:cf:59:f2:77:d3:96:db:86:b4:
        5f:ce:62:ca:fa:20:27:eb:15:df:0e:d7:0a:42:ab:9e:
        0e:86:98:d9:67:db:c6:f1:69:5e:1d:e8:bc:de:30:32:
        6c:af:77:4a:3f:dd:17:60:7d:5c:ae:d5:83:d2:16:c7:
        d3:92:25:be:0f:01:4c:ec:d7:e3:9c:90:d6:1e:96:8d:
        ed:da:b3:f5:c4:98:ef:3e:7b:2f:15:77:86:90:d6:6d:
        4e:08:fb:f7:52:04:21:9d:ec:9d:c9:d8:af:a1:89:25:
        b7:e6:3a:7e:e8:cb:31:2c:da:0e:8e:2a:3f:38:20:ef:
        66:32:15:5c:64:02:84:f9:e8:38:c7:5b:95:8a:09:bf:
        14:89:ff:66:e6:36:ff:d0:e9:16:42:9b:bd:35:38:5a:
        cb:62:6f:f3:e0:9e:44:0d:be:34:96:b9:0d:1d:1f:6a
    Fingerprint (SHA-256):
        06:12:2E:DA:7B:BA:B4:AA:B8:A0:0D:F3:79:40:B3:B6:FF:9D:04:77:8D:0B:E3:5B:86:15:7A:58:D0:37:DE:6F
    Fingerprint (SHA1):
        1F:7B:05:35:23:40:92:02:2F:13:B6:A2:33:3D:44:04:17:3D:CE:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14292: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14293: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124594 (0x310fe272)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:09 2017
            Not After : Tue Aug 23 12:48:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:0c:0a:98:0b:4a:92:e4:b0:5c:a0:0d:7b:54:a8:bf:
                    c1:12:de:1d:9c:8a:5d:b8:58:06:82:01:cd:f3:37:8e:
                    86:80:0a:6d:41:84:b6:fc:6b:ff:5c:28:3a:7f:2b:0c:
                    a8:1c:a0:14:55:d1:94:61:35:16:d4:e3:dc:9c:7a:6d:
                    9d:f1:22:b8:f8:35:e9:71:7b:79:1d:90:b0:c4:77:fd:
                    e0:56:80:ee:9c:85:6a:7d:d1:d8:3b:6b:48:41:d7:a7:
                    ac:41:42:2a:0f:b0:13:4b:30:c2:de:2a:0d:c8:05:6f:
                    b1:6d:74:fe:a5:3e:0b:d5:cc:58:4e:72:35:39:63:26:
                    b9:36:ec:3e:83:d1:86:f9:ac:14:1a:5f:1e:35:fc:44:
                    c5:06:e1:ff:7e:11:6d:74:fd:ea:db:5c:d7:07:17:b7:
                    90:da:b1:99:75:f7:0c:43:6d:94:35:56:0f:cc:67:dd:
                    46:77:63:91:17:53:f4:01:05:39:97:d9:4c:27:ab:34:
                    83:3c:75:c5:52:52:1f:b5:c3:95:8b:34:4d:25:3c:3b:
                    e6:73:f3:32:da:e0:e9:41:a7:3b:9b:b1:fc:c7:34:d1:
                    02:7a:a6:d1:33:f9:04:99:b7:7b:20:5b:aa:88:6a:45:
                    9d:1d:63:14:04:cc:bc:5b:55:87:cb:53:d5:e3:7f:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:73:a3:77:4d:86:09:12:b9:c9:67:8f:a2:72:d4:4e:
        1c:2c:8c:f7:2a:a4:b2:15:22:69:8c:c2:73:55:7d:fc:
        70:84:38:7a:51:4c:78:b2:3a:0d:e3:a4:ab:9e:7d:83:
        1c:b3:e0:06:9c:f3:c5:98:29:62:eb:23:17:8c:be:6a:
        ac:19:8b:15:d5:00:48:52:d9:ee:4c:cb:0f:4f:a8:16:
        ab:97:e8:8f:1a:c7:fb:0a:a9:61:9a:c4:f8:6b:2f:ff:
        90:0d:7f:0e:63:ac:e2:6d:ba:eb:44:fe:1b:88:5f:ec:
        9c:5f:51:70:11:7e:8b:1d:44:99:60:ab:49:53:83:d2:
        e7:07:b0:1e:a9:e4:38:48:a0:2b:84:07:1b:8e:3a:7f:
        54:40:f0:72:5b:e6:c0:45:22:9c:c1:9f:e0:24:f8:5a:
        d6:00:2e:0f:ea:7b:ff:19:f2:f2:cc:95:4a:78:81:46:
        07:30:d1:4f:af:61:2f:f6:44:cc:cb:80:2c:21:2a:a3:
        d7:11:15:f8:df:9d:18:22:ce:87:b1:83:18:3c:79:8c:
        f2:44:cc:31:88:19:69:d1:5c:28:45:56:54:42:89:04:
        57:b3:33:80:f3:1d:7c:4f:7e:aa:07:d0:76:3f:9e:4a:
        fc:09:a9:38:f7:8d:f1:a5:3c:71:c6:40:4c:e6:a7:98
    Fingerprint (SHA-256):
        D0:4C:7F:12:E2:5A:D8:C7:DF:75:E7:D3:FA:D3:47:E9:A4:E7:7A:2D:09:60:21:2E:F7:58:04:0E:08:0D:FC:D7
    Fingerprint (SHA1):
        D7:65:CE:36:DA:71:BB:89:7E:AD:12:CB:67:F9:56:49:72:84:61:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14294: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14295: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14296: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14297: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14298: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124592 (0x310fe270)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:07 2017
            Not After : Tue Aug 23 12:48:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:18:1a:16:14:96:c1:75:3f:94:fa:3d:b2:80:fd:96:
                    62:6a:c7:4a:19:50:f1:06:58:9b:07:2d:91:b9:ae:c2:
                    d4:b1:23:c4:ad:46:c3:4a:a0:7f:97:23:41:b9:fc:91:
                    ba:09:cd:42:54:aa:8c:4b:0a:f7:f3:f6:ea:0d:3f:e1:
                    d1:11:bf:0a:94:af:9a:1a:3f:4e:69:58:8c:90:79:5f:
                    29:7a:c9:9e:6c:a3:94:5d:f8:0a:cd:12:0d:26:ec:37:
                    00:cb:f4:e9:e2:e8:f3:83:39:94:08:a7:eb:ff:21:03:
                    19:53:3d:db:ef:50:51:a5:b0:a5:1e:e9:eb:af:2e:84:
                    02:bb:58:48:de:c8:d5:d1:80:91:77:0d:01:10:30:36:
                    ab:8d:ca:f0:bd:13:f3:2d:b3:4a:ea:88:d3:94:49:11:
                    50:a2:5a:1f:56:2c:e0:25:a3:3c:e5:1e:39:b2:4b:64:
                    8a:d1:6c:2a:07:cd:03:66:1c:5c:a8:31:94:03:c2:ec:
                    3e:35:f4:5c:29:56:17:87:5d:db:69:50:7a:5c:8c:5b:
                    04:fd:0d:69:83:7e:ab:7b:c2:99:f0:b4:86:75:ad:7c:
                    03:54:e3:80:ad:a5:a7:e4:09:e0:99:e8:2b:ad:66:68:
                    49:90:56:6f:9c:8e:a0:b9:12:e6:f1:6c:c1:e4:6d:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:bc:b1:a3:b2:57:c8:4e:12:f6:c5:50:16:2d:6f:c5:
        ea:fa:21:53:d5:ad:03:0c:b0:dc:96:2c:ce:4c:25:4d:
        6b:3f:bf:6a:70:f0:c9:c4:aa:3b:3f:0b:a8:84:53:4a:
        e9:56:c5:c0:9c:f0:37:6d:cc:f0:3c:9f:fb:83:52:40:
        1a:aa:d9:83:3d:f7:da:2f:3e:2a:90:58:3c:05:bc:28:
        ab:15:23:ed:ca:f5:de:1b:10:23:68:09:93:85:78:b5:
        25:e5:a3:ff:d1:fa:9f:04:07:1f:fb:1b:d3:06:63:d7:
        ff:31:7b:6f:f5:77:e2:d3:12:37:60:1d:f8:a5:02:ba:
        6a:a6:e2:d2:b8:c4:dc:a1:de:1e:ff:b9:a9:24:ee:15:
        9e:24:14:1d:eb:c6:e1:ee:a9:04:07:2e:7d:9e:ac:b2:
        61:e0:de:1a:b4:32:d3:e4:37:a2:1c:49:1a:f2:a5:a1:
        ba:35:07:16:05:53:1d:aa:5a:d8:66:d2:f0:dc:bf:d2:
        b5:cd:7b:e1:5b:4e:0a:8f:14:b2:fc:f2:f1:0b:20:23:
        71:e9:c1:ff:1a:80:77:ff:40:27:e3:41:b5:5e:1c:40:
        c3:ea:8d:be:c2:a3:fe:96:a4:96:a3:a2:aa:71:7c:20:
        29:07:14:e2:e1:72:f8:ee:79:5f:eb:a9:05:88:dd:59
    Fingerprint (SHA-256):
        6B:FE:B1:1D:AE:31:31:FC:18:74:32:B8:0F:A7:53:47:F9:7C:31:56:F8:02:E7:2C:B2:3E:AB:30:71:D9:B5:89
    Fingerprint (SHA1):
        E0:A0:AE:62:8B:EA:CE:A7:94:7C:46:80:DF:88:33:2E:E6:60:C0:4B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14299: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14300: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124593 (0x310fe271)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:09 2017
            Not After : Tue Aug 23 12:48:09 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:43:27:ce:e7:c8:07:80:54:ef:bf:cd:77:fe:ce:8b:
                    fb:80:e0:4b:6f:04:3c:fe:db:fc:cf:fe:ee:b1:4a:08:
                    61:10:f2:84:65:cf:7e:ed:08:b0:4f:c0:18:e5:18:70:
                    2b:90:9e:05:0d:f3:4a:fe:d4:e9:7e:d2:e9:7e:ce:3b:
                    1d:1e:65:d4:70:53:6c:d1:07:36:b1:e6:6e:93:e4:98:
                    fe:a4:66:70:65:57:65:00:4c:40:a8:46:09:60:a9:16:
                    86:0c:b4:10:9f:a4:84:03:6c:7b:50:ce:f8:3b:37:e6:
                    f3:1a:9f:64:a7:67:6f:08:ca:ea:f2:37:4c:5b:a3:53:
                    67:eb:8f:e0:16:38:02:80:45:84:19:21:3c:63:fb:13:
                    fc:ed:e5:ec:86:63:96:9c:22:00:f9:6c:e4:df:db:b8:
                    4b:41:5f:ce:a9:0f:e4:f1:97:7f:2e:09:c0:45:70:7a:
                    29:b0:7c:06:a2:6f:f5:b6:0c:8d:c9:13:49:37:84:16:
                    5f:38:3b:1e:e6:37:19:e9:c0:e8:24:40:2f:e2:55:a7:
                    b3:c3:9f:33:80:c7:43:40:9c:0c:65:d9:57:ee:27:ce:
                    f2:a5:87:37:18:b7:b1:57:73:22:92:72:44:42:2f:c5:
                    b6:54:07:30:b7:77:8b:79:d5:f8:cf:80:d9:85:5d:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:9b:36:e4:0e:b9:02:ce:5f:77:6a:e4:5d:8c:9d:e3:
        22:a8:84:27:7d:16:ea:82:43:2e:5e:5d:97:10:dd:f9:
        6b:7d:33:ad:3a:fe:63:9e:1d:94:45:67:24:64:6e:99:
        7f:40:97:e3:0e:94:76:8a:3d:13:74:d0:d1:2e:7c:d1:
        20:90:93:95:10:4f:b2:f5:83:ad:dc:6f:7b:ea:aa:db:
        78:e0:c4:f7:cd:ee:b1:cf:59:f2:77:d3:96:db:86:b4:
        5f:ce:62:ca:fa:20:27:eb:15:df:0e:d7:0a:42:ab:9e:
        0e:86:98:d9:67:db:c6:f1:69:5e:1d:e8:bc:de:30:32:
        6c:af:77:4a:3f:dd:17:60:7d:5c:ae:d5:83:d2:16:c7:
        d3:92:25:be:0f:01:4c:ec:d7:e3:9c:90:d6:1e:96:8d:
        ed:da:b3:f5:c4:98:ef:3e:7b:2f:15:77:86:90:d6:6d:
        4e:08:fb:f7:52:04:21:9d:ec:9d:c9:d8:af:a1:89:25:
        b7:e6:3a:7e:e8:cb:31:2c:da:0e:8e:2a:3f:38:20:ef:
        66:32:15:5c:64:02:84:f9:e8:38:c7:5b:95:8a:09:bf:
        14:89:ff:66:e6:36:ff:d0:e9:16:42:9b:bd:35:38:5a:
        cb:62:6f:f3:e0:9e:44:0d:be:34:96:b9:0d:1d:1f:6a
    Fingerprint (SHA-256):
        06:12:2E:DA:7B:BA:B4:AA:B8:A0:0D:F3:79:40:B3:B6:FF:9D:04:77:8D:0B:E3:5B:86:15:7A:58:D0:37:DE:6F
    Fingerprint (SHA1):
        1F:7B:05:35:23:40:92:02:2F:13:B6:A2:33:3D:44:04:17:3D:CE:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14301: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14302: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124594 (0x310fe272)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:09 2017
            Not After : Tue Aug 23 12:48:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:0c:0a:98:0b:4a:92:e4:b0:5c:a0:0d:7b:54:a8:bf:
                    c1:12:de:1d:9c:8a:5d:b8:58:06:82:01:cd:f3:37:8e:
                    86:80:0a:6d:41:84:b6:fc:6b:ff:5c:28:3a:7f:2b:0c:
                    a8:1c:a0:14:55:d1:94:61:35:16:d4:e3:dc:9c:7a:6d:
                    9d:f1:22:b8:f8:35:e9:71:7b:79:1d:90:b0:c4:77:fd:
                    e0:56:80:ee:9c:85:6a:7d:d1:d8:3b:6b:48:41:d7:a7:
                    ac:41:42:2a:0f:b0:13:4b:30:c2:de:2a:0d:c8:05:6f:
                    b1:6d:74:fe:a5:3e:0b:d5:cc:58:4e:72:35:39:63:26:
                    b9:36:ec:3e:83:d1:86:f9:ac:14:1a:5f:1e:35:fc:44:
                    c5:06:e1:ff:7e:11:6d:74:fd:ea:db:5c:d7:07:17:b7:
                    90:da:b1:99:75:f7:0c:43:6d:94:35:56:0f:cc:67:dd:
                    46:77:63:91:17:53:f4:01:05:39:97:d9:4c:27:ab:34:
                    83:3c:75:c5:52:52:1f:b5:c3:95:8b:34:4d:25:3c:3b:
                    e6:73:f3:32:da:e0:e9:41:a7:3b:9b:b1:fc:c7:34:d1:
                    02:7a:a6:d1:33:f9:04:99:b7:7b:20:5b:aa:88:6a:45:
                    9d:1d:63:14:04:cc:bc:5b:55:87:cb:53:d5:e3:7f:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:73:a3:77:4d:86:09:12:b9:c9:67:8f:a2:72:d4:4e:
        1c:2c:8c:f7:2a:a4:b2:15:22:69:8c:c2:73:55:7d:fc:
        70:84:38:7a:51:4c:78:b2:3a:0d:e3:a4:ab:9e:7d:83:
        1c:b3:e0:06:9c:f3:c5:98:29:62:eb:23:17:8c:be:6a:
        ac:19:8b:15:d5:00:48:52:d9:ee:4c:cb:0f:4f:a8:16:
        ab:97:e8:8f:1a:c7:fb:0a:a9:61:9a:c4:f8:6b:2f:ff:
        90:0d:7f:0e:63:ac:e2:6d:ba:eb:44:fe:1b:88:5f:ec:
        9c:5f:51:70:11:7e:8b:1d:44:99:60:ab:49:53:83:d2:
        e7:07:b0:1e:a9:e4:38:48:a0:2b:84:07:1b:8e:3a:7f:
        54:40:f0:72:5b:e6:c0:45:22:9c:c1:9f:e0:24:f8:5a:
        d6:00:2e:0f:ea:7b:ff:19:f2:f2:cc:95:4a:78:81:46:
        07:30:d1:4f:af:61:2f:f6:44:cc:cb:80:2c:21:2a:a3:
        d7:11:15:f8:df:9d:18:22:ce:87:b1:83:18:3c:79:8c:
        f2:44:cc:31:88:19:69:d1:5c:28:45:56:54:42:89:04:
        57:b3:33:80:f3:1d:7c:4f:7e:aa:07:d0:76:3f:9e:4a:
        fc:09:a9:38:f7:8d:f1:a5:3c:71:c6:40:4c:e6:a7:98
    Fingerprint (SHA-256):
        D0:4C:7F:12:E2:5A:D8:C7:DF:75:E7:D3:FA:D3:47:E9:A4:E7:7A:2D:09:60:21:2E:F7:58:04:0E:08:0D:FC:D7
    Fingerprint (SHA1):
        D7:65:CE:36:DA:71:BB:89:7E:AD:12:CB:67:F9:56:49:72:84:61:D4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14303: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14304: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14305: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124596 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14306: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14307: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14308: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14309: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124597   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14310: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14311: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14312: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14313: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124598   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14314: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14315: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #14316: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14317: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823124599   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14318: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14319: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #14320: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14321: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823124600   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14322: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14323: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14324: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124596 (0x310fe274)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:13 2017
            Not After : Tue Aug 23 12:48:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ae:3f:7b:c6:b7:2a:e6:79:38:15:c9:ae:99:1c:ab:
                    ef:36:dd:9f:40:aa:00:59:b4:11:67:29:8d:a3:b8:5b:
                    ae:a5:d7:c7:aa:d0:95:8b:b0:75:a4:f0:ce:06:be:48:
                    49:a7:1b:e1:82:bd:30:be:74:ff:4e:0a:ca:10:d9:e0:
                    74:0f:e5:2b:e0:9e:85:f5:19:44:65:ef:c3:d3:ca:4f:
                    d5:fe:8a:8a:c6:86:a5:20:e6:55:39:3f:ec:9b:ca:35:
                    d0:0a:32:7b:50:03:6e:80:24:d1:04:58:ca:26:58:be:
                    b2:f9:29:70:08:10:14:8e:cd:31:6d:9a:de:a2:7f:b7:
                    be:26:e6:4b:86:20:f3:15:ee:4b:e0:c4:4f:5b:59:60:
                    f0:57:f7:f8:a0:de:58:8b:c4:02:29:5d:ba:4f:f3:ed:
                    f0:81:83:4e:6c:3c:c0:3c:c8:04:50:c3:9a:5b:2d:5f:
                    fe:ce:19:f8:8a:b0:bb:53:c4:49:11:66:fd:ef:12:67:
                    85:75:92:51:f5:a4:b6:7e:00:12:42:39:1f:dd:0b:7f:
                    9f:e7:46:04:f6:4a:be:a2:84:96:46:f4:a7:0f:65:85:
                    10:83:3a:9a:8a:d3:61:13:5b:b9:1a:4b:88:0f:85:27:
                    93:e9:ec:aa:66:00:b8:90:c2:44:22:bf:fb:89:58:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:be:d5:4f:3a:7b:4d:ad:60:d8:de:50:fb:6e:c7:3a:
        ce:a0:11:fb:f8:e9:34:cb:19:9b:60:ee:52:4c:12:51:
        01:57:c9:79:78:8c:1d:1f:6b:1a:2c:37:51:75:6d:18:
        d9:a3:b9:c0:43:e6:f7:b9:48:38:15:11:dc:ac:8d:78:
        17:3e:34:e0:05:da:f2:32:f7:4d:cc:d5:6b:dc:9a:eb:
        b3:8f:50:76:80:24:3f:b3:b4:99:19:67:68:2d:76:02:
        cb:bb:10:61:16:f8:aa:b4:e4:0e:c2:2a:38:88:55:16:
        39:95:ba:2e:7f:11:ae:08:ee:bd:dd:3e:a7:8f:02:e4:
        67:16:7e:e1:3a:59:21:f5:e1:5c:2e:e1:26:8f:99:8b:
        cf:b2:f5:46:db:74:55:f7:00:d1:0f:2e:f2:3f:39:33:
        5c:65:6a:e4:3d:61:59:e8:bf:af:63:fe:36:26:df:2f:
        96:d8:5f:0f:62:a5:ce:2a:ef:de:c3:57:44:3a:52:b4:
        b6:3d:78:06:66:7f:de:2d:69:cf:f4:f0:51:70:97:49:
        0b:a1:4a:62:f7:40:cb:a2:7c:9f:3a:1f:f1:0b:92:a8:
        22:0a:ca:55:32:d2:27:e0:0b:f4:b3:54:ff:d2:1b:25:
        66:73:fb:06:af:d2:fc:33:69:ca:5d:09:7e:e0:1e:ed
    Fingerprint (SHA-256):
        30:62:8F:2D:82:F4:E2:7A:8B:86:AF:88:79:52:94:F6:EA:AE:94:5F:5E:47:07:22:54:E7:AA:3A:60:C4:4E:4E
    Fingerprint (SHA1):
        07:26:7D:12:2D:95:98:17:00:92:69:95:EC:C0:25:28:98:E6:83:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14325: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14326: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124597 (0x310fe275)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:14 2017
            Not After : Tue Aug 23 12:48:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8b:06:a9:c1:b7:31:77:57:4c:72:75:86:ea:51:43:
                    61:00:11:84:dc:a3:41:e9:60:20:1d:df:e8:e7:81:f9:
                    f6:ed:1d:2b:79:da:87:21:18:d1:03:0a:a0:60:6c:87:
                    07:dc:8a:4c:52:31:c3:b2:00:1f:07:63:e2:71:6a:53:
                    e0:76:93:37:c3:38:34:73:d9:70:ba:84:45:15:9a:c9:
                    ad:5a:5f:55:92:73:b0:36:d0:7d:5d:f5:37:aa:83:94:
                    81:ba:07:e1:ff:00:00:36:ee:ca:5d:24:14:f5:06:5c:
                    b9:dc:38:ce:91:19:b6:ae:fb:45:1b:62:c7:4c:2b:3f:
                    51:d2:8f:c1:9e:37:e2:02:62:d4:9e:e2:a5:a4:4e:ac:
                    64:7a:ef:14:06:6f:45:71:f5:2e:d7:a8:c5:d9:43:d5:
                    f2:f8:e0:8b:b5:9e:7f:af:65:48:f1:53:e8:93:63:d6:
                    f8:f9:5f:5a:eb:da:4d:4e:46:18:d1:8a:da:91:4f:be:
                    c5:f9:33:c1:2b:90:a8:68:d5:a6:85:cf:de:a5:ac:02:
                    4e:93:74:cb:f2:22:60:a2:26:61:69:bc:3a:b1:b5:85:
                    1c:d9:70:a6:7f:f6:4e:55:7c:0a:07:6b:5e:30:71:38:
                    a3:c1:62:a7:50:1a:f3:5b:92:fb:6e:78:f7:ae:28:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:19:91:1b:0e:90:90:c3:a7:c7:3b:b4:b5:18:47:4c:
        5d:3c:77:09:62:4d:da:e1:13:8e:1a:08:7d:1e:73:fd:
        9f:9f:10:0f:c7:aa:97:c6:c9:e9:3f:ab:14:e7:62:11:
        13:e7:36:3a:12:a8:d6:14:61:d2:c9:bd:48:7d:de:8a:
        c2:0a:11:e4:5b:f7:03:16:4a:3e:dd:07:20:fc:04:95:
        53:01:dc:12:c3:bb:38:37:d3:cc:cc:2d:2e:63:7b:86:
        be:c7:9e:c4:b4:6a:9f:5d:51:59:68:4b:38:18:6d:8a:
        ff:e4:8c:64:fb:ef:c7:77:cb:25:73:0f:21:45:3c:22:
        99:ca:68:85:76:15:aa:62:dd:a0:f3:ee:c1:47:5c:28:
        23:35:7f:30:de:42:6d:d6:3d:c3:45:0c:46:72:09:b5:
        56:89:19:ef:19:b6:13:e7:58:4c:c1:a0:d3:92:01:f6:
        16:1f:04:f0:48:b2:2b:2e:fd:0f:47:48:bd:9c:4a:db:
        25:b1:1e:48:b7:b1:58:9a:40:40:05:b2:cf:3d:51:8d:
        d2:34:34:42:68:a6:ab:fa:e8:f3:a6:2a:b1:c2:86:82:
        bd:c6:b0:8d:9a:02:44:b7:6a:8c:7c:2e:ea:f0:7c:ee:
        86:10:d3:b8:8b:ce:54:90:34:10:5e:d6:62:4d:1c:b5
    Fingerprint (SHA-256):
        C4:1D:0D:CB:F4:F1:56:2F:FF:10:2B:7F:E5:23:CE:84:E3:13:E8:A6:7B:61:03:FC:39:CF:F2:10:73:69:09:AF
    Fingerprint (SHA1):
        D7:A1:EC:ED:EA:D2:95:9F:66:05:1A:C2:BD:7E:57:6E:5C:B6:BA:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14327: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14328: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124598 (0x310fe276)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:15 2017
            Not After : Tue Aug 23 12:48:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:84:f7:e6:e9:14:d8:fb:3f:81:0c:7a:fa:32:fc:53:
                    95:ad:70:2c:fe:e7:10:83:63:fb:ee:dc:2d:ca:e3:74:
                    ac:10:d1:e7:7a:d0:75:06:ac:8c:2b:b5:46:3f:b3:25:
                    ee:06:19:2c:3f:94:ce:6b:bf:e2:c2:80:fc:0e:28:7f:
                    66:72:c0:1e:a6:3e:63:a3:f9:10:70:63:24:4d:16:a5:
                    59:c2:06:f3:ee:84:86:fa:be:15:2b:78:f4:7e:f7:7a:
                    2f:01:2d:94:f8:fa:95:ad:bf:41:f6:fa:6e:ba:46:cb:
                    be:29:b0:93:bd:9f:e1:b2:64:fb:8d:91:90:33:19:11:
                    c9:4f:96:a1:9e:b0:b7:94:2f:9d:40:17:58:f9:94:1a:
                    80:c6:23:c3:80:c5:6a:77:b1:c4:f1:49:3f:36:aa:c7:
                    cd:a7:dd:e9:95:53:b1:a7:0c:8e:b3:92:81:d9:f7:aa:
                    de:9c:f5:05:6d:b9:25:b0:97:f6:b0:da:a2:30:6b:8d:
                    96:7a:08:aa:37:bc:73:ce:2f:5f:b3:44:d6:d1:99:04:
                    bb:db:dd:f0:1e:f4:da:ce:a0:c7:9c:bc:cf:6b:90:a4:
                    19:33:2b:f3:30:af:c6:65:16:25:2f:d5:8c:ae:35:fd:
                    e2:79:7e:45:5a:68:b4:59:f9:d4:1d:a7:9b:ca:f5:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:30:06:2e:b9:e7:68:80:17:09:28:45:f3:8e:1c:9b:
        2e:5b:f8:ed:30:d3:b8:51:42:34:1e:ea:a5:b3:0f:f5:
        05:32:fa:48:87:1b:12:73:91:c3:cd:c8:af:f5:71:31:
        4c:2b:f5:d2:06:00:8c:73:f3:6b:e8:0e:12:6f:69:cb:
        26:f2:d7:d6:e8:8e:b5:05:c7:8e:f4:a7:56:c9:50:ca:
        e4:0c:77:c5:a6:ff:9e:d9:f9:d4:86:07:b7:48:d8:9b:
        8f:cd:58:20:bd:dc:a5:39:de:24:72:21:9c:99:cc:17:
        f4:44:70:81:08:ca:c8:18:15:9c:86:4b:7c:87:05:67:
        e5:23:8b:72:38:dd:62:b0:31:a5:1e:a7:72:c9:cc:35:
        04:ad:e0:0d:9b:66:4a:3f:17:9e:c5:06:ab:d5:b5:ad:
        79:8f:ae:8b:6b:b2:d4:e3:70:02:26:b2:64:38:cb:c8:
        63:79:05:11:e6:d8:4a:2e:b9:64:8d:ee:94:0d:ee:bb:
        00:74:61:e2:f8:42:70:c3:c9:94:1a:49:47:e8:82:10:
        fa:e3:3c:93:3a:3d:5a:34:de:ae:d3:fb:6f:47:bc:d2:
        1d:37:b9:cf:0c:a6:e2:86:e0:6f:c5:da:5b:77:27:5a:
        95:02:41:59:05:e6:80:b2:79:29:45:1e:37:43:c9:85
    Fingerprint (SHA-256):
        04:51:CD:E5:7C:BE:12:96:73:BE:9B:A0:05:BA:7C:3A:D4:5A:31:BB:DF:D0:F8:F9:9C:A5:5A:28:C8:EB:0E:1B
    Fingerprint (SHA1):
        32:F5:DB:53:F1:5D:A1:E5:95:77:F0:DD:5C:61:E0:B4:D5:F5:C4:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14329: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14330: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14331: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14332: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14333: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124596 (0x310fe274)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:13 2017
            Not After : Tue Aug 23 12:48:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ae:3f:7b:c6:b7:2a:e6:79:38:15:c9:ae:99:1c:ab:
                    ef:36:dd:9f:40:aa:00:59:b4:11:67:29:8d:a3:b8:5b:
                    ae:a5:d7:c7:aa:d0:95:8b:b0:75:a4:f0:ce:06:be:48:
                    49:a7:1b:e1:82:bd:30:be:74:ff:4e:0a:ca:10:d9:e0:
                    74:0f:e5:2b:e0:9e:85:f5:19:44:65:ef:c3:d3:ca:4f:
                    d5:fe:8a:8a:c6:86:a5:20:e6:55:39:3f:ec:9b:ca:35:
                    d0:0a:32:7b:50:03:6e:80:24:d1:04:58:ca:26:58:be:
                    b2:f9:29:70:08:10:14:8e:cd:31:6d:9a:de:a2:7f:b7:
                    be:26:e6:4b:86:20:f3:15:ee:4b:e0:c4:4f:5b:59:60:
                    f0:57:f7:f8:a0:de:58:8b:c4:02:29:5d:ba:4f:f3:ed:
                    f0:81:83:4e:6c:3c:c0:3c:c8:04:50:c3:9a:5b:2d:5f:
                    fe:ce:19:f8:8a:b0:bb:53:c4:49:11:66:fd:ef:12:67:
                    85:75:92:51:f5:a4:b6:7e:00:12:42:39:1f:dd:0b:7f:
                    9f:e7:46:04:f6:4a:be:a2:84:96:46:f4:a7:0f:65:85:
                    10:83:3a:9a:8a:d3:61:13:5b:b9:1a:4b:88:0f:85:27:
                    93:e9:ec:aa:66:00:b8:90:c2:44:22:bf:fb:89:58:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:be:d5:4f:3a:7b:4d:ad:60:d8:de:50:fb:6e:c7:3a:
        ce:a0:11:fb:f8:e9:34:cb:19:9b:60:ee:52:4c:12:51:
        01:57:c9:79:78:8c:1d:1f:6b:1a:2c:37:51:75:6d:18:
        d9:a3:b9:c0:43:e6:f7:b9:48:38:15:11:dc:ac:8d:78:
        17:3e:34:e0:05:da:f2:32:f7:4d:cc:d5:6b:dc:9a:eb:
        b3:8f:50:76:80:24:3f:b3:b4:99:19:67:68:2d:76:02:
        cb:bb:10:61:16:f8:aa:b4:e4:0e:c2:2a:38:88:55:16:
        39:95:ba:2e:7f:11:ae:08:ee:bd:dd:3e:a7:8f:02:e4:
        67:16:7e:e1:3a:59:21:f5:e1:5c:2e:e1:26:8f:99:8b:
        cf:b2:f5:46:db:74:55:f7:00:d1:0f:2e:f2:3f:39:33:
        5c:65:6a:e4:3d:61:59:e8:bf:af:63:fe:36:26:df:2f:
        96:d8:5f:0f:62:a5:ce:2a:ef:de:c3:57:44:3a:52:b4:
        b6:3d:78:06:66:7f:de:2d:69:cf:f4:f0:51:70:97:49:
        0b:a1:4a:62:f7:40:cb:a2:7c:9f:3a:1f:f1:0b:92:a8:
        22:0a:ca:55:32:d2:27:e0:0b:f4:b3:54:ff:d2:1b:25:
        66:73:fb:06:af:d2:fc:33:69:ca:5d:09:7e:e0:1e:ed
    Fingerprint (SHA-256):
        30:62:8F:2D:82:F4:E2:7A:8B:86:AF:88:79:52:94:F6:EA:AE:94:5F:5E:47:07:22:54:E7:AA:3A:60:C4:4E:4E
    Fingerprint (SHA1):
        07:26:7D:12:2D:95:98:17:00:92:69:95:EC:C0:25:28:98:E6:83:B3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14334: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14335: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124597 (0x310fe275)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:14 2017
            Not After : Tue Aug 23 12:48:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8b:06:a9:c1:b7:31:77:57:4c:72:75:86:ea:51:43:
                    61:00:11:84:dc:a3:41:e9:60:20:1d:df:e8:e7:81:f9:
                    f6:ed:1d:2b:79:da:87:21:18:d1:03:0a:a0:60:6c:87:
                    07:dc:8a:4c:52:31:c3:b2:00:1f:07:63:e2:71:6a:53:
                    e0:76:93:37:c3:38:34:73:d9:70:ba:84:45:15:9a:c9:
                    ad:5a:5f:55:92:73:b0:36:d0:7d:5d:f5:37:aa:83:94:
                    81:ba:07:e1:ff:00:00:36:ee:ca:5d:24:14:f5:06:5c:
                    b9:dc:38:ce:91:19:b6:ae:fb:45:1b:62:c7:4c:2b:3f:
                    51:d2:8f:c1:9e:37:e2:02:62:d4:9e:e2:a5:a4:4e:ac:
                    64:7a:ef:14:06:6f:45:71:f5:2e:d7:a8:c5:d9:43:d5:
                    f2:f8:e0:8b:b5:9e:7f:af:65:48:f1:53:e8:93:63:d6:
                    f8:f9:5f:5a:eb:da:4d:4e:46:18:d1:8a:da:91:4f:be:
                    c5:f9:33:c1:2b:90:a8:68:d5:a6:85:cf:de:a5:ac:02:
                    4e:93:74:cb:f2:22:60:a2:26:61:69:bc:3a:b1:b5:85:
                    1c:d9:70:a6:7f:f6:4e:55:7c:0a:07:6b:5e:30:71:38:
                    a3:c1:62:a7:50:1a:f3:5b:92:fb:6e:78:f7:ae:28:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:19:91:1b:0e:90:90:c3:a7:c7:3b:b4:b5:18:47:4c:
        5d:3c:77:09:62:4d:da:e1:13:8e:1a:08:7d:1e:73:fd:
        9f:9f:10:0f:c7:aa:97:c6:c9:e9:3f:ab:14:e7:62:11:
        13:e7:36:3a:12:a8:d6:14:61:d2:c9:bd:48:7d:de:8a:
        c2:0a:11:e4:5b:f7:03:16:4a:3e:dd:07:20:fc:04:95:
        53:01:dc:12:c3:bb:38:37:d3:cc:cc:2d:2e:63:7b:86:
        be:c7:9e:c4:b4:6a:9f:5d:51:59:68:4b:38:18:6d:8a:
        ff:e4:8c:64:fb:ef:c7:77:cb:25:73:0f:21:45:3c:22:
        99:ca:68:85:76:15:aa:62:dd:a0:f3:ee:c1:47:5c:28:
        23:35:7f:30:de:42:6d:d6:3d:c3:45:0c:46:72:09:b5:
        56:89:19:ef:19:b6:13:e7:58:4c:c1:a0:d3:92:01:f6:
        16:1f:04:f0:48:b2:2b:2e:fd:0f:47:48:bd:9c:4a:db:
        25:b1:1e:48:b7:b1:58:9a:40:40:05:b2:cf:3d:51:8d:
        d2:34:34:42:68:a6:ab:fa:e8:f3:a6:2a:b1:c2:86:82:
        bd:c6:b0:8d:9a:02:44:b7:6a:8c:7c:2e:ea:f0:7c:ee:
        86:10:d3:b8:8b:ce:54:90:34:10:5e:d6:62:4d:1c:b5
    Fingerprint (SHA-256):
        C4:1D:0D:CB:F4:F1:56:2F:FF:10:2B:7F:E5:23:CE:84:E3:13:E8:A6:7B:61:03:FC:39:CF:F2:10:73:69:09:AF
    Fingerprint (SHA1):
        D7:A1:EC:ED:EA:D2:95:9F:66:05:1A:C2:BD:7E:57:6E:5C:B6:BA:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14336: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14337: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124598 (0x310fe276)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:15 2017
            Not After : Tue Aug 23 12:48:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:84:f7:e6:e9:14:d8:fb:3f:81:0c:7a:fa:32:fc:53:
                    95:ad:70:2c:fe:e7:10:83:63:fb:ee:dc:2d:ca:e3:74:
                    ac:10:d1:e7:7a:d0:75:06:ac:8c:2b:b5:46:3f:b3:25:
                    ee:06:19:2c:3f:94:ce:6b:bf:e2:c2:80:fc:0e:28:7f:
                    66:72:c0:1e:a6:3e:63:a3:f9:10:70:63:24:4d:16:a5:
                    59:c2:06:f3:ee:84:86:fa:be:15:2b:78:f4:7e:f7:7a:
                    2f:01:2d:94:f8:fa:95:ad:bf:41:f6:fa:6e:ba:46:cb:
                    be:29:b0:93:bd:9f:e1:b2:64:fb:8d:91:90:33:19:11:
                    c9:4f:96:a1:9e:b0:b7:94:2f:9d:40:17:58:f9:94:1a:
                    80:c6:23:c3:80:c5:6a:77:b1:c4:f1:49:3f:36:aa:c7:
                    cd:a7:dd:e9:95:53:b1:a7:0c:8e:b3:92:81:d9:f7:aa:
                    de:9c:f5:05:6d:b9:25:b0:97:f6:b0:da:a2:30:6b:8d:
                    96:7a:08:aa:37:bc:73:ce:2f:5f:b3:44:d6:d1:99:04:
                    bb:db:dd:f0:1e:f4:da:ce:a0:c7:9c:bc:cf:6b:90:a4:
                    19:33:2b:f3:30:af:c6:65:16:25:2f:d5:8c:ae:35:fd:
                    e2:79:7e:45:5a:68:b4:59:f9:d4:1d:a7:9b:ca:f5:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:30:06:2e:b9:e7:68:80:17:09:28:45:f3:8e:1c:9b:
        2e:5b:f8:ed:30:d3:b8:51:42:34:1e:ea:a5:b3:0f:f5:
        05:32:fa:48:87:1b:12:73:91:c3:cd:c8:af:f5:71:31:
        4c:2b:f5:d2:06:00:8c:73:f3:6b:e8:0e:12:6f:69:cb:
        26:f2:d7:d6:e8:8e:b5:05:c7:8e:f4:a7:56:c9:50:ca:
        e4:0c:77:c5:a6:ff:9e:d9:f9:d4:86:07:b7:48:d8:9b:
        8f:cd:58:20:bd:dc:a5:39:de:24:72:21:9c:99:cc:17:
        f4:44:70:81:08:ca:c8:18:15:9c:86:4b:7c:87:05:67:
        e5:23:8b:72:38:dd:62:b0:31:a5:1e:a7:72:c9:cc:35:
        04:ad:e0:0d:9b:66:4a:3f:17:9e:c5:06:ab:d5:b5:ad:
        79:8f:ae:8b:6b:b2:d4:e3:70:02:26:b2:64:38:cb:c8:
        63:79:05:11:e6:d8:4a:2e:b9:64:8d:ee:94:0d:ee:bb:
        00:74:61:e2:f8:42:70:c3:c9:94:1a:49:47:e8:82:10:
        fa:e3:3c:93:3a:3d:5a:34:de:ae:d3:fb:6f:47:bc:d2:
        1d:37:b9:cf:0c:a6:e2:86:e0:6f:c5:da:5b:77:27:5a:
        95:02:41:59:05:e6:80:b2:79:29:45:1e:37:43:c9:85
    Fingerprint (SHA-256):
        04:51:CD:E5:7C:BE:12:96:73:BE:9B:A0:05:BA:7C:3A:D4:5A:31:BB:DF:D0:F8:F9:9C:A5:5A:28:C8:EB:0E:1B
    Fingerprint (SHA1):
        32:F5:DB:53:F1:5D:A1:E5:95:77:F0:DD:5C:61:E0:B4:D5:F5:C4:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14338: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14339: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124596 (0x310fe274)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:13 2017
            Not After : Tue Aug 23 12:48:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ae:3f:7b:c6:b7:2a:e6:79:38:15:c9:ae:99:1c:ab:
                    ef:36:dd:9f:40:aa:00:59:b4:11:67:29:8d:a3:b8:5b:
                    ae:a5:d7:c7:aa:d0:95:8b:b0:75:a4:f0:ce:06:be:48:
                    49:a7:1b:e1:82:bd:30:be:74:ff:4e:0a:ca:10:d9:e0:
                    74:0f:e5:2b:e0:9e:85:f5:19:44:65:ef:c3:d3:ca:4f:
                    d5:fe:8a:8a:c6:86:a5:20:e6:55:39:3f:ec:9b:ca:35:
                    d0:0a:32:7b:50:03:6e:80:24:d1:04:58:ca:26:58:be:
                    b2:f9:29:70:08:10:14:8e:cd:31:6d:9a:de:a2:7f:b7:
                    be:26:e6:4b:86:20:f3:15:ee:4b:e0:c4:4f:5b:59:60:
                    f0:57:f7:f8:a0:de:58:8b:c4:02:29:5d:ba:4f:f3:ed:
                    f0:81:83:4e:6c:3c:c0:3c:c8:04:50:c3:9a:5b:2d:5f:
                    fe:ce:19:f8:8a:b0:bb:53:c4:49:11:66:fd:ef:12:67:
                    85:75:92:51:f5:a4:b6:7e:00:12:42:39:1f:dd:0b:7f:
                    9f:e7:46:04:f6:4a:be:a2:84:96:46:f4:a7:0f:65:85:
                    10:83:3a:9a:8a:d3:61:13:5b:b9:1a:4b:88:0f:85:27:
                    93:e9:ec:aa:66:00:b8:90:c2:44:22:bf:fb:89:58:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:be:d5:4f:3a:7b:4d:ad:60:d8:de:50:fb:6e:c7:3a:
        ce:a0:11:fb:f8:e9:34:cb:19:9b:60:ee:52:4c:12:51:
        01:57:c9:79:78:8c:1d:1f:6b:1a:2c:37:51:75:6d:18:
        d9:a3:b9:c0:43:e6:f7:b9:48:38:15:11:dc:ac:8d:78:
        17:3e:34:e0:05:da:f2:32:f7:4d:cc:d5:6b:dc:9a:eb:
        b3:8f:50:76:80:24:3f:b3:b4:99:19:67:68:2d:76:02:
        cb:bb:10:61:16:f8:aa:b4:e4:0e:c2:2a:38:88:55:16:
        39:95:ba:2e:7f:11:ae:08:ee:bd:dd:3e:a7:8f:02:e4:
        67:16:7e:e1:3a:59:21:f5:e1:5c:2e:e1:26:8f:99:8b:
        cf:b2:f5:46:db:74:55:f7:00:d1:0f:2e:f2:3f:39:33:
        5c:65:6a:e4:3d:61:59:e8:bf:af:63:fe:36:26:df:2f:
        96:d8:5f:0f:62:a5:ce:2a:ef:de:c3:57:44:3a:52:b4:
        b6:3d:78:06:66:7f:de:2d:69:cf:f4:f0:51:70:97:49:
        0b:a1:4a:62:f7:40:cb:a2:7c:9f:3a:1f:f1:0b:92:a8:
        22:0a:ca:55:32:d2:27:e0:0b:f4:b3:54:ff:d2:1b:25:
        66:73:fb:06:af:d2:fc:33:69:ca:5d:09:7e:e0:1e:ed
    Fingerprint (SHA-256):
        30:62:8F:2D:82:F4:E2:7A:8B:86:AF:88:79:52:94:F6:EA:AE:94:5F:5E:47:07:22:54:E7:AA:3A:60:C4:4E:4E
    Fingerprint (SHA1):
        07:26:7D:12:2D:95:98:17:00:92:69:95:EC:C0:25:28:98:E6:83:B3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14340: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124596 (0x310fe274)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:13 2017
            Not After : Tue Aug 23 12:48:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ae:3f:7b:c6:b7:2a:e6:79:38:15:c9:ae:99:1c:ab:
                    ef:36:dd:9f:40:aa:00:59:b4:11:67:29:8d:a3:b8:5b:
                    ae:a5:d7:c7:aa:d0:95:8b:b0:75:a4:f0:ce:06:be:48:
                    49:a7:1b:e1:82:bd:30:be:74:ff:4e:0a:ca:10:d9:e0:
                    74:0f:e5:2b:e0:9e:85:f5:19:44:65:ef:c3:d3:ca:4f:
                    d5:fe:8a:8a:c6:86:a5:20:e6:55:39:3f:ec:9b:ca:35:
                    d0:0a:32:7b:50:03:6e:80:24:d1:04:58:ca:26:58:be:
                    b2:f9:29:70:08:10:14:8e:cd:31:6d:9a:de:a2:7f:b7:
                    be:26:e6:4b:86:20:f3:15:ee:4b:e0:c4:4f:5b:59:60:
                    f0:57:f7:f8:a0:de:58:8b:c4:02:29:5d:ba:4f:f3:ed:
                    f0:81:83:4e:6c:3c:c0:3c:c8:04:50:c3:9a:5b:2d:5f:
                    fe:ce:19:f8:8a:b0:bb:53:c4:49:11:66:fd:ef:12:67:
                    85:75:92:51:f5:a4:b6:7e:00:12:42:39:1f:dd:0b:7f:
                    9f:e7:46:04:f6:4a:be:a2:84:96:46:f4:a7:0f:65:85:
                    10:83:3a:9a:8a:d3:61:13:5b:b9:1a:4b:88:0f:85:27:
                    93:e9:ec:aa:66:00:b8:90:c2:44:22:bf:fb:89:58:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:be:d5:4f:3a:7b:4d:ad:60:d8:de:50:fb:6e:c7:3a:
        ce:a0:11:fb:f8:e9:34:cb:19:9b:60:ee:52:4c:12:51:
        01:57:c9:79:78:8c:1d:1f:6b:1a:2c:37:51:75:6d:18:
        d9:a3:b9:c0:43:e6:f7:b9:48:38:15:11:dc:ac:8d:78:
        17:3e:34:e0:05:da:f2:32:f7:4d:cc:d5:6b:dc:9a:eb:
        b3:8f:50:76:80:24:3f:b3:b4:99:19:67:68:2d:76:02:
        cb:bb:10:61:16:f8:aa:b4:e4:0e:c2:2a:38:88:55:16:
        39:95:ba:2e:7f:11:ae:08:ee:bd:dd:3e:a7:8f:02:e4:
        67:16:7e:e1:3a:59:21:f5:e1:5c:2e:e1:26:8f:99:8b:
        cf:b2:f5:46:db:74:55:f7:00:d1:0f:2e:f2:3f:39:33:
        5c:65:6a:e4:3d:61:59:e8:bf:af:63:fe:36:26:df:2f:
        96:d8:5f:0f:62:a5:ce:2a:ef:de:c3:57:44:3a:52:b4:
        b6:3d:78:06:66:7f:de:2d:69:cf:f4:f0:51:70:97:49:
        0b:a1:4a:62:f7:40:cb:a2:7c:9f:3a:1f:f1:0b:92:a8:
        22:0a:ca:55:32:d2:27:e0:0b:f4:b3:54:ff:d2:1b:25:
        66:73:fb:06:af:d2:fc:33:69:ca:5d:09:7e:e0:1e:ed
    Fingerprint (SHA-256):
        30:62:8F:2D:82:F4:E2:7A:8B:86:AF:88:79:52:94:F6:EA:AE:94:5F:5E:47:07:22:54:E7:AA:3A:60:C4:4E:4E
    Fingerprint (SHA1):
        07:26:7D:12:2D:95:98:17:00:92:69:95:EC:C0:25:28:98:E6:83:B3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14341: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124597 (0x310fe275)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:14 2017
            Not After : Tue Aug 23 12:48:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8b:06:a9:c1:b7:31:77:57:4c:72:75:86:ea:51:43:
                    61:00:11:84:dc:a3:41:e9:60:20:1d:df:e8:e7:81:f9:
                    f6:ed:1d:2b:79:da:87:21:18:d1:03:0a:a0:60:6c:87:
                    07:dc:8a:4c:52:31:c3:b2:00:1f:07:63:e2:71:6a:53:
                    e0:76:93:37:c3:38:34:73:d9:70:ba:84:45:15:9a:c9:
                    ad:5a:5f:55:92:73:b0:36:d0:7d:5d:f5:37:aa:83:94:
                    81:ba:07:e1:ff:00:00:36:ee:ca:5d:24:14:f5:06:5c:
                    b9:dc:38:ce:91:19:b6:ae:fb:45:1b:62:c7:4c:2b:3f:
                    51:d2:8f:c1:9e:37:e2:02:62:d4:9e:e2:a5:a4:4e:ac:
                    64:7a:ef:14:06:6f:45:71:f5:2e:d7:a8:c5:d9:43:d5:
                    f2:f8:e0:8b:b5:9e:7f:af:65:48:f1:53:e8:93:63:d6:
                    f8:f9:5f:5a:eb:da:4d:4e:46:18:d1:8a:da:91:4f:be:
                    c5:f9:33:c1:2b:90:a8:68:d5:a6:85:cf:de:a5:ac:02:
                    4e:93:74:cb:f2:22:60:a2:26:61:69:bc:3a:b1:b5:85:
                    1c:d9:70:a6:7f:f6:4e:55:7c:0a:07:6b:5e:30:71:38:
                    a3:c1:62:a7:50:1a:f3:5b:92:fb:6e:78:f7:ae:28:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:19:91:1b:0e:90:90:c3:a7:c7:3b:b4:b5:18:47:4c:
        5d:3c:77:09:62:4d:da:e1:13:8e:1a:08:7d:1e:73:fd:
        9f:9f:10:0f:c7:aa:97:c6:c9:e9:3f:ab:14:e7:62:11:
        13:e7:36:3a:12:a8:d6:14:61:d2:c9:bd:48:7d:de:8a:
        c2:0a:11:e4:5b:f7:03:16:4a:3e:dd:07:20:fc:04:95:
        53:01:dc:12:c3:bb:38:37:d3:cc:cc:2d:2e:63:7b:86:
        be:c7:9e:c4:b4:6a:9f:5d:51:59:68:4b:38:18:6d:8a:
        ff:e4:8c:64:fb:ef:c7:77:cb:25:73:0f:21:45:3c:22:
        99:ca:68:85:76:15:aa:62:dd:a0:f3:ee:c1:47:5c:28:
        23:35:7f:30:de:42:6d:d6:3d:c3:45:0c:46:72:09:b5:
        56:89:19:ef:19:b6:13:e7:58:4c:c1:a0:d3:92:01:f6:
        16:1f:04:f0:48:b2:2b:2e:fd:0f:47:48:bd:9c:4a:db:
        25:b1:1e:48:b7:b1:58:9a:40:40:05:b2:cf:3d:51:8d:
        d2:34:34:42:68:a6:ab:fa:e8:f3:a6:2a:b1:c2:86:82:
        bd:c6:b0:8d:9a:02:44:b7:6a:8c:7c:2e:ea:f0:7c:ee:
        86:10:d3:b8:8b:ce:54:90:34:10:5e:d6:62:4d:1c:b5
    Fingerprint (SHA-256):
        C4:1D:0D:CB:F4:F1:56:2F:FF:10:2B:7F:E5:23:CE:84:E3:13:E8:A6:7B:61:03:FC:39:CF:F2:10:73:69:09:AF
    Fingerprint (SHA1):
        D7:A1:EC:ED:EA:D2:95:9F:66:05:1A:C2:BD:7E:57:6E:5C:B6:BA:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14342: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124597 (0x310fe275)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:14 2017
            Not After : Tue Aug 23 12:48:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8b:06:a9:c1:b7:31:77:57:4c:72:75:86:ea:51:43:
                    61:00:11:84:dc:a3:41:e9:60:20:1d:df:e8:e7:81:f9:
                    f6:ed:1d:2b:79:da:87:21:18:d1:03:0a:a0:60:6c:87:
                    07:dc:8a:4c:52:31:c3:b2:00:1f:07:63:e2:71:6a:53:
                    e0:76:93:37:c3:38:34:73:d9:70:ba:84:45:15:9a:c9:
                    ad:5a:5f:55:92:73:b0:36:d0:7d:5d:f5:37:aa:83:94:
                    81:ba:07:e1:ff:00:00:36:ee:ca:5d:24:14:f5:06:5c:
                    b9:dc:38:ce:91:19:b6:ae:fb:45:1b:62:c7:4c:2b:3f:
                    51:d2:8f:c1:9e:37:e2:02:62:d4:9e:e2:a5:a4:4e:ac:
                    64:7a:ef:14:06:6f:45:71:f5:2e:d7:a8:c5:d9:43:d5:
                    f2:f8:e0:8b:b5:9e:7f:af:65:48:f1:53:e8:93:63:d6:
                    f8:f9:5f:5a:eb:da:4d:4e:46:18:d1:8a:da:91:4f:be:
                    c5:f9:33:c1:2b:90:a8:68:d5:a6:85:cf:de:a5:ac:02:
                    4e:93:74:cb:f2:22:60:a2:26:61:69:bc:3a:b1:b5:85:
                    1c:d9:70:a6:7f:f6:4e:55:7c:0a:07:6b:5e:30:71:38:
                    a3:c1:62:a7:50:1a:f3:5b:92:fb:6e:78:f7:ae:28:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:19:91:1b:0e:90:90:c3:a7:c7:3b:b4:b5:18:47:4c:
        5d:3c:77:09:62:4d:da:e1:13:8e:1a:08:7d:1e:73:fd:
        9f:9f:10:0f:c7:aa:97:c6:c9:e9:3f:ab:14:e7:62:11:
        13:e7:36:3a:12:a8:d6:14:61:d2:c9:bd:48:7d:de:8a:
        c2:0a:11:e4:5b:f7:03:16:4a:3e:dd:07:20:fc:04:95:
        53:01:dc:12:c3:bb:38:37:d3:cc:cc:2d:2e:63:7b:86:
        be:c7:9e:c4:b4:6a:9f:5d:51:59:68:4b:38:18:6d:8a:
        ff:e4:8c:64:fb:ef:c7:77:cb:25:73:0f:21:45:3c:22:
        99:ca:68:85:76:15:aa:62:dd:a0:f3:ee:c1:47:5c:28:
        23:35:7f:30:de:42:6d:d6:3d:c3:45:0c:46:72:09:b5:
        56:89:19:ef:19:b6:13:e7:58:4c:c1:a0:d3:92:01:f6:
        16:1f:04:f0:48:b2:2b:2e:fd:0f:47:48:bd:9c:4a:db:
        25:b1:1e:48:b7:b1:58:9a:40:40:05:b2:cf:3d:51:8d:
        d2:34:34:42:68:a6:ab:fa:e8:f3:a6:2a:b1:c2:86:82:
        bd:c6:b0:8d:9a:02:44:b7:6a:8c:7c:2e:ea:f0:7c:ee:
        86:10:d3:b8:8b:ce:54:90:34:10:5e:d6:62:4d:1c:b5
    Fingerprint (SHA-256):
        C4:1D:0D:CB:F4:F1:56:2F:FF:10:2B:7F:E5:23:CE:84:E3:13:E8:A6:7B:61:03:FC:39:CF:F2:10:73:69:09:AF
    Fingerprint (SHA1):
        D7:A1:EC:ED:EA:D2:95:9F:66:05:1A:C2:BD:7E:57:6E:5C:B6:BA:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14343: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124598 (0x310fe276)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:15 2017
            Not After : Tue Aug 23 12:48:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:84:f7:e6:e9:14:d8:fb:3f:81:0c:7a:fa:32:fc:53:
                    95:ad:70:2c:fe:e7:10:83:63:fb:ee:dc:2d:ca:e3:74:
                    ac:10:d1:e7:7a:d0:75:06:ac:8c:2b:b5:46:3f:b3:25:
                    ee:06:19:2c:3f:94:ce:6b:bf:e2:c2:80:fc:0e:28:7f:
                    66:72:c0:1e:a6:3e:63:a3:f9:10:70:63:24:4d:16:a5:
                    59:c2:06:f3:ee:84:86:fa:be:15:2b:78:f4:7e:f7:7a:
                    2f:01:2d:94:f8:fa:95:ad:bf:41:f6:fa:6e:ba:46:cb:
                    be:29:b0:93:bd:9f:e1:b2:64:fb:8d:91:90:33:19:11:
                    c9:4f:96:a1:9e:b0:b7:94:2f:9d:40:17:58:f9:94:1a:
                    80:c6:23:c3:80:c5:6a:77:b1:c4:f1:49:3f:36:aa:c7:
                    cd:a7:dd:e9:95:53:b1:a7:0c:8e:b3:92:81:d9:f7:aa:
                    de:9c:f5:05:6d:b9:25:b0:97:f6:b0:da:a2:30:6b:8d:
                    96:7a:08:aa:37:bc:73:ce:2f:5f:b3:44:d6:d1:99:04:
                    bb:db:dd:f0:1e:f4:da:ce:a0:c7:9c:bc:cf:6b:90:a4:
                    19:33:2b:f3:30:af:c6:65:16:25:2f:d5:8c:ae:35:fd:
                    e2:79:7e:45:5a:68:b4:59:f9:d4:1d:a7:9b:ca:f5:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:30:06:2e:b9:e7:68:80:17:09:28:45:f3:8e:1c:9b:
        2e:5b:f8:ed:30:d3:b8:51:42:34:1e:ea:a5:b3:0f:f5:
        05:32:fa:48:87:1b:12:73:91:c3:cd:c8:af:f5:71:31:
        4c:2b:f5:d2:06:00:8c:73:f3:6b:e8:0e:12:6f:69:cb:
        26:f2:d7:d6:e8:8e:b5:05:c7:8e:f4:a7:56:c9:50:ca:
        e4:0c:77:c5:a6:ff:9e:d9:f9:d4:86:07:b7:48:d8:9b:
        8f:cd:58:20:bd:dc:a5:39:de:24:72:21:9c:99:cc:17:
        f4:44:70:81:08:ca:c8:18:15:9c:86:4b:7c:87:05:67:
        e5:23:8b:72:38:dd:62:b0:31:a5:1e:a7:72:c9:cc:35:
        04:ad:e0:0d:9b:66:4a:3f:17:9e:c5:06:ab:d5:b5:ad:
        79:8f:ae:8b:6b:b2:d4:e3:70:02:26:b2:64:38:cb:c8:
        63:79:05:11:e6:d8:4a:2e:b9:64:8d:ee:94:0d:ee:bb:
        00:74:61:e2:f8:42:70:c3:c9:94:1a:49:47:e8:82:10:
        fa:e3:3c:93:3a:3d:5a:34:de:ae:d3:fb:6f:47:bc:d2:
        1d:37:b9:cf:0c:a6:e2:86:e0:6f:c5:da:5b:77:27:5a:
        95:02:41:59:05:e6:80:b2:79:29:45:1e:37:43:c9:85
    Fingerprint (SHA-256):
        04:51:CD:E5:7C:BE:12:96:73:BE:9B:A0:05:BA:7C:3A:D4:5A:31:BB:DF:D0:F8:F9:9C:A5:5A:28:C8:EB:0E:1B
    Fingerprint (SHA1):
        32:F5:DB:53:F1:5D:A1:E5:95:77:F0:DD:5C:61:E0:B4:D5:F5:C4:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14344: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124598 (0x310fe276)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:15 2017
            Not After : Tue Aug 23 12:48:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:84:f7:e6:e9:14:d8:fb:3f:81:0c:7a:fa:32:fc:53:
                    95:ad:70:2c:fe:e7:10:83:63:fb:ee:dc:2d:ca:e3:74:
                    ac:10:d1:e7:7a:d0:75:06:ac:8c:2b:b5:46:3f:b3:25:
                    ee:06:19:2c:3f:94:ce:6b:bf:e2:c2:80:fc:0e:28:7f:
                    66:72:c0:1e:a6:3e:63:a3:f9:10:70:63:24:4d:16:a5:
                    59:c2:06:f3:ee:84:86:fa:be:15:2b:78:f4:7e:f7:7a:
                    2f:01:2d:94:f8:fa:95:ad:bf:41:f6:fa:6e:ba:46:cb:
                    be:29:b0:93:bd:9f:e1:b2:64:fb:8d:91:90:33:19:11:
                    c9:4f:96:a1:9e:b0:b7:94:2f:9d:40:17:58:f9:94:1a:
                    80:c6:23:c3:80:c5:6a:77:b1:c4:f1:49:3f:36:aa:c7:
                    cd:a7:dd:e9:95:53:b1:a7:0c:8e:b3:92:81:d9:f7:aa:
                    de:9c:f5:05:6d:b9:25:b0:97:f6:b0:da:a2:30:6b:8d:
                    96:7a:08:aa:37:bc:73:ce:2f:5f:b3:44:d6:d1:99:04:
                    bb:db:dd:f0:1e:f4:da:ce:a0:c7:9c:bc:cf:6b:90:a4:
                    19:33:2b:f3:30:af:c6:65:16:25:2f:d5:8c:ae:35:fd:
                    e2:79:7e:45:5a:68:b4:59:f9:d4:1d:a7:9b:ca:f5:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:30:06:2e:b9:e7:68:80:17:09:28:45:f3:8e:1c:9b:
        2e:5b:f8:ed:30:d3:b8:51:42:34:1e:ea:a5:b3:0f:f5:
        05:32:fa:48:87:1b:12:73:91:c3:cd:c8:af:f5:71:31:
        4c:2b:f5:d2:06:00:8c:73:f3:6b:e8:0e:12:6f:69:cb:
        26:f2:d7:d6:e8:8e:b5:05:c7:8e:f4:a7:56:c9:50:ca:
        e4:0c:77:c5:a6:ff:9e:d9:f9:d4:86:07:b7:48:d8:9b:
        8f:cd:58:20:bd:dc:a5:39:de:24:72:21:9c:99:cc:17:
        f4:44:70:81:08:ca:c8:18:15:9c:86:4b:7c:87:05:67:
        e5:23:8b:72:38:dd:62:b0:31:a5:1e:a7:72:c9:cc:35:
        04:ad:e0:0d:9b:66:4a:3f:17:9e:c5:06:ab:d5:b5:ad:
        79:8f:ae:8b:6b:b2:d4:e3:70:02:26:b2:64:38:cb:c8:
        63:79:05:11:e6:d8:4a:2e:b9:64:8d:ee:94:0d:ee:bb:
        00:74:61:e2:f8:42:70:c3:c9:94:1a:49:47:e8:82:10:
        fa:e3:3c:93:3a:3d:5a:34:de:ae:d3:fb:6f:47:bc:d2:
        1d:37:b9:cf:0c:a6:e2:86:e0:6f:c5:da:5b:77:27:5a:
        95:02:41:59:05:e6:80:b2:79:29:45:1e:37:43:c9:85
    Fingerprint (SHA-256):
        04:51:CD:E5:7C:BE:12:96:73:BE:9B:A0:05:BA:7C:3A:D4:5A:31:BB:DF:D0:F8:F9:9C:A5:5A:28:C8:EB:0E:1B
    Fingerprint (SHA1):
        32:F5:DB:53:F1:5D:A1:E5:95:77:F0:DD:5C:61:E0:B4:D5:F5:C4:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14345: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14346: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124601 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14347: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14348: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14349: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14350: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823124602   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14351: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14352: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14353: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14354: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124603   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14355: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14356: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14357: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14358: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 823124604   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14359: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14360: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #14361: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14362: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 823124605   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14363: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14364: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #14365: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14366: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 823124606   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14367: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14368: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #14369: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14370: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 823124607   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14371: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14372: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14373: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #14374: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #14375: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14376: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #14377: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124601 (0x310fe279)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:20 2017
            Not After : Tue Aug 23 12:48:20 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:a9:ab:49:b6:0d:19:0e:e4:a6:73:90:6c:51:bc:88:
                    08:b4:f9:1c:fb:ed:dc:12:7a:f7:d9:c6:76:14:ee:02:
                    2b:7e:a9:66:80:1e:39:6d:0c:aa:f1:d6:d6:59:82:cc:
                    c4:cb:16:c3:c1:55:c7:a4:41:81:30:7d:1b:47:d5:1f:
                    18:a5:c2:63:6a:37:f4:5d:35:d3:56:be:c6:98:ed:f6:
                    20:50:d2:77:4d:1a:ad:20:5a:ec:ca:03:71:67:11:d8:
                    3a:57:9e:18:6d:24:57:e5:fd:d8:98:e4:43:f6:9e:1d:
                    7b:9b:d4:3b:4f:5b:fe:62:0b:64:ee:a2:7d:9f:45:9c:
                    3a:eb:3c:fc:a8:77:1e:3e:88:2c:cd:14:ee:ea:94:57:
                    2c:b2:92:a2:ae:ad:bd:af:3e:7f:c9:f9:e6:e7:14:65:
                    11:3e:b5:2f:b2:be:ad:9a:47:23:2a:d1:f0:84:3b:12:
                    2c:cc:17:d9:70:d6:31:90:f6:77:e7:8d:65:a7:51:97:
                    b1:76:22:f5:e9:fa:0b:a1:c6:2c:3f:f9:af:e0:72:17:
                    fd:da:88:91:aa:de:2f:9b:51:ca:6e:03:6a:f2:1b:ea:
                    02:99:64:b2:3b:80:bf:f3:c4:63:6e:97:64:d5:2a:31:
                    c3:d4:6f:f5:40:ba:05:8c:72:b0:8d:67:a3:ac:22:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:18:64:41:eb:16:2f:98:8a:9b:6b:cd:ec:12:11:51:
        7b:41:1b:73:37:a3:f2:af:de:b8:79:4b:4d:80:f4:bb:
        1d:19:7d:e5:58:e2:0e:a6:5f:8e:97:46:14:23:77:3d:
        03:66:97:2d:5f:cf:19:04:2a:57:35:e8:10:c5:2d:51:
        81:ca:1a:1f:67:ea:34:bd:a4:36:a5:e7:a5:5e:23:0e:
        c0:55:f8:3e:e6:7d:ff:41:ed:a8:2d:38:97:25:e5:79:
        03:ef:df:a2:1f:f4:72:f4:42:50:57:d8:93:25:94:e3:
        62:c5:35:59:1c:52:99:6a:40:30:2c:c1:c9:84:0e:46:
        1b:56:a8:02:fc:3f:a8:55:3b:de:f3:95:08:7c:9b:49:
        47:48:be:7b:f7:76:7f:22:0f:04:2b:1b:77:c6:f1:41:
        05:73:ae:ab:c7:24:6f:6a:74:35:a5:9f:82:50:ad:b1:
        27:20:8b:ba:e9:c3:71:20:09:d6:03:41:37:fe:83:c4:
        f4:09:92:ce:67:bf:a7:1c:6a:d3:d3:9d:d0:9e:03:86:
        f5:25:a0:77:42:8a:41:54:0d:f4:c4:e6:3a:49:86:53:
        dc:9a:d9:a3:62:c4:1c:51:16:90:73:bf:c9:3e:b7:5b:
        05:81:16:25:e4:b3:2f:25:ec:ef:25:70:c8:19:62:d0
    Fingerprint (SHA-256):
        33:C9:9C:55:4F:0A:FB:14:0E:C2:58:F5:FE:B0:E9:92:1A:76:70:ED:44:4E:B7:03:E2:93:76:BD:BA:9B:3E:94
    Fingerprint (SHA1):
        25:A6:A4:31:26:58:05:D6:5A:04:4A:FD:AC:3D:FF:34:59:74:A5:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14378: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14379: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14380: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14381: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124601 (0x310fe279)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:20 2017
            Not After : Tue Aug 23 12:48:20 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:a9:ab:49:b6:0d:19:0e:e4:a6:73:90:6c:51:bc:88:
                    08:b4:f9:1c:fb:ed:dc:12:7a:f7:d9:c6:76:14:ee:02:
                    2b:7e:a9:66:80:1e:39:6d:0c:aa:f1:d6:d6:59:82:cc:
                    c4:cb:16:c3:c1:55:c7:a4:41:81:30:7d:1b:47:d5:1f:
                    18:a5:c2:63:6a:37:f4:5d:35:d3:56:be:c6:98:ed:f6:
                    20:50:d2:77:4d:1a:ad:20:5a:ec:ca:03:71:67:11:d8:
                    3a:57:9e:18:6d:24:57:e5:fd:d8:98:e4:43:f6:9e:1d:
                    7b:9b:d4:3b:4f:5b:fe:62:0b:64:ee:a2:7d:9f:45:9c:
                    3a:eb:3c:fc:a8:77:1e:3e:88:2c:cd:14:ee:ea:94:57:
                    2c:b2:92:a2:ae:ad:bd:af:3e:7f:c9:f9:e6:e7:14:65:
                    11:3e:b5:2f:b2:be:ad:9a:47:23:2a:d1:f0:84:3b:12:
                    2c:cc:17:d9:70:d6:31:90:f6:77:e7:8d:65:a7:51:97:
                    b1:76:22:f5:e9:fa:0b:a1:c6:2c:3f:f9:af:e0:72:17:
                    fd:da:88:91:aa:de:2f:9b:51:ca:6e:03:6a:f2:1b:ea:
                    02:99:64:b2:3b:80:bf:f3:c4:63:6e:97:64:d5:2a:31:
                    c3:d4:6f:f5:40:ba:05:8c:72:b0:8d:67:a3:ac:22:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:18:64:41:eb:16:2f:98:8a:9b:6b:cd:ec:12:11:51:
        7b:41:1b:73:37:a3:f2:af:de:b8:79:4b:4d:80:f4:bb:
        1d:19:7d:e5:58:e2:0e:a6:5f:8e:97:46:14:23:77:3d:
        03:66:97:2d:5f:cf:19:04:2a:57:35:e8:10:c5:2d:51:
        81:ca:1a:1f:67:ea:34:bd:a4:36:a5:e7:a5:5e:23:0e:
        c0:55:f8:3e:e6:7d:ff:41:ed:a8:2d:38:97:25:e5:79:
        03:ef:df:a2:1f:f4:72:f4:42:50:57:d8:93:25:94:e3:
        62:c5:35:59:1c:52:99:6a:40:30:2c:c1:c9:84:0e:46:
        1b:56:a8:02:fc:3f:a8:55:3b:de:f3:95:08:7c:9b:49:
        47:48:be:7b:f7:76:7f:22:0f:04:2b:1b:77:c6:f1:41:
        05:73:ae:ab:c7:24:6f:6a:74:35:a5:9f:82:50:ad:b1:
        27:20:8b:ba:e9:c3:71:20:09:d6:03:41:37:fe:83:c4:
        f4:09:92:ce:67:bf:a7:1c:6a:d3:d3:9d:d0:9e:03:86:
        f5:25:a0:77:42:8a:41:54:0d:f4:c4:e6:3a:49:86:53:
        dc:9a:d9:a3:62:c4:1c:51:16:90:73:bf:c9:3e:b7:5b:
        05:81:16:25:e4:b3:2f:25:ec:ef:25:70:c8:19:62:d0
    Fingerprint (SHA-256):
        33:C9:9C:55:4F:0A:FB:14:0E:C2:58:F5:FE:B0:E9:92:1A:76:70:ED:44:4E:B7:03:E2:93:76:BD:BA:9B:3E:94
    Fingerprint (SHA1):
        25:A6:A4:31:26:58:05:D6:5A:04:4A:FD:AC:3D:FF:34:59:74:A5:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14382: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14383: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14384: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124608 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14385: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14386: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14387: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14388: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823124609   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14389: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14390: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #14391: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14392: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 823124610   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14393: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14394: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #14395: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14396: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 823124611   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14397: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14398: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14399: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14400: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 823124612   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14401: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14402: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #14403: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14404: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 823124613   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14405: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14406: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #14407: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14408: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 823124614   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14409: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14410: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14411: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14412: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 823124615   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14413: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14414: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #14415: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14416: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 823124616   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14417: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14418: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #14419: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14420: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 823124617   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14421: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14422: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #14423: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14424: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 823124618   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14425: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14426: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #14427: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14428: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 823124619   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14429: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14430: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #14431: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14432: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 823124620   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14433: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14434: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #14435: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14436: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 823124621   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14437: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14438: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #14439: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14440: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 823124622   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14441: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14442: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #14443: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14444: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 823124623   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14445: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14446: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #14447: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14448: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 823124624   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14449: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14450: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #14451: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14452: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 823124625   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14453: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14454: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #14455: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14456: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 823124626   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14457: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14458: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #14459: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14460: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 823124627   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14461: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14462: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #14463: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14464: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 823124628   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14465: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14466: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #14467: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14468: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 823124629   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14469: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14470: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #14471: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14472: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 823124630   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14473: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14474: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #14475: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14476: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 823124631   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14477: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14478: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #14479: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14480: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 823124632   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14481: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14482: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #14483: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14484: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 823124633   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14485: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14486: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #14487: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14488: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 823124634   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14489: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14490: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #14491: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14492: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 823124635   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14493: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14494: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #14495: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14496: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 823124636   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14497: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14498: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #14499: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14500: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 823124637   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14501: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14502: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14503: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14504: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14505: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14506: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14507: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14508: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14509: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14510: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14511: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14512: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14513: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14514: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14515: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14516: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14517: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14518: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14519: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14520: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14521: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14522: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14523: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14524: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14525: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124608 (0x310fe280)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:48:28 2017
            Not After : Tue Aug 23 12:48:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:fc:7e:f2:40:55:30:06:44:2f:19:f0:8a:52:40:dc:
                    25:56:c8:02:8b:ea:99:93:d5:ac:97:4a:36:54:ae:ce:
                    3c:13:f1:01:fb:ea:2a:12:e2:be:f8:46:21:f4:ea:64:
                    88:a5:93:b3:f8:7f:61:ea:20:54:1f:3d:4c:1a:f9:25:
                    98:f4:16:31:fb:50:e7:bc:dd:e4:df:dc:72:54:d4:26:
                    f8:45:78:e4:4a:d3:09:cd:6a:d1:ce:d0:5a:4f:99:49:
                    c4:90:b9:d4:e5:cc:39:87:bd:17:30:e6:04:1f:04:9d:
                    0d:16:eb:f3:8c:6d:9b:45:fe:2e:eb:70:9c:f7:35:9c:
                    8d:d2:91:78:84:9f:a3:f7:7e:03:85:53:61:71:7e:f8:
                    4f:0d:f0:e2:e3:8d:16:76:08:6d:7b:b2:18:f1:ab:f8:
                    39:b9:b9:2d:af:09:33:a3:0e:dd:35:a0:ee:ea:40:c8:
                    bc:a2:83:0f:2d:d9:2f:0c:02:e0:60:1b:b3:bb:27:3b:
                    20:34:21:63:6b:64:41:09:2e:44:8c:99:ca:89:b5:b7:
                    6e:e3:98:72:58:98:8d:9a:86:10:6d:90:19:d6:b9:7c:
                    aa:8c:20:a5:2e:01:fa:a4:73:50:54:6a:23:3f:f6:9d:
                    12:1c:63:ee:6b:09:ce:44:a4:54:58:17:82:3b:31:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:ae:cb:54:58:3d:fe:68:18:e4:e7:99:b4:fa:c7:ff:
        53:63:28:a1:27:3d:b1:1b:66:14:e8:3b:55:80:ee:c0:
        ad:9b:ee:7c:31:24:ef:53:07:31:6e:64:f4:e6:6e:ce:
        9a:f5:fc:bb:eb:36:2f:23:9e:c8:24:ce:97:79:85:1b:
        c2:76:c8:87:b2:67:33:5d:8b:46:d2:13:70:66:ad:c2:
        b1:89:d3:33:b1:9e:9e:df:1d:74:5e:8f:26:63:eb:aa:
        72:ea:ce:19:07:a9:25:77:f0:bd:70:8d:af:4b:83:7a:
        67:2e:af:54:6f:00:67:c1:09:32:e2:a8:24:28:b4:91:
        a8:95:a1:34:77:9f:66:e7:c2:f6:d5:72:f5:bb:4a:e6:
        52:7a:58:85:91:a8:79:a4:cd:3d:8c:8b:a7:02:58:1c:
        03:d9:0a:6c:b6:4b:c7:98:ac:51:59:1b:ec:a2:2c:26:
        08:52:9a:b4:89:08:7c:60:ff:3f:87:04:2e:7d:e4:54:
        45:cc:03:6e:af:98:6a:f6:1b:ef:4e:55:3d:a1:fd:e3:
        78:41:e9:01:20:b5:e9:39:32:a7:d0:f8:b1:58:16:50:
        bb:ce:7e:4e:5c:89:0b:18:6a:e6:80:ab:3e:05:79:9f:
        d9:a4:17:9c:a6:6b:83:76:5a:0c:ef:9c:92:c2:f1:ab
    Fingerprint (SHA-256):
        9F:B5:2B:5E:79:4B:BF:AF:AA:6F:12:2F:E2:7A:07:FB:7A:F0:67:F1:E9:03:2B:9A:4C:70:2A:D4:48:0B:E9:A2
    Fingerprint (SHA1):
        91:66:A9:67:DD:AB:5F:30:00:F7:78:75:FA:7C:57:D3:E2:6F:04:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14526: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14527: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14528: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124638 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14529: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14530: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #14531: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14532: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 823124639   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14533: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14534: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #14535: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14536: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 823124640   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14537: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14538: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #14539: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14540: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 823124641   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14541: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14542: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #14543: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14544: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 823124642   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14545: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14546: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #14547: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14548: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 823124643   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14549: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14550: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #14551: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14552: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 823124644   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14553: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14554: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14555: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124638 (0x310fe29e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:03 2017
            Not After : Tue Aug 23 12:49:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:d4:8f:d5:eb:6a:8d:24:a3:1c:93:4b:b5:91:c1:9c:
                    2e:4f:3c:e5:67:4c:ad:4e:55:d1:f9:c9:30:98:e1:72:
                    ba:c9:bf:28:38:a7:0f:61:ad:ce:90:ba:86:0b:67:c7:
                    20:63:3e:2b:bb:08:c4:bf:45:61:10:1c:0a:d3:02:f2:
                    93:f6:ab:e4:5e:a3:d4:b7:a1:e9:37:4d:61:a5:02:02:
                    68:e2:c2:0b:ce:f3:02:24:b8:7a:d7:67:41:50:0b:34:
                    f5:9f:d6:a2:20:48:a6:8d:ae:85:81:e2:95:50:fd:6d:
                    8c:a9:6b:b9:e8:81:7a:a7:6a:af:b2:fb:dc:fe:37:e9:
                    8f:42:d7:1a:48:41:49:c6:6f:59:16:be:1b:0d:22:5b:
                    90:08:96:7f:2c:62:bf:1f:f4:ce:61:8d:75:17:75:fd:
                    05:8d:92:87:2c:ee:de:02:1e:41:92:06:33:8c:d7:20:
                    c1:9f:1a:09:8e:76:82:e2:1c:72:3d:26:3e:13:42:a8:
                    cd:29:ce:12:56:f8:82:4f:f2:24:c5:fa:21:ac:8d:1c:
                    6e:1e:51:af:0f:4a:26:27:84:b7:ca:4f:f2:18:b1:8c:
                    c5:57:d9:5d:5f:28:81:7b:a1:8c:4b:85:ee:d9:f5:b2:
                    c9:79:d0:bd:7c:64:9c:77:c7:f0:d0:8c:fd:3d:f5:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:89:f1:e0:53:d1:1a:96:12:cf:ab:ba:c6:b5:14:05:
        e9:ed:57:b3:19:66:4f:42:0b:2e:ad:ac:f7:e4:e3:34:
        c9:63:9c:28:18:7c:dc:61:9a:dc:66:3e:4c:3b:bc:df:
        f8:27:fc:5f:d7:c9:2d:42:d9:5d:01:b0:d7:0e:9c:c4:
        4a:75:51:21:2b:06:ce:2c:0b:32:53:b2:e8:77:99:21:
        32:54:b8:16:9d:e7:eb:f8:7e:92:e9:72:8a:a6:3f:4d:
        18:ef:78:2f:cb:d1:18:f2:10:82:bf:20:23:ad:64:7d:
        f6:ff:2e:bb:a6:8c:59:51:ae:67:cc:01:df:a0:e8:ee:
        c1:de:97:81:b3:4c:ad:c4:64:b4:c8:70:ad:8a:f8:84:
        ee:ef:78:d9:a5:75:1a:29:ce:5e:e7:3d:2d:d4:b2:fe:
        9e:a2:2e:b5:7d:3a:15:7d:41:dc:e3:35:80:9b:b0:77:
        b3:9c:d4:37:d6:67:57:d0:b8:bd:be:92:73:1c:ad:95:
        71:72:ef:6e:5b:d9:8d:b5:d0:aa:d5:e2:36:37:ff:eb:
        e9:17:c8:76:c8:f4:73:54:d8:10:80:8b:39:a1:e6:e0:
        a0:e6:09:f9:aa:66:db:f8:48:1e:b1:d8:c2:35:af:12:
        35:70:fa:92:dd:5c:00:f4:b3:eb:9e:f6:39:14:90:f0
    Fingerprint (SHA-256):
        60:E0:71:99:47:09:7B:E7:8D:2A:46:4A:E8:A8:97:13:68:48:28:28:3F:7E:20:AD:61:15:4F:80:11:D8:B5:F9
    Fingerprint (SHA1):
        50:DF:77:74:B1:98:34:05:E0:39:78:65:87:E6:DE:59:42:FC:FA:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14556: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14557: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14558: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14559: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124638 (0x310fe29e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:03 2017
            Not After : Tue Aug 23 12:49:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:d4:8f:d5:eb:6a:8d:24:a3:1c:93:4b:b5:91:c1:9c:
                    2e:4f:3c:e5:67:4c:ad:4e:55:d1:f9:c9:30:98:e1:72:
                    ba:c9:bf:28:38:a7:0f:61:ad:ce:90:ba:86:0b:67:c7:
                    20:63:3e:2b:bb:08:c4:bf:45:61:10:1c:0a:d3:02:f2:
                    93:f6:ab:e4:5e:a3:d4:b7:a1:e9:37:4d:61:a5:02:02:
                    68:e2:c2:0b:ce:f3:02:24:b8:7a:d7:67:41:50:0b:34:
                    f5:9f:d6:a2:20:48:a6:8d:ae:85:81:e2:95:50:fd:6d:
                    8c:a9:6b:b9:e8:81:7a:a7:6a:af:b2:fb:dc:fe:37:e9:
                    8f:42:d7:1a:48:41:49:c6:6f:59:16:be:1b:0d:22:5b:
                    90:08:96:7f:2c:62:bf:1f:f4:ce:61:8d:75:17:75:fd:
                    05:8d:92:87:2c:ee:de:02:1e:41:92:06:33:8c:d7:20:
                    c1:9f:1a:09:8e:76:82:e2:1c:72:3d:26:3e:13:42:a8:
                    cd:29:ce:12:56:f8:82:4f:f2:24:c5:fa:21:ac:8d:1c:
                    6e:1e:51:af:0f:4a:26:27:84:b7:ca:4f:f2:18:b1:8c:
                    c5:57:d9:5d:5f:28:81:7b:a1:8c:4b:85:ee:d9:f5:b2:
                    c9:79:d0:bd:7c:64:9c:77:c7:f0:d0:8c:fd:3d:f5:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:89:f1:e0:53:d1:1a:96:12:cf:ab:ba:c6:b5:14:05:
        e9:ed:57:b3:19:66:4f:42:0b:2e:ad:ac:f7:e4:e3:34:
        c9:63:9c:28:18:7c:dc:61:9a:dc:66:3e:4c:3b:bc:df:
        f8:27:fc:5f:d7:c9:2d:42:d9:5d:01:b0:d7:0e:9c:c4:
        4a:75:51:21:2b:06:ce:2c:0b:32:53:b2:e8:77:99:21:
        32:54:b8:16:9d:e7:eb:f8:7e:92:e9:72:8a:a6:3f:4d:
        18:ef:78:2f:cb:d1:18:f2:10:82:bf:20:23:ad:64:7d:
        f6:ff:2e:bb:a6:8c:59:51:ae:67:cc:01:df:a0:e8:ee:
        c1:de:97:81:b3:4c:ad:c4:64:b4:c8:70:ad:8a:f8:84:
        ee:ef:78:d9:a5:75:1a:29:ce:5e:e7:3d:2d:d4:b2:fe:
        9e:a2:2e:b5:7d:3a:15:7d:41:dc:e3:35:80:9b:b0:77:
        b3:9c:d4:37:d6:67:57:d0:b8:bd:be:92:73:1c:ad:95:
        71:72:ef:6e:5b:d9:8d:b5:d0:aa:d5:e2:36:37:ff:eb:
        e9:17:c8:76:c8:f4:73:54:d8:10:80:8b:39:a1:e6:e0:
        a0:e6:09:f9:aa:66:db:f8:48:1e:b1:d8:c2:35:af:12:
        35:70:fa:92:dd:5c:00:f4:b3:eb:9e:f6:39:14:90:f0
    Fingerprint (SHA-256):
        60:E0:71:99:47:09:7B:E7:8D:2A:46:4A:E8:A8:97:13:68:48:28:28:3F:7E:20:AD:61:15:4F:80:11:D8:B5:F9
    Fingerprint (SHA1):
        50:DF:77:74:B1:98:34:05:E0:39:78:65:87:E6:DE:59:42:FC:FA:91
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14560: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14561: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14562: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14563: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124645 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14564: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14565: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14566: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14567: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124646   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14568: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14569: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14570: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14571: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124647   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14572: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14573: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14574: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14575: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823124648   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14576: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14577: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14578: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14579: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14580: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14581: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124645 (0x310fe2a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:11 2017
            Not After : Tue Aug 23 12:49:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:17:fb:41:f9:e9:5f:85:8e:b3:fe:7e:19:75:2d:76:
                    9f:be:ba:6b:70:4e:3d:56:bd:0b:b9:07:d2:a6:d0:79:
                    7d:35:8e:b8:a9:f2:65:c7:a4:dd:53:af:27:d2:83:8b:
                    9b:8e:b9:cc:b2:08:dd:14:7e:00:9b:59:9e:24:d7:1a:
                    02:44:a5:e6:a9:72:6c:ac:c8:6d:97:b5:5d:f7:63:60:
                    85:50:d7:43:af:1d:34:46:0f:be:94:f4:fb:b7:d2:3a:
                    b0:8f:fa:98:9e:78:ef:76:82:29:8c:fc:88:da:6a:6a:
                    ee:28:17:25:7f:09:39:00:26:25:b3:58:3c:d1:31:ac:
                    90:d9:10:b4:1d:6c:2e:4a:59:e9:d1:f6:ff:fd:b0:5e:
                    be:93:17:5b:ca:98:f1:03:db:28:4a:d9:65:d8:a2:66:
                    a1:9b:c4:83:fe:80:15:ea:4c:e4:6d:48:56:94:89:7b:
                    e2:24:28:f8:a6:5d:e2:97:d5:b2:a2:52:bd:cd:0f:98:
                    16:1e:b9:51:b9:ee:f7:0b:c0:ea:55:13:a1:f3:e0:b4:
                    5a:61:81:70:5c:2c:8f:84:e1:4e:d6:91:90:43:ed:c3:
                    13:7e:ce:42:ba:04:92:4c:64:15:fe:bf:0a:12:fe:c1:
                    4f:41:cd:b4:44:e1:58:6d:29:84:9c:1b:f2:cd:18:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:ce:a2:b7:9c:7b:40:98:26:e4:18:b9:ee:e7:19:ed:
        d8:68:43:ed:ed:4e:94:b1:7a:9a:4a:c5:17:76:81:0e:
        3b:d6:09:b2:6e:f8:05:19:c9:4c:34:85:f9:78:41:f7:
        71:02:8e:69:ce:bb:b4:f7:3a:4e:fc:b1:c0:65:39:ff:
        ee:67:25:38:0e:6b:0f:07:ba:8c:1c:7d:be:c0:ac:3d:
        66:33:9c:bc:bc:fe:28:d7:18:70:13:ce:0c:fe:26:59:
        c4:7d:8d:61:b6:ae:7e:f1:88:10:a3:66:e5:0b:7b:e7:
        35:21:93:eb:fa:a4:f1:9d:8c:70:c3:f2:e6:ce:cd:df:
        42:04:e1:73:b7:bb:7d:5a:b5:4f:48:04:bf:99:94:2c:
        e7:92:e8:b2:97:27:7c:ac:5f:b4:58:d3:b7:1e:f7:eb:
        e9:28:7e:f3:8f:88:ab:82:5d:fd:f9:9b:a5:fe:e6:6a:
        54:ae:d8:69:93:e5:11:1c:16:8f:ea:cb:59:f5:e5:2e:
        04:c4:e9:28:c5:24:76:e4:5e:2a:47:80:be:ff:f9:f4:
        6d:bf:db:52:a4:31:78:7b:c2:2c:6d:96:55:f3:c6:08:
        e0:28:d3:82:03:48:63:6b:2e:cf:50:09:ac:8f:61:8a:
        ea:6d:37:3e:99:b7:16:7c:5c:e0:0c:30:bb:c5:c8:d7
    Fingerprint (SHA-256):
        FB:9C:C2:58:65:FD:DD:D9:06:D5:6D:61:F6:0D:C4:99:86:AF:DE:E3:56:A9:67:37:0D:66:87:99:F8:1F:E0:4D
    Fingerprint (SHA1):
        0B:A7:A0:61:B2:D8:2E:F4:08:B1:D5:9C:F1:3B:60:B8:D5:60:7E:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14582: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14583: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14584: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124646 (0x310fe2a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:12 2017
            Not After : Tue Aug 23 12:49:12 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:bc:84:bd:9d:43:40:a5:82:e9:50:3c:10:a8:0f:b8:
                    14:8c:01:8e:85:09:b5:9a:ed:e4:2c:0b:76:c2:fb:c5:
                    de:0d:fb:0e:7b:26:62:67:5b:d5:ee:7f:52:16:3d:42:
                    06:0b:ad:65:d4:91:05:38:8f:98:11:e7:f7:6f:84:70:
                    a3:34:8f:03:9e:f1:e5:e5:03:57:1f:63:40:0f:8f:8f:
                    9c:6f:e2:c8:b4:12:0d:db:17:d0:79:71:4e:17:40:a5:
                    0d:49:cf:c8:3c:94:f2:73:83:73:6c:24:7d:68:7f:0f:
                    29:a2:96:8b:69:a2:82:4b:7c:40:5e:33:bb:f0:5d:97:
                    8a:4d:06:fd:0d:0b:51:e2:2e:f2:ba:c9:46:b0:fe:c7:
                    4f:1e:33:63:4e:90:1a:6e:37:a1:48:9e:8c:52:30:bb:
                    a7:8e:88:7a:89:50:69:64:21:16:04:5c:ac:ed:8d:d0:
                    43:e3:0c:1f:dc:83:88:d5:ca:e0:3d:7d:cc:9e:10:e4:
                    57:70:55:9a:7c:5e:c0:f0:0d:c9:7e:8f:7c:38:d4:d0:
                    af:4b:1b:77:bb:f7:43:ed:b9:a1:54:bc:a3:ae:28:c7:
                    67:4a:1a:9a:14:e5:fd:64:a8:3e:6b:83:7f:99:f0:03:
                    cb:d9:94:3b:f5:75:89:b0:5d:6b:0d:d5:b8:20:12:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:12:d5:bf:47:14:39:dd:90:2c:f0:93:3c:55:f4:31:
        e6:1a:3a:c3:5e:c6:cc:fc:65:07:20:8b:29:7f:d4:4a:
        27:a1:43:4d:29:e1:86:17:32:51:6a:ba:35:b7:8b:53:
        c4:da:01:e8:33:a1:cf:0b:e2:1f:02:13:c8:8b:d2:dd:
        75:d6:12:41:83:91:57:e2:84:e6:7e:cd:67:84:ad:d2:
        1e:d0:16:a8:fc:8a:2f:72:5b:10:7a:4f:86:81:7b:a1:
        e3:03:c8:fe:48:04:5a:5b:7f:14:77:aa:0d:6d:33:3a:
        e8:5d:3e:00:71:19:96:e7:dc:e4:d4:5a:7f:57:ff:4b:
        e4:14:78:6f:cb:7f:04:35:ba:ef:2a:89:79:33:b9:87:
        1b:f7:2e:80:87:88:7c:56:17:15:b4:83:6f:82:aa:b9:
        ad:67:ce:de:99:6d:3c:23:98:09:0b:63:b1:57:fc:77:
        9f:1f:bf:3d:95:99:2d:24:bb:68:d4:00:62:23:eb:fd:
        dd:38:35:9f:79:79:36:bf:fa:30:4e:20:b4:15:20:0c:
        a0:7a:cb:67:3e:f3:52:21:fd:b8:55:05:ac:e2:51:57:
        b6:5e:fc:1a:77:85:03:f6:b0:d6:84:19:5c:90:5c:15:
        03:7b:df:4a:c4:63:24:2c:dc:0e:0b:a1:0d:27:91:30
    Fingerprint (SHA-256):
        DC:91:6F:C6:6A:27:D9:B9:C0:8C:6E:2A:46:D0:92:BC:3E:9E:B1:D5:6E:51:1E:01:69:B5:4F:10:E9:E4:FF:24
    Fingerprint (SHA1):
        F8:20:7A:2E:E4:DB:71:1C:AC:1C:83:FA:EB:9E:A6:F1:AE:D0:4E:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14585: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14586: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124647 (0x310fe2a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:13 2017
            Not After : Tue Aug 23 12:49:13 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:5d:9b:63:9c:ba:5d:ff:c6:dc:33:91:20:55:4a:77:
                    04:57:b4:37:72:a8:ff:98:48:b4:95:26:3c:36:21:5a:
                    d5:af:8f:99:db:73:48:59:5b:61:39:ba:93:0d:55:4e:
                    e1:b0:18:47:03:63:55:b7:6f:ef:1b:57:b9:70:e4:11:
                    a1:a8:9c:3b:2c:5e:20:38:c6:4e:1d:01:28:34:fd:12:
                    97:76:aa:02:77:aa:04:aa:14:bb:32:c5:e1:29:33:6d:
                    13:9e:bd:c6:f3:ba:0f:eb:a7:55:20:8b:3e:a6:76:68:
                    4f:d7:8a:2c:a9:25:3b:56:ad:8b:df:06:04:03:40:51:
                    6b:a4:f2:98:ae:0c:27:6e:82:93:79:26:85:a6:4b:3d:
                    c4:bd:3d:f9:11:4c:0c:f1:44:45:aa:06:3c:e7:b0:0a:
                    97:c5:cd:86:1f:71:43:0f:8c:00:96:d4:a4:c0:04:0f:
                    14:4d:56:98:5b:ec:c0:a3:56:f5:19:5b:be:95:5a:b5:
                    39:47:d8:4c:4f:88:46:ea:4d:9c:17:a9:ac:5c:d2:bd:
                    41:9b:1c:e0:e2:7f:f7:4d:1d:42:57:0b:57:f2:62:0c:
                    22:46:f7:4e:00:22:6f:e7:de:ed:2b:54:7f:3e:08:49:
                    1f:26:2b:53:d9:74:9d:90:c0:e5:53:12:ba:d6:76:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:6c:8f:fe:46:53:3b:b5:e8:6b:3a:43:82:1d:3e:25:
        32:76:b1:43:a2:f2:62:aa:be:6b:18:da:29:88:d4:71:
        af:e3:b2:11:90:09:5b:3d:aa:42:0b:1e:b2:6a:02:99:
        80:2b:d8:be:bc:2d:fd:ca:26:86:44:e5:93:96:b8:8a:
        28:6d:33:24:d3:fc:d8:78:f0:05:8e:df:15:29:d5:a4:
        54:a6:a7:c1:f4:9c:d7:72:7c:35:9c:8a:4e:46:57:52:
        e5:d9:66:b1:81:51:eb:ef:63:a7:17:9a:df:9a:8d:28:
        e2:b0:c6:bd:20:05:28:9d:a0:f8:e5:ba:6e:3f:e9:db:
        2f:67:31:6d:a3:0a:f3:c0:35:f0:19:eb:a7:b9:57:01:
        fd:48:82:39:ee:af:e3:75:fa:a5:72:71:b8:21:98:b5:
        6b:5c:56:4b:cb:5e:2e:e5:fb:b9:ae:e7:24:66:33:4c:
        40:db:ec:e4:65:c5:37:d7:fc:2f:19:2f:96:3b:9a:aa:
        51:f7:85:81:4e:cd:d0:61:51:77:14:1a:f4:50:89:89:
        40:f7:d5:3e:f7:25:03:de:22:7a:aa:39:8e:58:6a:31:
        4b:4e:73:d9:89:7f:8e:fc:21:fd:06:15:a7:fc:17:9b:
        57:2e:5f:6e:ad:fd:ac:ae:6c:87:09:a8:02:62:c6:4a
    Fingerprint (SHA-256):
        DA:1A:30:D7:0A:EB:61:AA:AE:5D:D2:BA:F7:4A:EF:18:86:34:99:A0:AF:56:B0:AF:79:92:07:B2:C5:C4:37:DC
    Fingerprint (SHA1):
        B5:64:C2:43:B6:55:10:C6:4D:4D:D3:01:5E:93:B8:49:9E:AD:2F:20
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14587: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14588: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124649 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14589: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14590: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14591: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14592: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124650   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14593: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14594: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14595: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14596: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124651   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14597: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14598: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14599: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14600: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 823124652   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14601: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14602: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14603: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14604: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 823124653   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14605: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14606: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14607: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14608: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14609: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14610: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #14611: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124649 (0x310fe2a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:15 2017
            Not After : Tue Aug 23 12:49:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:a6:68:93:2a:a2:e0:98:4e:20:ae:ee:b3:3c:40:21:
                    9c:65:4d:eb:3d:3a:f7:79:30:9d:30:14:c1:a6:c7:76:
                    10:b2:02:a3:83:77:5f:6d:9f:46:f6:71:8a:5d:d5:eb:
                    3f:6f:f0:48:42:c4:90:d9:a4:64:17:76:93:e6:c3:72:
                    dd:57:8c:30:fe:4c:60:a2:85:be:46:2d:e0:cc:08:27:
                    8d:37:09:0b:44:b4:39:17:9d:3a:f5:a1:73:d1:4c:53:
                    7f:2b:77:ee:db:b6:a4:11:f7:f1:e5:68:6b:44:da:3f:
                    8d:39:c8:23:d6:60:ca:5f:f0:cf:36:8c:39:e0:01:a5:
                    4d:e4:78:dc:a6:39:7a:b9:ee:3c:70:39:6d:6f:2f:04:
                    c9:78:47:4f:1c:37:96:8d:b7:dd:34:1a:b3:10:7f:af:
                    b6:c5:90:26:ca:5c:f2:b8:ee:56:51:bd:44:fb:ef:24:
                    1b:1f:08:5f:3f:38:82:0a:0c:f2:d8:f7:a5:e1:6b:78:
                    e2:f7:28:09:5d:8a:e8:4f:1f:1a:da:a2:b6:5d:2d:9c:
                    d4:a9:6a:c2:35:45:8a:7d:ec:8b:93:b7:5f:23:0f:4c:
                    cd:a3:8d:f1:d7:85:54:85:33:bd:7f:18:da:83:5c:7f:
                    3e:f4:1f:b3:c8:84:79:66:e9:31:25:6a:87:5a:db:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:3b:8d:98:3d:76:c2:5b:32:46:63:79:12:89:ee:cc:
        3a:ad:dc:19:8b:d0:d4:bb:d6:6e:ec:0c:80:29:8a:1b:
        bd:19:6a:21:ed:ba:ef:85:14:42:55:7d:c9:0a:e8:e6:
        85:c3:fa:d5:8b:e8:a6:b4:b8:1e:ae:7a:ce:48:ba:68:
        ec:98:3e:c8:c6:cc:bf:70:70:07:c2:4f:83:e8:79:ca:
        ae:a4:97:82:4a:7f:fc:d7:d1:08:4e:31:40:f6:d1:25:
        7c:ce:0f:f6:d9:44:1b:c5:c3:4a:d6:b3:9d:29:a1:a1:
        3c:02:0b:52:6a:d3:df:24:f8:0a:68:39:9c:30:97:7c:
        fc:cc:36:e0:57:e4:ae:9d:1f:aa:2d:9e:e4:14:fe:ca:
        32:42:2e:16:21:2a:8e:b3:06:02:b2:6a:3f:cb:38:d4:
        bf:45:42:08:e7:1f:d1:3e:80:c6:41:f8:b2:9f:fa:b9:
        4a:4d:e9:f2:16:26:95:7b:13:1d:4d:01:ea:a9:af:81:
        0d:1d:13:97:ae:eb:40:80:e7:bd:a5:f7:f9:52:f7:a2:
        85:d6:ab:d2:14:b8:11:87:7e:ca:b8:49:5f:e1:00:78:
        8f:9e:de:f1:79:95:7b:66:b0:8b:48:9e:8c:39:e3:95:
        a1:af:cc:1e:17:15:c4:37:f7:02:fa:da:79:5b:1b:1c
    Fingerprint (SHA-256):
        9E:26:99:D8:B2:CE:61:B1:0C:49:C9:89:95:2E:5A:7D:D6:59:0A:72:67:9B:C1:8E:D0:A1:4F:49:D9:01:C9:4B
    Fingerprint (SHA1):
        B8:C2:BB:03:6D:48:B8:C0:8B:9F:D8:B8:28:C8:F4:C9:EE:8F:36:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14612: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14613: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124650 (0x310fe2aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:16 2017
            Not After : Tue Aug 23 12:49:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:be:e1:60:44:1e:7c:0d:c0:6c:b8:aa:9c:62:c8:35:
                    ac:21:95:34:49:68:a3:46:18:a5:b6:22:50:7d:35:22:
                    6f:e1:73:73:cc:b8:55:38:9b:f0:cb:ef:5f:8c:0d:d5:
                    e7:0e:9b:b9:a8:82:3d:a4:78:78:4d:1f:71:df:78:3c:
                    05:c8:af:1a:a1:f6:76:97:29:ce:a4:de:c2:69:1e:67:
                    ab:be:f5:c5:8e:5e:22:08:7f:ca:18:fd:2a:cb:a9:50:
                    33:0a:e0:65:43:d6:ad:98:87:db:85:6b:bf:ab:77:58:
                    22:0c:31:99:ee:0b:d1:b1:36:db:4e:cf:be:8a:4e:51:
                    52:c8:5a:8b:a2:b8:55:b3:78:88:e7:fb:c7:9e:ac:ae:
                    12:d5:e5:68:3b:db:bf:82:8b:41:46:fb:20:20:5b:bf:
                    6b:de:51:ab:c3:b3:c6:ba:73:7a:6e:42:8c:92:47:5f:
                    dd:6e:47:62:a0:96:75:55:a0:10:17:66:52:69:4e:0e:
                    ff:9b:c3:8d:56:44:44:50:0e:e0:36:84:7e:3a:95:f7:
                    b8:70:8c:d3:1c:8a:d8:1e:2d:e4:24:02:ae:da:db:98:
                    1a:ae:a8:25:4f:0d:d9:3f:a3:5e:f2:b0:be:84:cd:6e:
                    49:78:7c:fb:68:17:aa:e6:55:17:8a:1f:ea:dd:bf:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:59:ac:88:21:a1:fa:24:7e:48:51:be:bd:89:44:9b:
        b5:29:ce:17:81:9b:06:0c:f7:63:b7:d8:66:52:6e:b6:
        d9:2a:31:76:39:0a:61:9e:ab:fc:4a:d7:eb:b1:4a:71:
        2e:24:8a:c0:54:e7:b4:09:fa:d7:aa:55:f8:27:c6:26:
        5b:0d:f9:53:1b:26:10:fa:a5:08:23:8d:32:16:7f:3a:
        60:f9:b2:66:4a:15:2d:92:98:47:24:5a:89:af:81:d1:
        03:c9:5d:7e:53:77:31:3c:ce:39:b9:07:ce:9c:47:1b:
        a5:a7:63:cc:90:b8:e5:54:b4:39:c7:da:cd:73:d6:a2:
        1f:bb:7c:52:e4:ab:2d:bf:74:e8:03:34:f7:ca:5d:2f:
        a5:7a:be:c6:5b:12:64:b2:ea:91:bc:71:62:7d:86:c9:
        ea:f1:d4:ce:d4:09:94:23:47:7e:39:79:94:be:f3:81:
        af:a3:47:1d:a5:bf:46:e3:1d:be:63:6e:07:01:98:0f:
        ee:d5:e6:27:69:33:da:bd:c8:9d:fc:36:78:97:5f:71:
        36:29:b8:2f:c7:7f:d0:7a:ec:9c:d3:53:a0:e3:11:da:
        ce:54:b5:ab:e5:8c:38:5c:a2:0f:ec:c1:6e:34:38:bd:
        34:78:53:87:3a:5f:f5:c2:4f:3f:4f:0b:bc:85:dd:a7
    Fingerprint (SHA-256):
        44:4F:61:4E:E3:9D:4C:0B:26:AA:FB:2D:C6:13:F1:93:18:D6:50:46:2B:82:17:14:07:15:DE:47:B5:A1:B0:E3
    Fingerprint (SHA1):
        EB:8A:DF:CA:A4:92:C9:C3:53:5B:E5:D1:16:41:EA:CC:07:A0:CD:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14614: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14615: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14616: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124651 (0x310fe2ab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:17 2017
            Not After : Tue Aug 23 12:49:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:cf:44:1c:3b:04:7d:97:4e:88:2c:f7:7f:d9:86:28:
                    1f:cf:44:86:65:ba:84:43:47:31:f2:37:9d:be:dd:68:
                    a5:64:43:b0:b2:c7:b8:22:e0:8f:ed:a0:36:fd:9f:95:
                    d0:a8:69:63:a4:1f:01:0c:d9:5e:e2:df:74:3b:ce:76:
                    d7:08:6e:eb:2f:5d:f1:7f:50:d5:9a:4b:e7:87:02:03:
                    8c:36:3d:d0:3b:8a:d0:fe:37:73:6c:ac:40:7a:51:42:
                    7d:07:7f:1a:6f:f7:de:80:47:d8:b9:b8:e0:54:26:c8:
                    ec:ec:21:2a:e3:07:75:fb:4a:e0:47:1c:24:3f:e4:bc:
                    23:b4:63:0c:3d:1b:70:e1:01:8d:0d:61:92:9c:6e:b4:
                    c0:47:32:83:f6:5f:fb:ca:da:40:41:5a:86:95:16:c7:
                    77:31:21:74:77:6b:c2:df:ff:e6:a6:ef:73:c0:28:c3:
                    6c:9c:f9:29:84:91:32:a8:9c:ce:e3:86:41:79:04:b9:
                    fd:a3:bb:7e:fe:62:b4:8a:bc:36:b3:dd:9a:28:8a:8a:
                    df:f0:42:c2:84:8a:67:48:8c:4d:e1:81:ba:9e:57:0d:
                    b4:e3:03:b1:4e:9f:fa:80:6d:65:b1:32:29:61:65:ae:
                    b6:b6:ca:ee:9a:47:0c:17:a9:87:ae:d7:23:f1:8d:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:80:d9:e0:9d:ad:40:91:66:9b:17:56:26:e9:a6:d5:
        2d:7c:5f:19:c9:30:e3:24:b6:5f:27:6a:df:23:5b:80:
        8d:b6:ed:f1:05:4b:6b:b2:f1:9f:2c:3a:9f:88:3a:40:
        11:a7:5c:43:f2:10:53:60:33:2e:ae:6d:d8:a7:4b:8c:
        67:da:b8:81:49:1a:29:49:b8:7b:6f:5b:dd:36:d0:7e:
        e9:64:18:46:c1:74:e4:65:6b:59:c8:ef:8c:96:f2:b9:
        bc:52:c1:29:56:f6:be:68:10:21:e8:ba:c1:d2:65:78:
        04:85:2d:45:fd:14:b7:c2:45:16:cf:ca:bc:ce:69:ba:
        4d:30:1d:5d:58:cb:d4:58:48:7b:d6:2c:bf:51:bb:65:
        4e:67:65:cf:e9:71:cc:4e:ae:2e:ff:e9:4b:cd:51:dc:
        8b:70:01:95:e9:ac:27:77:fd:7d:5b:f2:84:ef:54:cc:
        1b:7c:41:34:ff:5b:30:ca:cf:08:65:75:9d:6b:c1:c6:
        40:b0:f7:33:18:83:f3:1f:06:60:42:c8:50:f8:b4:5f:
        e3:39:7f:d7:7e:e7:b8:9e:71:c9:15:b0:ab:bd:1d:fc:
        f7:be:3e:68:b7:19:83:de:e9:c3:f4:12:8d:b8:dc:47:
        ec:98:91:3e:88:4c:8a:a0:9f:ee:33:84:16:c9:cb:bb
    Fingerprint (SHA-256):
        DD:F7:B2:94:60:0A:53:4E:A7:55:77:BF:96:0A:46:0F:7A:6B:39:C9:54:5E:1F:B7:97:98:C5:08:D3:16:8D:2B
    Fingerprint (SHA1):
        3C:51:D7:18:9D:5E:4C:5C:47:0B:79:17:C1:B3:46:B2:A1:AD:53:2E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #14617: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14618: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124654 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14619: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14620: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14621: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14622: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124655   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14623: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14624: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14625: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14626: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124656   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA1Root-823124433.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14627: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14628: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14629: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14630: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 823124657   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14631: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14632: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #14633: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124654 (0x310fe2ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:21 2017
            Not After : Tue Aug 23 12:49:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:3c:91:fb:29:de:92:f6:ca:3a:d3:0c:e4:56:6c:09:
                    14:43:08:0e:20:43:db:7d:b4:1e:ca:ff:a1:fe:d2:02:
                    35:09:68:0a:84:77:a8:4e:3a:43:9b:d0:22:a8:ee:00:
                    b7:f7:ac:9d:2a:28:b0:e8:ae:10:0e:40:1c:a3:be:00:
                    59:a5:95:b9:b5:81:26:26:5a:49:d2:6b:00:7a:da:96:
                    08:29:dd:f5:11:53:83:ca:c9:fa:fa:8d:aa:03:55:0c:
                    30:2a:fe:ce:06:da:a8:8b:6f:c6:70:ca:49:fc:94:e7:
                    c6:ba:45:75:b1:88:3c:ad:b8:b7:17:66:43:69:80:f1:
                    15:51:9a:87:47:fb:85:82:5f:2c:b8:8d:2f:aa:e1:93:
                    52:e1:d7:6c:08:7b:5f:fb:7a:25:0c:93:ce:e7:a1:10:
                    81:6e:52:e8:cc:12:98:0d:44:bd:cc:3a:34:85:4e:18:
                    46:ad:b3:85:95:0c:28:d6:51:87:1b:c9:08:bc:eb:c4:
                    0a:6c:c6:43:47:e6:24:35:25:5a:82:b9:c5:f1:38:c1:
                    d1:fa:02:96:0b:8d:fc:22:94:9c:2a:2d:a6:39:9d:78:
                    a4:28:50:a7:37:80:6b:0d:b0:a5:e2:c5:10:aa:03:38:
                    bb:07:6e:98:8e:35:fd:56:20:b6:c9:ae:de:11:29:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:d9:86:dd:51:bd:9f:e2:15:24:e7:c2:28:61:a5:6f:
        b8:db:be:72:7e:ac:1e:2c:7f:18:4e:4a:9e:a1:07:2a:
        48:b5:b6:63:cf:45:d2:0a:ab:f5:39:e2:5b:45:9d:e4:
        49:c1:20:e2:46:1c:de:f7:2f:ff:46:d1:66:3d:5a:dc:
        9d:94:4b:68:55:a6:9b:2d:2b:ec:0a:c9:c6:9e:07:63:
        c8:37:a8:4b:77:ce:34:53:e8:78:ff:cc:fb:5e:42:e3:
        bf:6a:2d:3b:14:6a:4a:b0:12:38:40:ea:78:18:56:2c:
        c0:25:1c:cd:c2:56:35:7b:17:42:86:af:7b:89:ab:78:
        18:0f:9f:cf:16:ae:a9:8f:ea:3d:ab:1d:8a:77:e9:88:
        8f:78:ce:05:6e:c4:04:c3:ea:59:95:d4:5b:94:46:7c:
        de:21:54:b5:c5:53:17:40:8a:b0:3d:c9:b8:0d:95:09:
        35:b1:de:a5:7e:69:35:09:5d:a1:05:69:30:33:80:27:
        73:d9:eb:cd:86:eb:d0:fe:b8:5a:99:98:04:fd:78:63:
        4a:4e:6d:b6:48:ad:2b:03:e1:87:a0:c1:6d:a2:d3:b3:
        1f:1c:6c:f2:7d:83:f8:05:6f:5d:e8:d8:ee:f0:15:73:
        0a:a9:38:f4:71:a0:54:eb:b9:32:fe:a8:48:1e:b1:ca
    Fingerprint (SHA-256):
        A5:54:4D:17:12:6A:6F:3F:7B:0F:61:40:F8:86:CA:CD:45:49:BF:EF:0F:87:3B:69:34:F1:80:91:7F:13:72:FB
    Fingerprint (SHA1):
        D5:12:D7:B0:8E:47:8B:86:6A:81:2D:F4:A1:A3:22:A0:FA:D5:FE:FC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14634: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14635: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124658 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14636: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14637: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14638: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124659 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14639: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14640: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14641: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14642: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823124660 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14643: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14644: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823124661 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14645: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14646: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14647: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14648: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14649: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823124662   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823124434.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14650: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14651: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14652: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14653: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124663   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14654: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14655: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14656: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124658 (0x310fe2b2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:25 2017
            Not After : Tue Aug 23 12:49:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:45:78:0e:cc:1e:cc:7a:7a:82:fb:ba:84:34:63:76:
                    a5:29:a3:9e:26:3e:82:13:61:0c:81:28:4d:43:4c:80:
                    d0:1a:f9:b8:2c:4e:89:48:5c:e2:de:17:e3:2b:f9:45:
                    95:c8:29:8f:34:55:5e:c2:a6:29:01:ab:a1:28:de:92:
                    33:f3:3f:37:6a:57:4e:d1:0e:97:9e:52:22:de:42:b0:
                    9e:3d:89:18:36:a6:fc:52:05:67:0c:0d:a4:99:26:ec:
                    97:5c:88:07:3e:b5:27:78:1a:d2:c3:4c:d7:bd:12:d6:
                    e0:55:fa:26:c1:ff:5c:a1:a2:9e:13:3a:26:de:3c:3c:
                    cf:f4:2f:f1:e1:ad:0a:10:78:93:45:c3:e2:5a:4f:ac:
                    0a:b1:c7:2b:d1:e7:54:3f:af:58:7e:2a:8a:d7:da:ea:
                    3d:1d:3d:02:4a:85:97:7f:b7:03:89:60:31:1b:41:0d:
                    06:25:a7:9c:25:2c:89:d4:4e:81:87:9c:80:59:82:54:
                    a4:56:f0:6c:01:75:2d:be:ad:cc:80:94:1c:14:d0:a4:
                    a5:48:04:7a:76:c2:8b:66:a8:51:4f:be:21:7f:49:2f:
                    7b:68:4e:04:f8:f8:30:c4:c0:62:8e:75:83:da:1d:c2:
                    1e:8e:d3:33:d5:41:ea:a3:79:50:42:b8:0e:f9:81:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:98:76:83:50:5a:bf:40:66:59:3a:ab:e8:b4:69:fb:
        2c:6e:2c:a4:40:4b:b6:0e:8b:ce:18:a3:59:14:a7:09:
        ef:17:46:bd:47:e9:5f:ba:68:f7:73:f3:f1:0a:19:12:
        b1:dc:ba:3f:b0:26:46:c9:8e:15:09:e3:4d:68:d3:b1:
        33:11:3e:44:3a:71:7c:21:0f:62:80:3f:83:2c:dc:07:
        e2:9d:40:06:de:09:1b:c0:0b:92:2e:d8:fa:6f:b0:e8:
        80:cd:21:4a:65:de:96:a3:45:21:26:48:22:2e:13:e9:
        a6:bd:af:27:11:d6:c5:4e:5f:05:71:ae:28:c8:21:bc:
        b6:68:23:15:89:ea:3c:b3:ce:54:47:f3:c3:af:29:88:
        9b:43:e8:70:d6:fc:ad:fb:c4:0c:c0:22:bb:0d:8f:27:
        88:ec:e3:55:29:4b:3a:e9:1f:bb:9f:1b:ab:12:6a:a2:
        71:06:86:c3:b3:01:3d:c3:1c:bb:ec:4d:40:fe:cd:38:
        9b:c4:ee:bf:bb:aa:3c:34:fc:79:a3:6f:1e:c2:cc:21:
        ed:fc:33:d1:b1:23:b1:ea:b7:5b:04:d4:ed:c1:e1:d4:
        20:0b:55:f3:a6:62:9d:4a:aa:79:49:c2:93:5c:b5:c1:
        e7:fc:3e:eb:a4:aa:09:26:4b:36:a8:be:6a:eb:d0:6c
    Fingerprint (SHA-256):
        75:6C:6E:A8:DC:85:22:B7:18:5B:75:77:0D:A4:F4:E0:FB:57:1A:44:05:10:C8:20:80:28:8D:F7:3E:BA:02:9E
    Fingerprint (SHA1):
        E4:1F:01:7E:47:AE:E0:66:C3:00:67:C5:9B:70:B0:E6:3B:E0:C2:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14657: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124659 (0x310fe2b3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:26 2017
            Not After : Tue Aug 23 12:49:26 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:b4:fb:80:86:da:ef:f4:4f:24:9a:ea:b2:43:49:6b:
                    b4:7c:bd:45:6a:75:11:d0:48:da:c7:ca:c1:b4:3c:e3:
                    4c:95:ef:7d:fc:8b:4b:43:47:6d:74:54:9e:00:99:65:
                    dd:2c:d2:b6:e5:9c:42:db:2e:39:56:c9:42:28:9d:62:
                    3b:a3:ea:c1:cb:9a:fb:6c:57:cf:d8:6a:cb:71:8b:e7:
                    7a:95:15:f5:86:ac:b1:16:d6:45:80:5a:60:a9:1a:25:
                    b7:7f:60:ef:b1:9d:3d:44:df:c2:24:7b:d2:54:11:2e:
                    32:d0:77:82:6e:3c:91:98:55:fe:22:23:47:c3:ca:52:
                    f1:7b:6c:d1:be:46:5e:dd:e2:22:8c:2e:cc:56:31:11:
                    e7:07:f7:aa:3a:6d:c1:45:98:3d:dd:af:87:2f:31:24:
                    21:11:76:23:37:c8:96:1f:b8:f6:34:81:56:5c:01:a5:
                    4e:d0:c4:16:e6:6a:74:8f:6c:3e:e4:35:9e:17:6b:56:
                    45:03:07:8f:7f:40:e7:b3:24:b6:d8:d0:70:cc:15:d7:
                    3c:5e:65:35:f9:68:80:73:88:b5:76:4e:4f:c5:a4:30:
                    2f:24:b5:54:28:3d:f1:b0:a7:55:2d:df:b4:c7:d6:82:
                    b0:50:0f:7d:bd:b8:03:31:7e:28:9c:08:03:1a:0b:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:93:0e:61:38:9e:16:34:72:ee:76:65:dd:02:45:b5:
        fb:25:b6:50:67:68:ea:bf:6a:a3:ac:07:96:6a:a0:37:
        fc:59:58:8d:80:0d:a8:ab:b8:7f:bc:47:6d:f8:22:60:
        f4:d7:b5:56:63:cb:4e:c6:a4:24:1a:ab:95:8a:94:1f:
        23:48:d0:31:62:d0:d3:c6:a3:71:21:3d:6f:ab:ca:9b:
        da:36:d4:bf:39:ff:bb:43:e2:74:4a:ca:49:ca:74:42:
        b2:2e:9a:cc:2f:93:cc:53:2e:4f:73:17:5a:70:26:72:
        94:cd:70:ed:d1:3d:57:46:b2:eb:d0:be:2d:77:95:4c:
        32:b1:9a:2d:07:e7:7d:ac:49:da:ed:87:88:e4:e2:f3:
        3a:e1:8a:19:23:a0:02:37:cd:6a:ad:07:97:81:c9:35:
        8d:b6:c4:21:19:b6:e3:b5:b9:63:55:6b:a8:2c:f8:1c:
        60:83:aa:47:f6:e1:57:7c:50:d8:3d:0f:9d:20:a3:6f:
        6a:3a:3e:a5:3b:24:33:1c:6c:b4:85:e5:d3:dc:27:c1:
        0d:06:a8:e4:89:bb:af:68:bd:34:a5:32:d5:49:84:18:
        60:8d:7b:93:9e:d1:1d:98:e9:c9:d1:6f:6d:f4:85:cb:
        9f:17:ef:9d:d5:ad:91:3f:08:b8:c4:14:72:0b:ae:b7
    Fingerprint (SHA-256):
        59:9A:F3:C2:87:C7:18:6E:5F:C1:2C:95:51:9B:49:3C:10:87:35:E7:98:C4:D6:81:B8:1D:88:0E:62:95:8F:62
    Fingerprint (SHA1):
        B4:33:9C:30:A3:52:C5:58:44:3A:C4:F2:C0:97:B2:82:E1:CC:CF:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14658: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124659 (0x310fe2b3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:26 2017
            Not After : Tue Aug 23 12:49:26 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:b4:fb:80:86:da:ef:f4:4f:24:9a:ea:b2:43:49:6b:
                    b4:7c:bd:45:6a:75:11:d0:48:da:c7:ca:c1:b4:3c:e3:
                    4c:95:ef:7d:fc:8b:4b:43:47:6d:74:54:9e:00:99:65:
                    dd:2c:d2:b6:e5:9c:42:db:2e:39:56:c9:42:28:9d:62:
                    3b:a3:ea:c1:cb:9a:fb:6c:57:cf:d8:6a:cb:71:8b:e7:
                    7a:95:15:f5:86:ac:b1:16:d6:45:80:5a:60:a9:1a:25:
                    b7:7f:60:ef:b1:9d:3d:44:df:c2:24:7b:d2:54:11:2e:
                    32:d0:77:82:6e:3c:91:98:55:fe:22:23:47:c3:ca:52:
                    f1:7b:6c:d1:be:46:5e:dd:e2:22:8c:2e:cc:56:31:11:
                    e7:07:f7:aa:3a:6d:c1:45:98:3d:dd:af:87:2f:31:24:
                    21:11:76:23:37:c8:96:1f:b8:f6:34:81:56:5c:01:a5:
                    4e:d0:c4:16:e6:6a:74:8f:6c:3e:e4:35:9e:17:6b:56:
                    45:03:07:8f:7f:40:e7:b3:24:b6:d8:d0:70:cc:15:d7:
                    3c:5e:65:35:f9:68:80:73:88:b5:76:4e:4f:c5:a4:30:
                    2f:24:b5:54:28:3d:f1:b0:a7:55:2d:df:b4:c7:d6:82:
                    b0:50:0f:7d:bd:b8:03:31:7e:28:9c:08:03:1a:0b:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:93:0e:61:38:9e:16:34:72:ee:76:65:dd:02:45:b5:
        fb:25:b6:50:67:68:ea:bf:6a:a3:ac:07:96:6a:a0:37:
        fc:59:58:8d:80:0d:a8:ab:b8:7f:bc:47:6d:f8:22:60:
        f4:d7:b5:56:63:cb:4e:c6:a4:24:1a:ab:95:8a:94:1f:
        23:48:d0:31:62:d0:d3:c6:a3:71:21:3d:6f:ab:ca:9b:
        da:36:d4:bf:39:ff:bb:43:e2:74:4a:ca:49:ca:74:42:
        b2:2e:9a:cc:2f:93:cc:53:2e:4f:73:17:5a:70:26:72:
        94:cd:70:ed:d1:3d:57:46:b2:eb:d0:be:2d:77:95:4c:
        32:b1:9a:2d:07:e7:7d:ac:49:da:ed:87:88:e4:e2:f3:
        3a:e1:8a:19:23:a0:02:37:cd:6a:ad:07:97:81:c9:35:
        8d:b6:c4:21:19:b6:e3:b5:b9:63:55:6b:a8:2c:f8:1c:
        60:83:aa:47:f6:e1:57:7c:50:d8:3d:0f:9d:20:a3:6f:
        6a:3a:3e:a5:3b:24:33:1c:6c:b4:85:e5:d3:dc:27:c1:
        0d:06:a8:e4:89:bb:af:68:bd:34:a5:32:d5:49:84:18:
        60:8d:7b:93:9e:d1:1d:98:e9:c9:d1:6f:6d:f4:85:cb:
        9f:17:ef:9d:d5:ad:91:3f:08:b8:c4:14:72:0b:ae:b7
    Fingerprint (SHA-256):
        59:9A:F3:C2:87:C7:18:6E:5F:C1:2C:95:51:9B:49:3C:10:87:35:E7:98:C4:D6:81:B8:1D:88:0E:62:95:8F:62
    Fingerprint (SHA1):
        B4:33:9C:30:A3:52:C5:58:44:3A:C4:F2:C0:97:B2:82:E1:CC:CF:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14659: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14660: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124664 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14661: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14662: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14663: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124665 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14664: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14665: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14666: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14667: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 823124666 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14668: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14669: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 823124667 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14670: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14671: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14672: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14673: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14674: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823124668   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-Bridge-823124435.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14675: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14676: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14677: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14678: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124669   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14679: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14680: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14681: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14682: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823124670   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-BridgeNavy-823124436.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14683: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14684: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14685: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14686: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823124671   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14687: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14688: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14689: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124664 (0x310fe2b8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:30 2017
            Not After : Tue Aug 23 12:49:30 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:6a:8d:36:a2:02:6b:69:e1:1c:c9:70:74:5a:dd:5c:
                    9b:30:1c:0d:3d:c7:a1:9b:76:53:b6:b9:7a:3c:14:8a:
                    07:bf:1c:30:53:3d:05:9a:57:bb:25:51:99:9b:43:68:
                    4c:9c:0e:2a:30:67:13:b3:04:1b:bf:18:7c:03:85:05:
                    a8:e4:23:fb:21:81:9f:9e:f0:a1:09:00:05:01:28:8e:
                    79:87:22:33:6a:92:98:5c:99:c0:07:72:e5:30:10:ef:
                    86:d8:4c:13:95:0a:66:60:54:e3:b5:b0:70:8e:2c:10:
                    c2:86:34:8b:19:22:ad:e1:2a:1c:8a:0a:fe:32:ee:95:
                    7b:42:ba:30:db:c4:04:46:91:d7:20:03:73:e8:51:b2:
                    d1:d0:40:d7:5f:8f:a8:39:e7:00:33:52:93:bf:4c:e9:
                    46:8c:a0:4c:8d:4a:54:25:0b:25:d4:1c:35:70:39:7b:
                    e4:55:51:8b:72:f7:f4:a2:56:7f:13:72:46:0d:10:2e:
                    0d:0e:60:29:54:f5:ff:c6:cf:4d:32:b8:c8:64:86:36:
                    ee:29:8c:6e:05:46:86:b9:70:10:9d:eb:11:c3:5e:0c:
                    8c:dc:36:dd:e7:e1:13:73:1c:8a:ae:6b:e0:9c:9b:81:
                    96:75:58:21:7f:e7:c8:aa:9f:c2:fb:19:9f:12:85:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:db:84:44:c0:d2:7d:90:e3:82:77:9b:71:30:b6:46:
        24:a0:d6:81:0a:5a:41:56:83:e5:76:92:40:4f:f1:ba:
        41:e1:36:f8:94:4b:a2:e3:33:62:87:eb:12:b0:4e:29:
        8b:8c:13:1f:ce:fe:46:93:e3:da:68:a0:8d:43:be:60:
        75:76:15:27:37:e7:15:f6:63:f8:fc:f9:a5:73:e6:37:
        09:c7:87:f7:ab:4d:71:12:9b:7c:3c:cc:b2:b9:71:c0:
        d8:a7:e3:2c:09:5e:94:a0:f5:8b:2e:c1:a4:25:82:61:
        d9:75:b6:39:35:92:e1:8b:92:88:8c:44:bf:7b:38:36:
        52:e0:7b:75:7e:a3:c5:04:ae:02:16:54:e2:91:22:6d:
        4c:30:9d:b5:40:c7:f3:9e:df:c5:66:87:b9:40:6a:50:
        13:bd:96:34:a8:b0:b2:b3:8a:71:67:d1:35:a6:0e:0e:
        e8:15:e5:12:77:64:ae:fb:ee:d9:ff:af:74:ae:02:d7:
        90:20:5d:eb:64:e0:b3:b0:bb:f6:1f:c6:94:7f:c8:07:
        bb:f6:fa:6f:fd:27:b6:2d:19:fb:1b:d6:4d:e8:cc:53:
        b9:2a:6e:e0:47:89:61:79:63:f5:8d:96:93:15:00:6f:
        f9:8d:64:18:c7:40:e2:7e:dd:db:37:ec:3a:7a:36:19
    Fingerprint (SHA-256):
        BF:0C:F9:E7:C7:96:35:FA:B7:A5:14:E2:41:97:73:B9:F2:A3:7C:7C:BE:F1:C9:23:B9:A5:BE:FA:A2:71:A5:33
    Fingerprint (SHA1):
        C4:AB:D9:35:28:60:EE:1D:F9:14:CB:17:9D:86:29:71:CA:0A:03:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14690: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124665 (0x310fe2b9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:31 2017
            Not After : Tue Aug 23 12:49:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b0:06:2a:8c:5a:ac:fa:6b:0c:3e:23:93:28:a5:2a:
                    ae:03:96:ea:fe:f9:f5:b2:f6:6b:32:dc:a7:a2:37:89:
                    a1:9d:77:74:5b:b6:1e:e7:79:ae:12:65:da:d5:6c:93:
                    1f:9b:52:b3:c9:2f:52:d3:29:e6:f4:be:35:51:cb:71:
                    10:39:57:f4:82:a7:58:bb:02:46:da:fd:1a:80:de:98:
                    6f:3c:d9:a8:8b:9e:a6:d2:62:d7:06:5b:e6:9b:35:0a:
                    40:f2:c9:45:ce:38:85:c4:7c:3f:2b:33:97:dd:73:67:
                    e9:e2:f7:ee:95:fc:44:dc:fa:c1:78:b7:d1:db:79:24:
                    27:cc:12:c6:69:29:8c:90:d9:33:98:be:d9:c0:1c:d8:
                    d5:6c:51:2a:b7:82:84:39:95:00:ac:0e:97:37:fe:0c:
                    6c:de:8d:74:28:b1:42:e4:29:6e:73:2d:ac:9e:bc:60:
                    04:af:6e:da:06:fd:bf:b6:c8:a4:33:14:d2:98:ec:78:
                    90:8a:86:28:c2:4c:d8:16:09:1a:90:36:3f:04:67:6f:
                    63:76:a2:67:84:bb:45:23:71:df:ee:56:ba:00:8a:f7:
                    03:46:81:6a:5f:b3:de:34:72:64:ca:cf:cf:5d:d1:43:
                    f8:53:5e:c7:58:e5:16:53:1d:70:cb:9f:4a:5d:5a:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:a8:8a:82:29:e9:4a:3c:b2:b1:2e:0f:b9:41:e1:43:
        3a:3c:50:ea:41:b9:e0:9c:48:ee:22:eb:63:45:5b:c0:
        22:68:55:5c:41:19:83:10:8f:e6:94:84:02:1d:d1:47:
        8c:c2:b1:57:e2:26:ba:1c:37:06:d5:fa:dd:41:f4:e1:
        f0:b2:84:e9:cb:e7:84:02:ed:a3:fc:f7:6a:8f:8b:b0:
        fb:74:d4:c3:02:a3:0c:71:62:6a:5d:14:53:88:db:12:
        b6:1d:3d:68:fe:70:96:f2:59:27:02:b9:33:2d:af:27:
        8b:5f:ab:b8:2c:27:fa:21:26:f4:17:3b:0e:95:fb:85:
        ee:d3:b4:23:34:ab:91:a4:d1:1a:80:d0:a7:57:54:22:
        53:12:87:5e:df:80:bd:83:2f:75:4f:02:9f:f5:c8:2b:
        5c:24:76:69:f2:19:b5:2e:fd:2e:55:05:47:95:c0:13:
        de:91:32:e2:b7:b6:3b:3c:1a:01:b4:52:7e:36:95:fe:
        77:a3:a2:89:06:97:d7:4d:3c:d2:1f:0d:48:20:74:b9:
        65:be:52:e9:64:70:a2:7d:79:00:8c:32:2d:fe:40:14:
        db:05:7e:ef:32:f6:c3:70:4f:2b:e6:e3:4d:41:2c:30:
        4d:21:a2:49:bf:74:8e:55:b1:9d:f1:fa:8b:90:0c:e3
    Fingerprint (SHA-256):
        DF:4E:79:97:1C:57:FB:CE:FE:73:B7:F2:97:90:E4:7B:51:9E:7D:A0:D1:54:03:B4:E6:2C:7C:E6:82:5F:38:1E
    Fingerprint (SHA1):
        E9:DF:B9:5D:62:62:7E:89:A8:9B:CF:C9:CD:90:68:38:C9:75:90:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14691: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124665 (0x310fe2b9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:31 2017
            Not After : Tue Aug 23 12:49:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b0:06:2a:8c:5a:ac:fa:6b:0c:3e:23:93:28:a5:2a:
                    ae:03:96:ea:fe:f9:f5:b2:f6:6b:32:dc:a7:a2:37:89:
                    a1:9d:77:74:5b:b6:1e:e7:79:ae:12:65:da:d5:6c:93:
                    1f:9b:52:b3:c9:2f:52:d3:29:e6:f4:be:35:51:cb:71:
                    10:39:57:f4:82:a7:58:bb:02:46:da:fd:1a:80:de:98:
                    6f:3c:d9:a8:8b:9e:a6:d2:62:d7:06:5b:e6:9b:35:0a:
                    40:f2:c9:45:ce:38:85:c4:7c:3f:2b:33:97:dd:73:67:
                    e9:e2:f7:ee:95:fc:44:dc:fa:c1:78:b7:d1:db:79:24:
                    27:cc:12:c6:69:29:8c:90:d9:33:98:be:d9:c0:1c:d8:
                    d5:6c:51:2a:b7:82:84:39:95:00:ac:0e:97:37:fe:0c:
                    6c:de:8d:74:28:b1:42:e4:29:6e:73:2d:ac:9e:bc:60:
                    04:af:6e:da:06:fd:bf:b6:c8:a4:33:14:d2:98:ec:78:
                    90:8a:86:28:c2:4c:d8:16:09:1a:90:36:3f:04:67:6f:
                    63:76:a2:67:84:bb:45:23:71:df:ee:56:ba:00:8a:f7:
                    03:46:81:6a:5f:b3:de:34:72:64:ca:cf:cf:5d:d1:43:
                    f8:53:5e:c7:58:e5:16:53:1d:70:cb:9f:4a:5d:5a:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:a8:8a:82:29:e9:4a:3c:b2:b1:2e:0f:b9:41:e1:43:
        3a:3c:50:ea:41:b9:e0:9c:48:ee:22:eb:63:45:5b:c0:
        22:68:55:5c:41:19:83:10:8f:e6:94:84:02:1d:d1:47:
        8c:c2:b1:57:e2:26:ba:1c:37:06:d5:fa:dd:41:f4:e1:
        f0:b2:84:e9:cb:e7:84:02:ed:a3:fc:f7:6a:8f:8b:b0:
        fb:74:d4:c3:02:a3:0c:71:62:6a:5d:14:53:88:db:12:
        b6:1d:3d:68:fe:70:96:f2:59:27:02:b9:33:2d:af:27:
        8b:5f:ab:b8:2c:27:fa:21:26:f4:17:3b:0e:95:fb:85:
        ee:d3:b4:23:34:ab:91:a4:d1:1a:80:d0:a7:57:54:22:
        53:12:87:5e:df:80:bd:83:2f:75:4f:02:9f:f5:c8:2b:
        5c:24:76:69:f2:19:b5:2e:fd:2e:55:05:47:95:c0:13:
        de:91:32:e2:b7:b6:3b:3c:1a:01:b4:52:7e:36:95:fe:
        77:a3:a2:89:06:97:d7:4d:3c:d2:1f:0d:48:20:74:b9:
        65:be:52:e9:64:70:a2:7d:79:00:8c:32:2d:fe:40:14:
        db:05:7e:ef:32:f6:c3:70:4f:2b:e6:e3:4d:41:2c:30:
        4d:21:a2:49:bf:74:8e:55:b1:9d:f1:fa:8b:90:0c:e3
    Fingerprint (SHA-256):
        DF:4E:79:97:1C:57:FB:CE:FE:73:B7:F2:97:90:E4:7B:51:9E:7D:A0:D1:54:03:B4:E6:2C:7C:E6:82:5F:38:1E
    Fingerprint (SHA1):
        E9:DF:B9:5D:62:62:7E:89:A8:9B:CF:C9:CD:90:68:38:C9:75:90:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14692: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #14693: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124664 (0x310fe2b8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:30 2017
            Not After : Tue Aug 23 12:49:30 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:6a:8d:36:a2:02:6b:69:e1:1c:c9:70:74:5a:dd:5c:
                    9b:30:1c:0d:3d:c7:a1:9b:76:53:b6:b9:7a:3c:14:8a:
                    07:bf:1c:30:53:3d:05:9a:57:bb:25:51:99:9b:43:68:
                    4c:9c:0e:2a:30:67:13:b3:04:1b:bf:18:7c:03:85:05:
                    a8:e4:23:fb:21:81:9f:9e:f0:a1:09:00:05:01:28:8e:
                    79:87:22:33:6a:92:98:5c:99:c0:07:72:e5:30:10:ef:
                    86:d8:4c:13:95:0a:66:60:54:e3:b5:b0:70:8e:2c:10:
                    c2:86:34:8b:19:22:ad:e1:2a:1c:8a:0a:fe:32:ee:95:
                    7b:42:ba:30:db:c4:04:46:91:d7:20:03:73:e8:51:b2:
                    d1:d0:40:d7:5f:8f:a8:39:e7:00:33:52:93:bf:4c:e9:
                    46:8c:a0:4c:8d:4a:54:25:0b:25:d4:1c:35:70:39:7b:
                    e4:55:51:8b:72:f7:f4:a2:56:7f:13:72:46:0d:10:2e:
                    0d:0e:60:29:54:f5:ff:c6:cf:4d:32:b8:c8:64:86:36:
                    ee:29:8c:6e:05:46:86:b9:70:10:9d:eb:11:c3:5e:0c:
                    8c:dc:36:dd:e7:e1:13:73:1c:8a:ae:6b:e0:9c:9b:81:
                    96:75:58:21:7f:e7:c8:aa:9f:c2:fb:19:9f:12:85:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:db:84:44:c0:d2:7d:90:e3:82:77:9b:71:30:b6:46:
        24:a0:d6:81:0a:5a:41:56:83:e5:76:92:40:4f:f1:ba:
        41:e1:36:f8:94:4b:a2:e3:33:62:87:eb:12:b0:4e:29:
        8b:8c:13:1f:ce:fe:46:93:e3:da:68:a0:8d:43:be:60:
        75:76:15:27:37:e7:15:f6:63:f8:fc:f9:a5:73:e6:37:
        09:c7:87:f7:ab:4d:71:12:9b:7c:3c:cc:b2:b9:71:c0:
        d8:a7:e3:2c:09:5e:94:a0:f5:8b:2e:c1:a4:25:82:61:
        d9:75:b6:39:35:92:e1:8b:92:88:8c:44:bf:7b:38:36:
        52:e0:7b:75:7e:a3:c5:04:ae:02:16:54:e2:91:22:6d:
        4c:30:9d:b5:40:c7:f3:9e:df:c5:66:87:b9:40:6a:50:
        13:bd:96:34:a8:b0:b2:b3:8a:71:67:d1:35:a6:0e:0e:
        e8:15:e5:12:77:64:ae:fb:ee:d9:ff:af:74:ae:02:d7:
        90:20:5d:eb:64:e0:b3:b0:bb:f6:1f:c6:94:7f:c8:07:
        bb:f6:fa:6f:fd:27:b6:2d:19:fb:1b:d6:4d:e8:cc:53:
        b9:2a:6e:e0:47:89:61:79:63:f5:8d:96:93:15:00:6f:
        f9:8d:64:18:c7:40:e2:7e:dd:db:37:ec:3a:7a:36:19
    Fingerprint (SHA-256):
        BF:0C:F9:E7:C7:96:35:FA:B7:A5:14:E2:41:97:73:B9:F2:A3:7C:7C:BE:F1:C9:23:B9:A5:BE:FA:A2:71:A5:33
    Fingerprint (SHA1):
        C4:AB:D9:35:28:60:EE:1D:F9:14:CB:17:9D:86:29:71:CA:0A:03:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14694: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124665 (0x310fe2b9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:31 2017
            Not After : Tue Aug 23 12:49:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b0:06:2a:8c:5a:ac:fa:6b:0c:3e:23:93:28:a5:2a:
                    ae:03:96:ea:fe:f9:f5:b2:f6:6b:32:dc:a7:a2:37:89:
                    a1:9d:77:74:5b:b6:1e:e7:79:ae:12:65:da:d5:6c:93:
                    1f:9b:52:b3:c9:2f:52:d3:29:e6:f4:be:35:51:cb:71:
                    10:39:57:f4:82:a7:58:bb:02:46:da:fd:1a:80:de:98:
                    6f:3c:d9:a8:8b:9e:a6:d2:62:d7:06:5b:e6:9b:35:0a:
                    40:f2:c9:45:ce:38:85:c4:7c:3f:2b:33:97:dd:73:67:
                    e9:e2:f7:ee:95:fc:44:dc:fa:c1:78:b7:d1:db:79:24:
                    27:cc:12:c6:69:29:8c:90:d9:33:98:be:d9:c0:1c:d8:
                    d5:6c:51:2a:b7:82:84:39:95:00:ac:0e:97:37:fe:0c:
                    6c:de:8d:74:28:b1:42:e4:29:6e:73:2d:ac:9e:bc:60:
                    04:af:6e:da:06:fd:bf:b6:c8:a4:33:14:d2:98:ec:78:
                    90:8a:86:28:c2:4c:d8:16:09:1a:90:36:3f:04:67:6f:
                    63:76:a2:67:84:bb:45:23:71:df:ee:56:ba:00:8a:f7:
                    03:46:81:6a:5f:b3:de:34:72:64:ca:cf:cf:5d:d1:43:
                    f8:53:5e:c7:58:e5:16:53:1d:70:cb:9f:4a:5d:5a:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:a8:8a:82:29:e9:4a:3c:b2:b1:2e:0f:b9:41:e1:43:
        3a:3c:50:ea:41:b9:e0:9c:48:ee:22:eb:63:45:5b:c0:
        22:68:55:5c:41:19:83:10:8f:e6:94:84:02:1d:d1:47:
        8c:c2:b1:57:e2:26:ba:1c:37:06:d5:fa:dd:41:f4:e1:
        f0:b2:84:e9:cb:e7:84:02:ed:a3:fc:f7:6a:8f:8b:b0:
        fb:74:d4:c3:02:a3:0c:71:62:6a:5d:14:53:88:db:12:
        b6:1d:3d:68:fe:70:96:f2:59:27:02:b9:33:2d:af:27:
        8b:5f:ab:b8:2c:27:fa:21:26:f4:17:3b:0e:95:fb:85:
        ee:d3:b4:23:34:ab:91:a4:d1:1a:80:d0:a7:57:54:22:
        53:12:87:5e:df:80:bd:83:2f:75:4f:02:9f:f5:c8:2b:
        5c:24:76:69:f2:19:b5:2e:fd:2e:55:05:47:95:c0:13:
        de:91:32:e2:b7:b6:3b:3c:1a:01:b4:52:7e:36:95:fe:
        77:a3:a2:89:06:97:d7:4d:3c:d2:1f:0d:48:20:74:b9:
        65:be:52:e9:64:70:a2:7d:79:00:8c:32:2d:fe:40:14:
        db:05:7e:ef:32:f6:c3:70:4f:2b:e6:e3:4d:41:2c:30:
        4d:21:a2:49:bf:74:8e:55:b1:9d:f1:fa:8b:90:0c:e3
    Fingerprint (SHA-256):
        DF:4E:79:97:1C:57:FB:CE:FE:73:B7:F2:97:90:E4:7B:51:9E:7D:A0:D1:54:03:B4:E6:2C:7C:E6:82:5F:38:1E
    Fingerprint (SHA1):
        E9:DF:B9:5D:62:62:7E:89:A8:9B:CF:C9:CD:90:68:38:C9:75:90:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14695: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124665 (0x310fe2b9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:31 2017
            Not After : Tue Aug 23 12:49:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b0:06:2a:8c:5a:ac:fa:6b:0c:3e:23:93:28:a5:2a:
                    ae:03:96:ea:fe:f9:f5:b2:f6:6b:32:dc:a7:a2:37:89:
                    a1:9d:77:74:5b:b6:1e:e7:79:ae:12:65:da:d5:6c:93:
                    1f:9b:52:b3:c9:2f:52:d3:29:e6:f4:be:35:51:cb:71:
                    10:39:57:f4:82:a7:58:bb:02:46:da:fd:1a:80:de:98:
                    6f:3c:d9:a8:8b:9e:a6:d2:62:d7:06:5b:e6:9b:35:0a:
                    40:f2:c9:45:ce:38:85:c4:7c:3f:2b:33:97:dd:73:67:
                    e9:e2:f7:ee:95:fc:44:dc:fa:c1:78:b7:d1:db:79:24:
                    27:cc:12:c6:69:29:8c:90:d9:33:98:be:d9:c0:1c:d8:
                    d5:6c:51:2a:b7:82:84:39:95:00:ac:0e:97:37:fe:0c:
                    6c:de:8d:74:28:b1:42:e4:29:6e:73:2d:ac:9e:bc:60:
                    04:af:6e:da:06:fd:bf:b6:c8:a4:33:14:d2:98:ec:78:
                    90:8a:86:28:c2:4c:d8:16:09:1a:90:36:3f:04:67:6f:
                    63:76:a2:67:84:bb:45:23:71:df:ee:56:ba:00:8a:f7:
                    03:46:81:6a:5f:b3:de:34:72:64:ca:cf:cf:5d:d1:43:
                    f8:53:5e:c7:58:e5:16:53:1d:70:cb:9f:4a:5d:5a:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:a8:8a:82:29:e9:4a:3c:b2:b1:2e:0f:b9:41:e1:43:
        3a:3c:50:ea:41:b9:e0:9c:48:ee:22:eb:63:45:5b:c0:
        22:68:55:5c:41:19:83:10:8f:e6:94:84:02:1d:d1:47:
        8c:c2:b1:57:e2:26:ba:1c:37:06:d5:fa:dd:41:f4:e1:
        f0:b2:84:e9:cb:e7:84:02:ed:a3:fc:f7:6a:8f:8b:b0:
        fb:74:d4:c3:02:a3:0c:71:62:6a:5d:14:53:88:db:12:
        b6:1d:3d:68:fe:70:96:f2:59:27:02:b9:33:2d:af:27:
        8b:5f:ab:b8:2c:27:fa:21:26:f4:17:3b:0e:95:fb:85:
        ee:d3:b4:23:34:ab:91:a4:d1:1a:80:d0:a7:57:54:22:
        53:12:87:5e:df:80:bd:83:2f:75:4f:02:9f:f5:c8:2b:
        5c:24:76:69:f2:19:b5:2e:fd:2e:55:05:47:95:c0:13:
        de:91:32:e2:b7:b6:3b:3c:1a:01:b4:52:7e:36:95:fe:
        77:a3:a2:89:06:97:d7:4d:3c:d2:1f:0d:48:20:74:b9:
        65:be:52:e9:64:70:a2:7d:79:00:8c:32:2d:fe:40:14:
        db:05:7e:ef:32:f6:c3:70:4f:2b:e6:e3:4d:41:2c:30:
        4d:21:a2:49:bf:74:8e:55:b1:9d:f1:fa:8b:90:0c:e3
    Fingerprint (SHA-256):
        DF:4E:79:97:1C:57:FB:CE:FE:73:B7:F2:97:90:E4:7B:51:9E:7D:A0:D1:54:03:B4:E6:2C:7C:E6:82:5F:38:1E
    Fingerprint (SHA1):
        E9:DF:B9:5D:62:62:7E:89:A8:9B:CF:C9:CD:90:68:38:C9:75:90:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14696: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14697: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124672 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14698: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14699: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14700: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124673 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14701: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14702: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #14703: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14704: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 823124674   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14705: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14706: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #14707: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14708: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 823124675   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14709: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14710: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14711: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14712: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 823124676 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14713: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14714: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 823124677 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14715: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14716: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #14717: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14718: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14719: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 823124678   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14720: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14721: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14722: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14723: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 823124679   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14724: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14725: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14726: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14727: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124680   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14728: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14729: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14730: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14731: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823124681   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14732: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14733: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14734: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124672 (0x310fe2c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:38 2017
            Not After : Tue Aug 23 12:49:38 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:e2:cd:b7:df:b8:83:8b:b9:26:12:a6:d1:70:84:6f:
                    80:f1:9a:cc:0b:92:cb:44:7b:64:e6:e7:a1:b5:13:31:
                    9c:3d:77:4a:2f:ae:49:f4:4e:eb:39:57:ff:e2:ae:7f:
                    35:48:41:8d:cc:92:81:80:01:c3:44:eb:92:d4:bc:2c:
                    59:a3:f1:02:77:ed:41:ca:2c:16:1c:26:aa:55:5a:10:
                    a2:db:f6:78:46:c9:25:d1:b1:ab:58:1e:6e:09:4a:49:
                    01:10:f8:08:77:41:59:e8:f0:70:44:a8:22:0a:76:d9:
                    ac:d4:c5:c6:70:7c:3a:ab:1f:5d:ab:7b:63:e7:4a:e8:
                    fc:89:bb:f9:87:a6:6f:17:6f:91:48:e9:0c:a2:07:50:
                    ca:e1:b3:1c:d7:b0:74:02:03:7b:fc:54:9e:03:a3:9c:
                    28:03:c9:f4:8e:38:22:36:6e:52:81:e5:a8:13:7d:28:
                    93:4e:c8:1e:72:69:77:71:8d:34:f8:7c:0b:c6:62:42:
                    69:3b:54:47:aa:bf:ca:30:67:49:11:ca:df:98:cb:9f:
                    2b:e5:f7:d2:96:d6:23:9c:9b:d7:96:ae:c4:fd:85:9c:
                    f1:8f:f9:3f:ec:1c:0b:d1:a1:71:49:e5:9e:0f:81:94:
                    73:e6:cd:d2:89:da:87:31:66:66:be:7f:69:37:75:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bb:27:84:1c:d8:8f:06:83:11:05:49:52:81:7d:bd:39:
        33:5f:6e:8c:d1:29:27:f6:26:9c:97:a6:d0:2a:f1:6e:
        96:3c:95:27:8d:25:36:95:c9:a4:37:66:05:f6:6a:11:
        18:1a:e6:bb:ed:7c:cd:52:99:c1:b8:10:b8:c1:a6:7a:
        c9:c3:f9:f9:fd:c3:1f:11:e8:90:9e:71:f5:9f:b4:74:
        75:6d:5a:f4:95:f1:bd:fa:8a:e8:cb:ff:d6:61:a3:12:
        1c:59:00:58:e8:39:f4:92:af:16:76:3f:72:7f:31:fb:
        82:26:27:8b:ea:2f:84:d4:f8:87:6e:d4:63:77:3a:65:
        53:19:f3:82:b5:63:3b:bc:da:fc:83:8b:a5:11:d2:c4:
        25:3f:c5:d3:31:f1:f7:b7:6e:9e:c2:61:7f:8b:f1:5e:
        75:10:ed:e3:b7:23:2d:a8:a9:f4:ea:7a:3c:c6:c5:6e:
        bc:ce:ec:ab:d2:ec:74:1b:a1:a4:2f:38:b9:0a:ce:e5:
        cc:3b:8c:c2:a8:78:4f:3e:e8:b2:41:7c:84:be:7a:c4:
        78:9e:79:f9:18:af:3c:e9:2b:6e:38:85:a9:1f:05:89:
        d0:87:0e:95:37:1f:46:d7:59:60:eb:3a:cc:b5:a5:04:
        df:5f:c6:e3:fd:20:03:8c:76:39:cf:96:af:15:a2:02
    Fingerprint (SHA-256):
        2C:3B:FD:2C:C7:BC:3D:4F:5E:5B:02:1C:20:C2:E8:72:99:D3:A0:4A:1E:FB:F5:20:98:BE:96:3F:04:04:4C:B0
    Fingerprint (SHA1):
        5E:10:9D:F9:F9:ED:54:CD:FA:9B:CD:28:86:C9:5E:89:1D:FD:78:97
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #14735: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14736: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14737: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14738: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14739: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14740: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14741: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14742: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14743: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124673 (0x310fe2c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:39 2017
            Not After : Tue Aug 23 12:49:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:41:f2:1d:c7:5e:70:42:30:de:be:b0:b8:74:67:01:
                    fe:53:7c:4e:c2:2a:9e:35:64:e1:b7:57:ce:35:fa:8d:
                    47:b4:03:d7:07:73:54:c1:d8:57:35:cd:f3:ec:3b:1b:
                    1e:9c:10:f4:c7:71:62:b9:86:c8:b1:7c:e1:25:3e:2d:
                    fe:a1:f5:69:f4:39:95:33:54:7d:f0:e5:b1:ba:57:8b:
                    bf:d2:d7:7e:ea:84:8b:2c:ab:48:41:7f:52:bb:46:72:
                    e5:bf:31:e5:4e:5a:73:c8:d1:fc:9f:bc:f1:5d:d6:16:
                    1e:af:fd:6d:52:70:c1:96:54:05:da:1b:5d:39:ec:7e:
                    2c:3e:ed:4c:56:5d:1b:50:3e:a7:1a:6a:5d:e8:67:4e:
                    bf:75:26:52:bb:f0:8b:fe:7c:ab:93:4b:ca:6c:7a:cc:
                    6b:00:3e:ff:77:bf:f7:74:c2:2b:e9:59:10:a9:07:31:
                    c5:5e:6f:59:6a:18:6c:8a:e8:fe:16:ad:d0:d4:96:20:
                    56:0c:4a:ce:77:4d:ca:7f:a0:a2:ad:68:c6:de:4a:c4:
                    fb:0a:5e:d0:a9:7a:75:8e:bf:1d:bc:88:52:23:b3:3a:
                    ed:66:81:2b:ee:0e:88:95:78:e2:79:77:64:f7:6c:b9:
                    dc:99:19:e4:22:45:b9:c3:df:6e:8f:1b:de:a9:16:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:8f:2b:be:74:34:3f:15:2e:d7:66:6c:7e:f7:28:d5:
        86:47:f1:79:40:13:a7:b3:db:1f:28:49:54:46:03:e7:
        40:06:13:48:bd:10:5c:38:0e:b4:f7:16:6b:4b:19:e1:
        6f:7a:37:ca:3e:fe:1c:74:08:96:23:40:4c:70:64:a6:
        1f:01:32:c3:98:b3:8c:af:4e:b7:de:0d:b0:92:40:77:
        02:16:d5:aa:5a:cb:58:dc:ab:39:30:3b:00:43:9b:eb:
        ee:40:db:8c:de:38:cd:68:ec:f5:4f:50:79:62:ac:18:
        8a:a6:d6:7c:c3:74:2d:89:61:a2:39:db:c6:0a:79:68:
        d6:0d:1d:23:76:22:db:1a:ef:ae:77:30:86:39:2f:cf:
        2c:9e:ec:fb:f2:83:cd:bd:b1:0e:5e:c7:cb:b8:32:33:
        26:36:17:b2:1c:0b:14:c6:d5:6c:48:14:56:b0:d4:5c:
        11:55:e3:66:a5:bf:ab:3f:d6:15:99:9b:af:36:f2:69:
        24:27:c4:a2:1a:29:f1:bd:87:72:9d:63:fa:55:c6:15:
        a9:56:38:5b:0d:50:43:b3:b4:fe:2f:d9:1c:7c:ed:c5:
        38:71:37:10:a9:a0:ce:fc:b4:2f:e5:b0:03:75:e7:af:
        96:b6:3f:c2:cf:fb:c4:08:aa:c5:26:0d:12:81:25:de
    Fingerprint (SHA-256):
        70:C3:AE:3C:8F:EC:D6:A7:6E:E6:66:A5:A7:D3:D6:4C:1A:4E:9C:60:93:EB:78:EA:13:48:CE:E4:CD:5C:F1:50
    Fingerprint (SHA1):
        37:3A:67:73:0A:B5:0D:83:B3:14:C9:5A:B7:77:6F:64:DD:38:7B:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #14744: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14745: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14746: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14747: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14748: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14749: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14750: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #14751: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #14752: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #14753: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #14754: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #14755: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #14756: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #14757: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14758: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14759: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #14760: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #14761: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14762: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124682 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14763: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14764: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14765: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14766: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 823124683   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14767: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14768: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14769: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14770: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 823124684   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14771: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14772: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14773: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14774: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 823124685   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14775: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14776: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14777: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14778: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 823124686   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14779: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14780: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14781: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14782: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 823124687   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14783: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14784: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #14785: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14786: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 823124688   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14787: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14788: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #14789: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14790: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 823124689   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14791: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14792: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #14793: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14794: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 823124690   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14795: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14796: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14797: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124682 (0x310fe2ca)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:49 2017
            Not After : Tue Aug 23 12:49:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    3e:d3:1f:7f:f9:30:a7:2a:a0:4c:08:bf:ae:5e:f6:2c:
                    d5:dc:3f:75:56:51:e0:84:76:cf:01:6b:17:4c:3d:8c:
                    35:b8:b9:a6:10:22:51:e4:81:2e:d4:a8:8f:a9:31:5a:
                    93:11:d1:87:c2:b2:ba:c2:e6:34:56:d3:88:69:72:63:
                    66:a3:0a:31:8f:9d:93:44:a0:e9:02:b4:eb:10:d1:2a:
                    5c:f9:96:07:87:3b:88:fc:53:7e:cf:35:14:08:97:cc:
                    9d:b8:38:57:93:72:28:65:8b:bc:d8:3e:1e:74:c2:a6:
                    d9:5d:12:a8:61:5b:f7:75:57:ad:92:d3:6a:5c:21:7b:
                    52:f6:22:bb:3c:73:ad:79:99:1e:ca:2c:c0:a0:63:15:
                    df:d4:50:5d:91:aa:77:4a:a3:30:92:7d:25:b6:93:f6:
                    27:b6:30:0c:5f:74:c1:fb:bd:2c:dc:41:64:77:c5:ed:
                    dc:38:c4:91:71:b5:60:6a:9d:68:4e:bf:ad:77:e7:be:
                    77:1d:76:25:59:36:db:e4:e3:4c:45:22:6c:c0:d4:bd:
                    06:ca:65:06:36:78:74:d4:eb:38:31:76:67:45:73:5c:
                    57:06:b9:a6:1e:a4:f7:41:d9:9e:c5:63:44:6e:c6:fe:
                    a9:b8:d0:8e:4c:79:46:ca:c5:49:f6:a0:17:89:2e:8b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e2:6f:ee:74:a4:51:98:67:4d:bc:92:
        0d:34:27:80:aa:73:85:64:9a:ef:79:b6:8d:8f:07:f6:
        6a:02:1c:22:68:ff:77:6a:61:4a:58:d7:08:1e:c2:24:
        6d:58:21:c8:4b:29:64:1f:0f:b1:f4:61:f4:0f:62
    Fingerprint (SHA-256):
        33:CE:EE:88:83:04:2E:FF:E6:31:A0:44:BC:47:FA:3F:7F:30:AA:38:9A:25:37:E0:A4:33:60:42:8C:C3:41:73
    Fingerprint (SHA1):
        89:DD:4E:05:58:B4:25:07:AC:E6:84:C2:71:2B:FD:37:55:91:20:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14798: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124682 (0x310fe2ca)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:49 2017
            Not After : Tue Aug 23 12:49:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    3e:d3:1f:7f:f9:30:a7:2a:a0:4c:08:bf:ae:5e:f6:2c:
                    d5:dc:3f:75:56:51:e0:84:76:cf:01:6b:17:4c:3d:8c:
                    35:b8:b9:a6:10:22:51:e4:81:2e:d4:a8:8f:a9:31:5a:
                    93:11:d1:87:c2:b2:ba:c2:e6:34:56:d3:88:69:72:63:
                    66:a3:0a:31:8f:9d:93:44:a0:e9:02:b4:eb:10:d1:2a:
                    5c:f9:96:07:87:3b:88:fc:53:7e:cf:35:14:08:97:cc:
                    9d:b8:38:57:93:72:28:65:8b:bc:d8:3e:1e:74:c2:a6:
                    d9:5d:12:a8:61:5b:f7:75:57:ad:92:d3:6a:5c:21:7b:
                    52:f6:22:bb:3c:73:ad:79:99:1e:ca:2c:c0:a0:63:15:
                    df:d4:50:5d:91:aa:77:4a:a3:30:92:7d:25:b6:93:f6:
                    27:b6:30:0c:5f:74:c1:fb:bd:2c:dc:41:64:77:c5:ed:
                    dc:38:c4:91:71:b5:60:6a:9d:68:4e:bf:ad:77:e7:be:
                    77:1d:76:25:59:36:db:e4:e3:4c:45:22:6c:c0:d4:bd:
                    06:ca:65:06:36:78:74:d4:eb:38:31:76:67:45:73:5c:
                    57:06:b9:a6:1e:a4:f7:41:d9:9e:c5:63:44:6e:c6:fe:
                    a9:b8:d0:8e:4c:79:46:ca:c5:49:f6:a0:17:89:2e:8b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e2:6f:ee:74:a4:51:98:67:4d:bc:92:
        0d:34:27:80:aa:73:85:64:9a:ef:79:b6:8d:8f:07:f6:
        6a:02:1c:22:68:ff:77:6a:61:4a:58:d7:08:1e:c2:24:
        6d:58:21:c8:4b:29:64:1f:0f:b1:f4:61:f4:0f:62
    Fingerprint (SHA-256):
        33:CE:EE:88:83:04:2E:FF:E6:31:A0:44:BC:47:FA:3F:7F:30:AA:38:9A:25:37:E0:A4:33:60:42:8C:C3:41:73
    Fingerprint (SHA1):
        89:DD:4E:05:58:B4:25:07:AC:E6:84:C2:71:2B:FD:37:55:91:20:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14799: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124682 (0x310fe2ca)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:49 2017
            Not After : Tue Aug 23 12:49:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    3e:d3:1f:7f:f9:30:a7:2a:a0:4c:08:bf:ae:5e:f6:2c:
                    d5:dc:3f:75:56:51:e0:84:76:cf:01:6b:17:4c:3d:8c:
                    35:b8:b9:a6:10:22:51:e4:81:2e:d4:a8:8f:a9:31:5a:
                    93:11:d1:87:c2:b2:ba:c2:e6:34:56:d3:88:69:72:63:
                    66:a3:0a:31:8f:9d:93:44:a0:e9:02:b4:eb:10:d1:2a:
                    5c:f9:96:07:87:3b:88:fc:53:7e:cf:35:14:08:97:cc:
                    9d:b8:38:57:93:72:28:65:8b:bc:d8:3e:1e:74:c2:a6:
                    d9:5d:12:a8:61:5b:f7:75:57:ad:92:d3:6a:5c:21:7b:
                    52:f6:22:bb:3c:73:ad:79:99:1e:ca:2c:c0:a0:63:15:
                    df:d4:50:5d:91:aa:77:4a:a3:30:92:7d:25:b6:93:f6:
                    27:b6:30:0c:5f:74:c1:fb:bd:2c:dc:41:64:77:c5:ed:
                    dc:38:c4:91:71:b5:60:6a:9d:68:4e:bf:ad:77:e7:be:
                    77:1d:76:25:59:36:db:e4:e3:4c:45:22:6c:c0:d4:bd:
                    06:ca:65:06:36:78:74:d4:eb:38:31:76:67:45:73:5c:
                    57:06:b9:a6:1e:a4:f7:41:d9:9e:c5:63:44:6e:c6:fe:
                    a9:b8:d0:8e:4c:79:46:ca:c5:49:f6:a0:17:89:2e:8b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e2:6f:ee:74:a4:51:98:67:4d:bc:92:
        0d:34:27:80:aa:73:85:64:9a:ef:79:b6:8d:8f:07:f6:
        6a:02:1c:22:68:ff:77:6a:61:4a:58:d7:08:1e:c2:24:
        6d:58:21:c8:4b:29:64:1f:0f:b1:f4:61:f4:0f:62
    Fingerprint (SHA-256):
        33:CE:EE:88:83:04:2E:FF:E6:31:A0:44:BC:47:FA:3F:7F:30:AA:38:9A:25:37:E0:A4:33:60:42:8C:C3:41:73
    Fingerprint (SHA1):
        89:DD:4E:05:58:B4:25:07:AC:E6:84:C2:71:2B:FD:37:55:91:20:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #14800: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124682 (0x310fe2ca)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:49 2017
            Not After : Tue Aug 23 12:49:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    3e:d3:1f:7f:f9:30:a7:2a:a0:4c:08:bf:ae:5e:f6:2c:
                    d5:dc:3f:75:56:51:e0:84:76:cf:01:6b:17:4c:3d:8c:
                    35:b8:b9:a6:10:22:51:e4:81:2e:d4:a8:8f:a9:31:5a:
                    93:11:d1:87:c2:b2:ba:c2:e6:34:56:d3:88:69:72:63:
                    66:a3:0a:31:8f:9d:93:44:a0:e9:02:b4:eb:10:d1:2a:
                    5c:f9:96:07:87:3b:88:fc:53:7e:cf:35:14:08:97:cc:
                    9d:b8:38:57:93:72:28:65:8b:bc:d8:3e:1e:74:c2:a6:
                    d9:5d:12:a8:61:5b:f7:75:57:ad:92:d3:6a:5c:21:7b:
                    52:f6:22:bb:3c:73:ad:79:99:1e:ca:2c:c0:a0:63:15:
                    df:d4:50:5d:91:aa:77:4a:a3:30:92:7d:25:b6:93:f6:
                    27:b6:30:0c:5f:74:c1:fb:bd:2c:dc:41:64:77:c5:ed:
                    dc:38:c4:91:71:b5:60:6a:9d:68:4e:bf:ad:77:e7:be:
                    77:1d:76:25:59:36:db:e4:e3:4c:45:22:6c:c0:d4:bd:
                    06:ca:65:06:36:78:74:d4:eb:38:31:76:67:45:73:5c:
                    57:06:b9:a6:1e:a4:f7:41:d9:9e:c5:63:44:6e:c6:fe:
                    a9:b8:d0:8e:4c:79:46:ca:c5:49:f6:a0:17:89:2e:8b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:e2:6f:ee:74:a4:51:98:67:4d:bc:92:
        0d:34:27:80:aa:73:85:64:9a:ef:79:b6:8d:8f:07:f6:
        6a:02:1c:22:68:ff:77:6a:61:4a:58:d7:08:1e:c2:24:
        6d:58:21:c8:4b:29:64:1f:0f:b1:f4:61:f4:0f:62
    Fingerprint (SHA-256):
        33:CE:EE:88:83:04:2E:FF:E6:31:A0:44:BC:47:FA:3F:7F:30:AA:38:9A:25:37:E0:A4:33:60:42:8C:C3:41:73
    Fingerprint (SHA1):
        89:DD:4E:05:58:B4:25:07:AC:E6:84:C2:71:2B:FD:37:55:91:20:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #14801: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14802: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14803: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14804: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14805: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14806: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14807: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14808: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14809: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14810: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14811: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14812: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14813: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14814: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14815: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14816: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #14817: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14818: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14819: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14820: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14821: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14822: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14823: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14824: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14825: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14826: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14827: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14828: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823125004Z
nextupdate=20180823125004Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:50:04 2017
    Next Update: Thu Aug 23 12:50:04 2018
    CRL Extensions:
chains.sh: #14829: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823125004Z
nextupdate=20180823125004Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:50:04 2017
    Next Update: Thu Aug 23 12:50:04 2018
    CRL Extensions:
chains.sh: #14830: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823125004Z
nextupdate=20180823125004Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:50:04 2017
    Next Update: Thu Aug 23 12:50:04 2018
    CRL Extensions:
chains.sh: #14831: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823125005Z
nextupdate=20180823125005Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:50:05 2017
    Next Update: Thu Aug 23 12:50:05 2018
    CRL Extensions:
chains.sh: #14832: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823125006Z
addcert 14 20170823125006Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:50:06 2017
    Next Update: Thu Aug 23 12:50:04 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed Aug 23 12:50:06 2017
    CRL Extensions:
chains.sh: #14833: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823125007Z
addcert 15 20170823125007Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:50:07 2017
    Next Update: Thu Aug 23 12:50:04 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed Aug 23 12:50:07 2017
    CRL Extensions:
chains.sh: #14834: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14835: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14836: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14837: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #14838: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #14839: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #14840: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #14841: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #14842: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #14843: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:58 2017
            Not After : Tue Aug 23 12:49:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:c4:3d:c5:fd:45:3d:15:74:6b:3a:a2:03:3a:39:c9:
                    4f:a7:b6:e3:e2:f2:83:6f:21:b0:5f:fe:6c:7b:53:96:
                    ba:c9:d2:2b:a1:84:46:24:c9:cb:85:af:07:54:82:31:
                    9a:bd:68:72:33:8a:79:40:40:1a:a2:63:d7:ca:43:08:
                    05:ec:22:11:d6:2c:2e:8e:9a:07:c6:e0:30:d9:93:c9:
                    e4:65:7b:f8:3a:0f:4e:f5:c6:c2:86:58:65:cc:fc:e7:
                    d9:0f:a4:53:ec:40:72:df:3c:e4:ad:ed:fb:bd:00:fc:
                    97:38:6b:da:40:e0:ba:45:e7:38:d2:91:1d:aa:1c:aa:
                    15:d7:5e:b3:14:53:32:db:6f:e5:60:6c:68:4e:1e:46:
                    94:c8:35:46:4d:82:28:a0:15:56:b1:25:4d:ae:6e:70:
                    b2:3e:4e:4a:91:11:5a:65:39:9e:c5:79:9c:e7:bc:23:
                    a2:63:ab:b9:92:8a:b0:4c:48:e1:a0:e2:54:7e:76:83:
                    c3:e2:2f:b6:ee:07:85:27:4a:98:d4:df:43:a2:42:b3:
                    91:fe:e8:9f:04:6c:57:96:56:f5:d2:24:04:9e:f8:e3:
                    18:59:66:7e:6d:a4:25:ee:9e:a8:6c:e6:5d:82:a9:ef:
                    d7:c6:0c:8c:a0:fe:ef:91:4f:78:bb:8c:d6:10:f1:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:5c:4d:98:a8:15:c7:ae:46:66:4c:7e:f9:11:0a:37:
        23:a5:42:24:3e:6c:b3:f9:e9:c6:d4:6f:e1:89:62:fb:
        72:8e:d9:53:8b:d2:79:6c:af:1d:e4:cd:f0:3c:41:f8:
        33:4e:4f:65:d5:93:df:7b:bb:db:15:f7:16:59:7d:25:
        e7:16:fc:e5:f6:f3:a1:87:77:a7:d1:87:01:aa:ec:3c:
        6e:e7:63:11:4f:be:92:b1:06:60:de:92:c1:18:9b:3d:
        a4:b0:79:4d:83:e8:91:b6:89:33:16:12:fb:93:d3:9d:
        80:1f:65:32:b7:a2:e2:36:a8:aa:ef:3a:9d:1e:15:d6:
        b2:72:e9:7b:d5:e2:b4:0b:81:6c:2d:a8:b4:64:a7:3e:
        a5:4c:2f:fc:82:aa:b9:16:79:e6:c6:48:26:7e:de:e5:
        28:6f:cb:c4:fe:79:88:36:07:ae:97:5b:d1:34:f8:41:
        2c:92:fd:90:36:a5:5b:0b:a0:5c:86:a9:ab:b2:92:bf:
        10:29:b7:6a:1c:8d:63:bc:3c:fb:94:b3:00:56:11:e9:
        f0:e1:b7:ee:34:ec:80:9d:cb:a0:36:c7:9d:23:00:95:
        60:3a:bc:07:e7:23:0f:a4:ab:81:83:86:58:2f:b9:d6:
        9d:f6:f3:a9:df:c2:64:f3:14:90:e0:83:06:4e:c2:43
    Fingerprint (SHA-256):
        97:D1:A2:AC:9C:12:87:CC:92:BD:EE:80:CF:C1:3B:0C:7C:F4:BF:59:4D:7F:3E:88:B6:EA:EE:32:D3:A8:B1:03
    Fingerprint (SHA1):
        74:89:19:1C:85:14:0D:CF:A4:8E:06:37:F9:28:EB:7F:74:40:EE:87
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14844: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14845: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:49:58 2017
            Not After : Tue Aug 23 12:49:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:c4:3d:c5:fd:45:3d:15:74:6b:3a:a2:03:3a:39:c9:
                    4f:a7:b6:e3:e2:f2:83:6f:21:b0:5f:fe:6c:7b:53:96:
                    ba:c9:d2:2b:a1:84:46:24:c9:cb:85:af:07:54:82:31:
                    9a:bd:68:72:33:8a:79:40:40:1a:a2:63:d7:ca:43:08:
                    05:ec:22:11:d6:2c:2e:8e:9a:07:c6:e0:30:d9:93:c9:
                    e4:65:7b:f8:3a:0f:4e:f5:c6:c2:86:58:65:cc:fc:e7:
                    d9:0f:a4:53:ec:40:72:df:3c:e4:ad:ed:fb:bd:00:fc:
                    97:38:6b:da:40:e0:ba:45:e7:38:d2:91:1d:aa:1c:aa:
                    15:d7:5e:b3:14:53:32:db:6f:e5:60:6c:68:4e:1e:46:
                    94:c8:35:46:4d:82:28:a0:15:56:b1:25:4d:ae:6e:70:
                    b2:3e:4e:4a:91:11:5a:65:39:9e:c5:79:9c:e7:bc:23:
                    a2:63:ab:b9:92:8a:b0:4c:48:e1:a0:e2:54:7e:76:83:
                    c3:e2:2f:b6:ee:07:85:27:4a:98:d4:df:43:a2:42:b3:
                    91:fe:e8:9f:04:6c:57:96:56:f5:d2:24:04:9e:f8:e3:
                    18:59:66:7e:6d:a4:25:ee:9e:a8:6c:e6:5d:82:a9:ef:
                    d7:c6:0c:8c:a0:fe:ef:91:4f:78:bb:8c:d6:10:f1:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:5c:4d:98:a8:15:c7:ae:46:66:4c:7e:f9:11:0a:37:
        23:a5:42:24:3e:6c:b3:f9:e9:c6:d4:6f:e1:89:62:fb:
        72:8e:d9:53:8b:d2:79:6c:af:1d:e4:cd:f0:3c:41:f8:
        33:4e:4f:65:d5:93:df:7b:bb:db:15:f7:16:59:7d:25:
        e7:16:fc:e5:f6:f3:a1:87:77:a7:d1:87:01:aa:ec:3c:
        6e:e7:63:11:4f:be:92:b1:06:60:de:92:c1:18:9b:3d:
        a4:b0:79:4d:83:e8:91:b6:89:33:16:12:fb:93:d3:9d:
        80:1f:65:32:b7:a2:e2:36:a8:aa:ef:3a:9d:1e:15:d6:
        b2:72:e9:7b:d5:e2:b4:0b:81:6c:2d:a8:b4:64:a7:3e:
        a5:4c:2f:fc:82:aa:b9:16:79:e6:c6:48:26:7e:de:e5:
        28:6f:cb:c4:fe:79:88:36:07:ae:97:5b:d1:34:f8:41:
        2c:92:fd:90:36:a5:5b:0b:a0:5c:86:a9:ab:b2:92:bf:
        10:29:b7:6a:1c:8d:63:bc:3c:fb:94:b3:00:56:11:e9:
        f0:e1:b7:ee:34:ec:80:9d:cb:a0:36:c7:9d:23:00:95:
        60:3a:bc:07:e7:23:0f:a4:ab:81:83:86:58:2f:b9:d6:
        9d:f6:f3:a9:df:c2:64:f3:14:90:e0:83:06:4e:c2:43
    Fingerprint (SHA-256):
        97:D1:A2:AC:9C:12:87:CC:92:BD:EE:80:CF:C1:3B:0C:7C:F4:BF:59:4D:7F:3E:88:B6:EA:EE:32:D3:A8:B1:03
    Fingerprint (SHA1):
        74:89:19:1C:85:14:0D:CF:A4:8E:06:37:F9:28:EB:7F:74:40:EE:87
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14846: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14847: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14848: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124691 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14849: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14850: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14851: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14852: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 823124692   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14853: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14854: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14855: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124463.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14856: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124437.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14857: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14858: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14859: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124463.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14860: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 823124693   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14861: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14862: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14863: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124463.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14864: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124438.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14865: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14866: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14867: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14868: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 823124694   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14869: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14870: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14871: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124463.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14872: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124439.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14873: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14874: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14875: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0-823124463.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14876: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9233/localhost-30054-CA0Root-823124440.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14877: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14878: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170823125017Z
nextupdate=20180823125017Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed Aug 23 12:50:17 2017
    Next Update: Thu Aug 23 12:50:17 2018
    CRL Extensions:
chains.sh: #14879: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823125017Z
nextupdate=20180823125017Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:50:17 2017
    Next Update: Thu Aug 23 12:50:17 2018
    CRL Extensions:
chains.sh: #14880: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170823125018Z
nextupdate=20180823125018Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed Aug 23 12:50:18 2017
    Next Update: Thu Aug 23 12:50:18 2018
    CRL Extensions:
chains.sh: #14881: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170823125018Z
nextupdate=20180823125018Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed Aug 23 12:50:18 2017
    Next Update: Thu Aug 23 12:50:18 2018
    CRL Extensions:
chains.sh: #14882: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823125019Z
addcert 20 20170823125019Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:50:19 2017
    Next Update: Thu Aug 23 12:50:17 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:50:19 2017
    CRL Extensions:
chains.sh: #14883: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170823125020Z
addcert 40 20170823125020Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed Aug 23 12:50:20 2017
    Next Update: Thu Aug 23 12:50:17 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed Aug 23 12:50:19 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed Aug 23 12:50:20 2017
    CRL Extensions:
chains.sh: #14884: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14885: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14886: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14887: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124691 (0x310fe2d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:10 2017
            Not After : Tue Aug 23 12:50:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:2a:04:4c:5a:d0:08:10:1c:eb:3f:ce:cc:d3:25:ca:
                    bf:d2:d9:b7:08:15:14:6c:06:f6:fb:51:f2:59:7c:25:
                    2c:5c:f0:a0:40:0d:07:d3:fe:9e:8a:79:c3:04:70:77:
                    39:af:4e:98:15:1e:4e:bf:cf:9b:56:8c:a3:2e:dc:2f:
                    30:36:2b:86:aa:7a:d3:de:13:99:ef:9e:10:3c:d3:5e:
                    34:00:c9:37:d7:19:24:00:a2:e6:ce:98:23:f9:8e:d4:
                    05:fa:01:20:02:7b:59:a7:c6:97:5a:33:c7:00:95:16:
                    d1:20:59:0b:b6:a2:27:88:c5:29:6f:b1:7e:13:78:3d:
                    02:de:27:d1:84:a6:08:f4:37:f3:8c:52:59:aa:4d:b7:
                    3f:42:d1:8f:34:08:1e:78:31:61:b1:d6:3e:78:62:ca:
                    52:f8:49:c5:ac:2d:c4:61:69:4e:d3:6c:52:67:14:d6:
                    c7:f5:74:ef:3e:f9:7a:1c:85:41:49:f1:5c:43:0a:f6:
                    a3:a3:58:45:9d:f3:f7:c3:51:0e:78:da:74:5e:31:1a:
                    69:66:d8:0e:1e:e8:36:e6:c2:72:cd:20:3a:13:cd:b4:
                    c6:c2:bd:64:63:17:e0:e5:1d:11:fd:a7:c8:09:7c:cf:
                    43:be:fc:8a:4c:44:b3:fe:97:32:d8:52:91:cb:28:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:1c:74:0b:9e:6e:ad:18:e8:79:ed:47:cc:64:85:1a:
        82:d4:8f:f3:bf:9f:d2:c5:df:36:5d:3a:be:ff:c9:49:
        fa:e6:81:5b:4e:2d:64:d0:1a:3a:2d:3b:1f:04:04:f7:
        93:f5:b5:32:d5:8c:92:e8:78:95:d0:8a:66:2f:d9:4c:
        09:ae:42:32:8b:18:1c:f4:a6:55:2c:4f:ae:52:22:12:
        f7:64:32:22:a8:ad:5c:18:0a:49:d5:86:c6:33:9a:6b:
        70:d5:4f:51:04:03:97:13:c1:ed:6d:ee:d2:ab:c7:c4:
        14:d1:b5:c4:e5:24:48:34:f1:fa:3c:2c:70:24:ab:e7:
        63:5b:73:e2:86:69:e0:7d:bb:d7:e0:95:49:26:5f:69:
        52:07:9d:77:40:cf:af:54:2f:69:d8:61:a4:43:df:9a:
        ac:de:d7:22:1f:11:65:94:73:5e:c1:21:2c:de:e4:b5:
        e5:fc:63:64:85:40:31:7d:b0:2e:3a:f4:39:c5:20:1c:
        82:46:43:57:b2:b3:44:87:4d:a3:ef:ec:e4:56:08:75:
        72:49:da:bd:88:b0:69:85:6e:20:9d:37:3c:b3:7e:d2:
        c6:23:cf:99:c1:40:5e:dc:04:51:6d:d5:a1:bb:a6:c0:
        8a:82:6c:ec:a1:f9:05:73:65:65:ec:5d:dd:35:3e:0c
    Fingerprint (SHA-256):
        D0:DD:AA:36:1B:3E:10:00:FE:54:CB:0B:70:E7:28:90:1B:16:93:93:8B:FD:7D:2A:43:64:13:28:59:61:D0:07
    Fingerprint (SHA1):
        19:73:30:4C:73:2B:6C:9A:BE:8A:15:99:3E:67:84:2A:76:CE:0C:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14888: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14889: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124691 (0x310fe2d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:10 2017
            Not After : Tue Aug 23 12:50:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:2a:04:4c:5a:d0:08:10:1c:eb:3f:ce:cc:d3:25:ca:
                    bf:d2:d9:b7:08:15:14:6c:06:f6:fb:51:f2:59:7c:25:
                    2c:5c:f0:a0:40:0d:07:d3:fe:9e:8a:79:c3:04:70:77:
                    39:af:4e:98:15:1e:4e:bf:cf:9b:56:8c:a3:2e:dc:2f:
                    30:36:2b:86:aa:7a:d3:de:13:99:ef:9e:10:3c:d3:5e:
                    34:00:c9:37:d7:19:24:00:a2:e6:ce:98:23:f9:8e:d4:
                    05:fa:01:20:02:7b:59:a7:c6:97:5a:33:c7:00:95:16:
                    d1:20:59:0b:b6:a2:27:88:c5:29:6f:b1:7e:13:78:3d:
                    02:de:27:d1:84:a6:08:f4:37:f3:8c:52:59:aa:4d:b7:
                    3f:42:d1:8f:34:08:1e:78:31:61:b1:d6:3e:78:62:ca:
                    52:f8:49:c5:ac:2d:c4:61:69:4e:d3:6c:52:67:14:d6:
                    c7:f5:74:ef:3e:f9:7a:1c:85:41:49:f1:5c:43:0a:f6:
                    a3:a3:58:45:9d:f3:f7:c3:51:0e:78:da:74:5e:31:1a:
                    69:66:d8:0e:1e:e8:36:e6:c2:72:cd:20:3a:13:cd:b4:
                    c6:c2:bd:64:63:17:e0:e5:1d:11:fd:a7:c8:09:7c:cf:
                    43:be:fc:8a:4c:44:b3:fe:97:32:d8:52:91:cb:28:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:1c:74:0b:9e:6e:ad:18:e8:79:ed:47:cc:64:85:1a:
        82:d4:8f:f3:bf:9f:d2:c5:df:36:5d:3a:be:ff:c9:49:
        fa:e6:81:5b:4e:2d:64:d0:1a:3a:2d:3b:1f:04:04:f7:
        93:f5:b5:32:d5:8c:92:e8:78:95:d0:8a:66:2f:d9:4c:
        09:ae:42:32:8b:18:1c:f4:a6:55:2c:4f:ae:52:22:12:
        f7:64:32:22:a8:ad:5c:18:0a:49:d5:86:c6:33:9a:6b:
        70:d5:4f:51:04:03:97:13:c1:ed:6d:ee:d2:ab:c7:c4:
        14:d1:b5:c4:e5:24:48:34:f1:fa:3c:2c:70:24:ab:e7:
        63:5b:73:e2:86:69:e0:7d:bb:d7:e0:95:49:26:5f:69:
        52:07:9d:77:40:cf:af:54:2f:69:d8:61:a4:43:df:9a:
        ac:de:d7:22:1f:11:65:94:73:5e:c1:21:2c:de:e4:b5:
        e5:fc:63:64:85:40:31:7d:b0:2e:3a:f4:39:c5:20:1c:
        82:46:43:57:b2:b3:44:87:4d:a3:ef:ec:e4:56:08:75:
        72:49:da:bd:88:b0:69:85:6e:20:9d:37:3c:b3:7e:d2:
        c6:23:cf:99:c1:40:5e:dc:04:51:6d:d5:a1:bb:a6:c0:
        8a:82:6c:ec:a1:f9:05:73:65:65:ec:5d:dd:35:3e:0c
    Fingerprint (SHA-256):
        D0:DD:AA:36:1B:3E:10:00:FE:54:CB:0B:70:E7:28:90:1B:16:93:93:8B:FD:7D:2A:43:64:13:28:59:61:D0:07
    Fingerprint (SHA1):
        19:73:30:4C:73:2B:6C:9A:BE:8A:15:99:3E:67:84:2A:76:CE:0C:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14890: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14891: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14892: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124695 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14893: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14894: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14895: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14896: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 823124696   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14897: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14898: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14899: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14900: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 823124697   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14901: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14902: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14903: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14904: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 823124698   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14905: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14906: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #14907: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 823124699 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14908: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #14909: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #14910: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14911: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 823124700   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14912: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14913: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14914: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14915: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 823124701   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14916: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14917: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #14918: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #14919: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #14920: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124695 (0x310fe2d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:22 2017
            Not After : Tue Aug 23 12:50:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:fd:60:ff:73:ac:00:eb:ee:43:af:54:8e:d8:c8:45:
                    de:f1:e6:98:b7:70:6a:12:6f:27:bd:f3:c7:b2:93:3f:
                    86:12:8a:50:5e:1f:f4:08:6c:33:e3:6c:fb:3f:30:f0:
                    2c:ae:da:f2:9e:7c:a6:e3:e5:f7:5c:71:37:6f:73:1a:
                    29:3e:54:fd:ce:2b:d9:20:4a:84:2d:a6:34:14:4d:66:
                    8f:b3:d3:0d:cd:b8:6f:b3:f3:98:69:50:3b:33:96:dd:
                    2d:5d:13:ba:fd:96:68:51:ee:a3:25:34:82:f1:8f:93:
                    66:d1:d8:1d:e5:c0:31:a2:56:f0:6e:c0:ca:24:0e:37:
                    22:ad:ca:cb:60:92:4c:a8:97:59:06:02:fb:13:87:d9:
                    07:48:d2:54:72:40:d8:15:cb:97:cb:5a:6f:26:b3:a7:
                    65:99:fd:3a:61:e4:a9:18:b8:35:5b:bd:03:9a:fd:d6:
                    6e:d5:2e:d5:1a:be:f8:54:4a:d3:54:8a:e2:43:d3:72:
                    24:a3:97:9b:a6:8e:cd:3f:c7:03:06:8f:b5:2f:e2:1d:
                    a6:3a:43:bc:1b:f9:6a:43:0e:c1:01:95:25:ea:cc:9b:
                    93:bb:f8:77:ef:9b:a3:63:02:b9:31:bf:46:89:52:df:
                    25:67:9a:37:05:7a:66:2a:88:4a:28:f2:55:b8:20:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:1a:47:24:dc:a1:7c:e9:b8:b9:96:e4:06:db:79:1d:
        28:12:2f:39:25:a4:29:3a:35:ab:fe:50:ab:60:c5:45:
        68:cc:c7:37:1a:fc:7d:28:18:36:b8:e9:d1:c3:a5:83:
        2e:c8:7c:6a:59:7d:de:c3:77:e4:0f:27:c7:91:a2:fc:
        4b:d9:ce:16:45:e1:35:19:0c:73:32:bd:b1:d9:cd:a8:
        65:63:00:75:ed:58:7c:5b:58:89:51:09:80:a6:b9:e5:
        0b:9f:5a:4b:cd:8f:c0:9e:7f:fd:21:0e:ef:86:aa:f2:
        9c:92:7f:65:a9:18:d9:40:62:38:60:b1:11:01:7f:3f:
        aa:36:22:bd:af:4b:b2:a2:82:1e:b6:34:9e:9c:60:7d:
        06:48:99:f8:8e:d6:2e:96:06:89:d8:6a:53:ba:f0:4d:
        b2:9a:e4:de:47:43:e3:93:29:c4:a5:3e:0c:7d:aa:b4:
        23:06:b4:8f:dd:de:13:47:df:00:cb:66:7e:a9:ef:27:
        c7:55:92:ff:26:93:fa:57:a2:1e:5e:7e:03:01:b4:88:
        90:fe:15:46:c7:b1:f6:95:6e:e0:63:8d:3e:1a:86:94:
        32:f8:ec:24:ae:ef:1d:6b:9d:89:bf:22:bc:e3:4f:52:
        ed:b7:34:9d:24:1b:10:3c:88:4b:14:b9:53:6a:82:39
    Fingerprint (SHA-256):
        00:AB:A3:FA:F6:C7:08:5D:8E:84:AB:1B:6A:B2:6A:0A:40:CF:2C:ED:90:9A:E5:81:DA:A5:9A:3F:2A:58:F0:6A
    Fingerprint (SHA1):
        DE:DD:48:8B:7A:6B:C4:3F:32:55:49:8D:98:F4:9A:00:B5:1D:FA:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14921: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124697 (0x310fe2d9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:24 2017
            Not After : Tue Aug 23 12:50:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:51:33:b3:96:9e:ee:df:fe:e8:e5:95:37:2d:74:8b:
                    2a:d2:ef:f7:60:51:b1:f5:fb:4b:29:b1:56:34:9f:20:
                    06:7e:8d:e1:c2:1c:b3:a9:55:a7:99:cd:35:27:14:5d:
                    b7:9e:a0:54:9e:16:1a:a4:99:ee:67:1e:33:5e:7c:cd:
                    59:e1:72:d3:92:3e:b5:bb:54:09:45:51:fa:95:e0:5c:
                    0f:45:49:a4:84:a2:a8:67:96:c8:49:a3:6c:b2:78:94:
                    3e:fa:ce:93:5b:67:4f:b2:7a:14:66:64:a6:dd:94:b3:
                    9c:74:f2:d6:fa:aa:6a:a7:1d:1e:de:26:c3:2a:dc:1d:
                    7c:6f:0a:da:6f:fe:ee:55:4f:6e:d8:7c:87:89:fe:a4:
                    c8:bb:0b:d3:5f:b7:ee:79:f7:15:03:b2:a0:54:aa:b8:
                    cf:b7:1b:17:84:9f:d8:e8:43:1e:c1:74:9c:9c:8e:4a:
                    52:28:f0:f1:43:a5:a3:f0:83:e3:6e:70:6d:bb:f4:4a:
                    10:a3:49:0d:37:d7:da:89:bc:1e:04:01:28:cf:57:b3:
                    ee:c6:0c:c5:14:2b:7b:f0:9b:9c:0e:e1:5a:63:d5:16:
                    07:af:3e:9c:73:1a:24:20:d5:98:20:49:73:da:f7:fa:
                    d8:41:db:16:1e:91:00:62:d3:47:fb:92:92:f3:24:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:b4:b7:b8:6d:17:f5:0d:48:65:58:86:21:87:bd:85:
        73:da:91:46:ee:fe:07:64:65:78:b8:a2:10:e1:a9:d6:
        04:7d:57:57:3f:c3:f5:0b:1d:51:c2:09:ff:10:44:16:
        6f:f3:3f:37:68:2f:28:15:e6:5e:dc:41:19:a3:fd:46:
        e6:fb:07:6d:dd:5e:05:56:9f:35:84:30:95:9a:60:0a:
        0b:b4:6e:df:05:8d:73:bc:cf:e3:df:09:10:bd:6e:ac:
        a7:12:85:89:b6:5f:39:38:eb:4d:89:59:07:b6:ee:f9:
        de:be:87:c9:68:10:eb:ed:d4:6f:df:89:92:8c:60:35:
        7b:71:71:da:96:f1:ac:fe:85:ad:ad:15:69:93:ce:8e:
        49:69:63:b6:c7:59:0b:b5:a9:f7:70:6a:1a:4a:9e:84:
        02:9e:d1:8e:d2:84:a0:42:43:89:77:d3:e6:21:3e:5c:
        b1:3c:ef:d9:2d:fe:2b:41:41:de:96:6c:da:9f:28:d3:
        95:0f:c6:ea:59:3f:a5:a0:6a:4f:49:ff:d2:1a:0c:66:
        14:a0:2e:8b:b7:ed:4b:1a:52:bb:e0:32:b1:8e:57:8a:
        5c:5f:fe:b3:2b:20:74:0e:80:de:bb:50:82:51:e1:9b:
        c3:dc:7f:55:ae:83:bb:44:ce:c5:29:18:78:be:52:26
    Fingerprint (SHA-256):
        2A:FC:29:12:9D:1A:B2:B0:B7:A6:42:93:1A:D3:8D:EF:34:76:0A:F9:14:F4:8C:55:EC:9C:AE:E7:DA:56:F9:FC
    Fingerprint (SHA1):
        9D:15:1F:BA:5A:CE:DB:2D:8C:C7:21:35:46:F9:87:AC:F8:0A:CF:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14922: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124695 (0x310fe2d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:22 2017
            Not After : Tue Aug 23 12:50:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:fd:60:ff:73:ac:00:eb:ee:43:af:54:8e:d8:c8:45:
                    de:f1:e6:98:b7:70:6a:12:6f:27:bd:f3:c7:b2:93:3f:
                    86:12:8a:50:5e:1f:f4:08:6c:33:e3:6c:fb:3f:30:f0:
                    2c:ae:da:f2:9e:7c:a6:e3:e5:f7:5c:71:37:6f:73:1a:
                    29:3e:54:fd:ce:2b:d9:20:4a:84:2d:a6:34:14:4d:66:
                    8f:b3:d3:0d:cd:b8:6f:b3:f3:98:69:50:3b:33:96:dd:
                    2d:5d:13:ba:fd:96:68:51:ee:a3:25:34:82:f1:8f:93:
                    66:d1:d8:1d:e5:c0:31:a2:56:f0:6e:c0:ca:24:0e:37:
                    22:ad:ca:cb:60:92:4c:a8:97:59:06:02:fb:13:87:d9:
                    07:48:d2:54:72:40:d8:15:cb:97:cb:5a:6f:26:b3:a7:
                    65:99:fd:3a:61:e4:a9:18:b8:35:5b:bd:03:9a:fd:d6:
                    6e:d5:2e:d5:1a:be:f8:54:4a:d3:54:8a:e2:43:d3:72:
                    24:a3:97:9b:a6:8e:cd:3f:c7:03:06:8f:b5:2f:e2:1d:
                    a6:3a:43:bc:1b:f9:6a:43:0e:c1:01:95:25:ea:cc:9b:
                    93:bb:f8:77:ef:9b:a3:63:02:b9:31:bf:46:89:52:df:
                    25:67:9a:37:05:7a:66:2a:88:4a:28:f2:55:b8:20:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:1a:47:24:dc:a1:7c:e9:b8:b9:96:e4:06:db:79:1d:
        28:12:2f:39:25:a4:29:3a:35:ab:fe:50:ab:60:c5:45:
        68:cc:c7:37:1a:fc:7d:28:18:36:b8:e9:d1:c3:a5:83:
        2e:c8:7c:6a:59:7d:de:c3:77:e4:0f:27:c7:91:a2:fc:
        4b:d9:ce:16:45:e1:35:19:0c:73:32:bd:b1:d9:cd:a8:
        65:63:00:75:ed:58:7c:5b:58:89:51:09:80:a6:b9:e5:
        0b:9f:5a:4b:cd:8f:c0:9e:7f:fd:21:0e:ef:86:aa:f2:
        9c:92:7f:65:a9:18:d9:40:62:38:60:b1:11:01:7f:3f:
        aa:36:22:bd:af:4b:b2:a2:82:1e:b6:34:9e:9c:60:7d:
        06:48:99:f8:8e:d6:2e:96:06:89:d8:6a:53:ba:f0:4d:
        b2:9a:e4:de:47:43:e3:93:29:c4:a5:3e:0c:7d:aa:b4:
        23:06:b4:8f:dd:de:13:47:df:00:cb:66:7e:a9:ef:27:
        c7:55:92:ff:26:93:fa:57:a2:1e:5e:7e:03:01:b4:88:
        90:fe:15:46:c7:b1:f6:95:6e:e0:63:8d:3e:1a:86:94:
        32:f8:ec:24:ae:ef:1d:6b:9d:89:bf:22:bc:e3:4f:52:
        ed:b7:34:9d:24:1b:10:3c:88:4b:14:b9:53:6a:82:39
    Fingerprint (SHA-256):
        00:AB:A3:FA:F6:C7:08:5D:8E:84:AB:1B:6A:B2:6A:0A:40:CF:2C:ED:90:9A:E5:81:DA:A5:9A:3F:2A:58:F0:6A
    Fingerprint (SHA1):
        DE:DD:48:8B:7A:6B:C4:3F:32:55:49:8D:98:F4:9A:00:B5:1D:FA:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14923: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #14924: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124695 (0x310fe2d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:22 2017
            Not After : Tue Aug 23 12:50:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:fd:60:ff:73:ac:00:eb:ee:43:af:54:8e:d8:c8:45:
                    de:f1:e6:98:b7:70:6a:12:6f:27:bd:f3:c7:b2:93:3f:
                    86:12:8a:50:5e:1f:f4:08:6c:33:e3:6c:fb:3f:30:f0:
                    2c:ae:da:f2:9e:7c:a6:e3:e5:f7:5c:71:37:6f:73:1a:
                    29:3e:54:fd:ce:2b:d9:20:4a:84:2d:a6:34:14:4d:66:
                    8f:b3:d3:0d:cd:b8:6f:b3:f3:98:69:50:3b:33:96:dd:
                    2d:5d:13:ba:fd:96:68:51:ee:a3:25:34:82:f1:8f:93:
                    66:d1:d8:1d:e5:c0:31:a2:56:f0:6e:c0:ca:24:0e:37:
                    22:ad:ca:cb:60:92:4c:a8:97:59:06:02:fb:13:87:d9:
                    07:48:d2:54:72:40:d8:15:cb:97:cb:5a:6f:26:b3:a7:
                    65:99:fd:3a:61:e4:a9:18:b8:35:5b:bd:03:9a:fd:d6:
                    6e:d5:2e:d5:1a:be:f8:54:4a:d3:54:8a:e2:43:d3:72:
                    24:a3:97:9b:a6:8e:cd:3f:c7:03:06:8f:b5:2f:e2:1d:
                    a6:3a:43:bc:1b:f9:6a:43:0e:c1:01:95:25:ea:cc:9b:
                    93:bb:f8:77:ef:9b:a3:63:02:b9:31:bf:46:89:52:df:
                    25:67:9a:37:05:7a:66:2a:88:4a:28:f2:55:b8:20:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:1a:47:24:dc:a1:7c:e9:b8:b9:96:e4:06:db:79:1d:
        28:12:2f:39:25:a4:29:3a:35:ab:fe:50:ab:60:c5:45:
        68:cc:c7:37:1a:fc:7d:28:18:36:b8:e9:d1:c3:a5:83:
        2e:c8:7c:6a:59:7d:de:c3:77:e4:0f:27:c7:91:a2:fc:
        4b:d9:ce:16:45:e1:35:19:0c:73:32:bd:b1:d9:cd:a8:
        65:63:00:75:ed:58:7c:5b:58:89:51:09:80:a6:b9:e5:
        0b:9f:5a:4b:cd:8f:c0:9e:7f:fd:21:0e:ef:86:aa:f2:
        9c:92:7f:65:a9:18:d9:40:62:38:60:b1:11:01:7f:3f:
        aa:36:22:bd:af:4b:b2:a2:82:1e:b6:34:9e:9c:60:7d:
        06:48:99:f8:8e:d6:2e:96:06:89:d8:6a:53:ba:f0:4d:
        b2:9a:e4:de:47:43:e3:93:29:c4:a5:3e:0c:7d:aa:b4:
        23:06:b4:8f:dd:de:13:47:df:00:cb:66:7e:a9:ef:27:
        c7:55:92:ff:26:93:fa:57:a2:1e:5e:7e:03:01:b4:88:
        90:fe:15:46:c7:b1:f6:95:6e:e0:63:8d:3e:1a:86:94:
        32:f8:ec:24:ae:ef:1d:6b:9d:89:bf:22:bc:e3:4f:52:
        ed:b7:34:9d:24:1b:10:3c:88:4b:14:b9:53:6a:82:39
    Fingerprint (SHA-256):
        00:AB:A3:FA:F6:C7:08:5D:8E:84:AB:1B:6A:B2:6A:0A:40:CF:2C:ED:90:9A:E5:81:DA:A5:9A:3F:2A:58:F0:6A
    Fingerprint (SHA1):
        DE:DD:48:8B:7A:6B:C4:3F:32:55:49:8D:98:F4:9A:00:B5:1D:FA:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14925: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124697 (0x310fe2d9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:24 2017
            Not After : Tue Aug 23 12:50:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:51:33:b3:96:9e:ee:df:fe:e8:e5:95:37:2d:74:8b:
                    2a:d2:ef:f7:60:51:b1:f5:fb:4b:29:b1:56:34:9f:20:
                    06:7e:8d:e1:c2:1c:b3:a9:55:a7:99:cd:35:27:14:5d:
                    b7:9e:a0:54:9e:16:1a:a4:99:ee:67:1e:33:5e:7c:cd:
                    59:e1:72:d3:92:3e:b5:bb:54:09:45:51:fa:95:e0:5c:
                    0f:45:49:a4:84:a2:a8:67:96:c8:49:a3:6c:b2:78:94:
                    3e:fa:ce:93:5b:67:4f:b2:7a:14:66:64:a6:dd:94:b3:
                    9c:74:f2:d6:fa:aa:6a:a7:1d:1e:de:26:c3:2a:dc:1d:
                    7c:6f:0a:da:6f:fe:ee:55:4f:6e:d8:7c:87:89:fe:a4:
                    c8:bb:0b:d3:5f:b7:ee:79:f7:15:03:b2:a0:54:aa:b8:
                    cf:b7:1b:17:84:9f:d8:e8:43:1e:c1:74:9c:9c:8e:4a:
                    52:28:f0:f1:43:a5:a3:f0:83:e3:6e:70:6d:bb:f4:4a:
                    10:a3:49:0d:37:d7:da:89:bc:1e:04:01:28:cf:57:b3:
                    ee:c6:0c:c5:14:2b:7b:f0:9b:9c:0e:e1:5a:63:d5:16:
                    07:af:3e:9c:73:1a:24:20:d5:98:20:49:73:da:f7:fa:
                    d8:41:db:16:1e:91:00:62:d3:47:fb:92:92:f3:24:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:b4:b7:b8:6d:17:f5:0d:48:65:58:86:21:87:bd:85:
        73:da:91:46:ee:fe:07:64:65:78:b8:a2:10:e1:a9:d6:
        04:7d:57:57:3f:c3:f5:0b:1d:51:c2:09:ff:10:44:16:
        6f:f3:3f:37:68:2f:28:15:e6:5e:dc:41:19:a3:fd:46:
        e6:fb:07:6d:dd:5e:05:56:9f:35:84:30:95:9a:60:0a:
        0b:b4:6e:df:05:8d:73:bc:cf:e3:df:09:10:bd:6e:ac:
        a7:12:85:89:b6:5f:39:38:eb:4d:89:59:07:b6:ee:f9:
        de:be:87:c9:68:10:eb:ed:d4:6f:df:89:92:8c:60:35:
        7b:71:71:da:96:f1:ac:fe:85:ad:ad:15:69:93:ce:8e:
        49:69:63:b6:c7:59:0b:b5:a9:f7:70:6a:1a:4a:9e:84:
        02:9e:d1:8e:d2:84:a0:42:43:89:77:d3:e6:21:3e:5c:
        b1:3c:ef:d9:2d:fe:2b:41:41:de:96:6c:da:9f:28:d3:
        95:0f:c6:ea:59:3f:a5:a0:6a:4f:49:ff:d2:1a:0c:66:
        14:a0:2e:8b:b7:ed:4b:1a:52:bb:e0:32:b1:8e:57:8a:
        5c:5f:fe:b3:2b:20:74:0e:80:de:bb:50:82:51:e1:9b:
        c3:dc:7f:55:ae:83:bb:44:ce:c5:29:18:78:be:52:26
    Fingerprint (SHA-256):
        2A:FC:29:12:9D:1A:B2:B0:B7:A6:42:93:1A:D3:8D:EF:34:76:0A:F9:14:F4:8C:55:EC:9C:AE:E7:DA:56:F9:FC
    Fingerprint (SHA1):
        9D:15:1F:BA:5A:CE:DB:2D:8C:C7:21:35:46:F9:87:AC:F8:0A:CF:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14926: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #14927: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #14928: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #14929: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124695 (0x310fe2d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:22 2017
            Not After : Tue Aug 23 12:50:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:fd:60:ff:73:ac:00:eb:ee:43:af:54:8e:d8:c8:45:
                    de:f1:e6:98:b7:70:6a:12:6f:27:bd:f3:c7:b2:93:3f:
                    86:12:8a:50:5e:1f:f4:08:6c:33:e3:6c:fb:3f:30:f0:
                    2c:ae:da:f2:9e:7c:a6:e3:e5:f7:5c:71:37:6f:73:1a:
                    29:3e:54:fd:ce:2b:d9:20:4a:84:2d:a6:34:14:4d:66:
                    8f:b3:d3:0d:cd:b8:6f:b3:f3:98:69:50:3b:33:96:dd:
                    2d:5d:13:ba:fd:96:68:51:ee:a3:25:34:82:f1:8f:93:
                    66:d1:d8:1d:e5:c0:31:a2:56:f0:6e:c0:ca:24:0e:37:
                    22:ad:ca:cb:60:92:4c:a8:97:59:06:02:fb:13:87:d9:
                    07:48:d2:54:72:40:d8:15:cb:97:cb:5a:6f:26:b3:a7:
                    65:99:fd:3a:61:e4:a9:18:b8:35:5b:bd:03:9a:fd:d6:
                    6e:d5:2e:d5:1a:be:f8:54:4a:d3:54:8a:e2:43:d3:72:
                    24:a3:97:9b:a6:8e:cd:3f:c7:03:06:8f:b5:2f:e2:1d:
                    a6:3a:43:bc:1b:f9:6a:43:0e:c1:01:95:25:ea:cc:9b:
                    93:bb:f8:77:ef:9b:a3:63:02:b9:31:bf:46:89:52:df:
                    25:67:9a:37:05:7a:66:2a:88:4a:28:f2:55:b8:20:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:1a:47:24:dc:a1:7c:e9:b8:b9:96:e4:06:db:79:1d:
        28:12:2f:39:25:a4:29:3a:35:ab:fe:50:ab:60:c5:45:
        68:cc:c7:37:1a:fc:7d:28:18:36:b8:e9:d1:c3:a5:83:
        2e:c8:7c:6a:59:7d:de:c3:77:e4:0f:27:c7:91:a2:fc:
        4b:d9:ce:16:45:e1:35:19:0c:73:32:bd:b1:d9:cd:a8:
        65:63:00:75:ed:58:7c:5b:58:89:51:09:80:a6:b9:e5:
        0b:9f:5a:4b:cd:8f:c0:9e:7f:fd:21:0e:ef:86:aa:f2:
        9c:92:7f:65:a9:18:d9:40:62:38:60:b1:11:01:7f:3f:
        aa:36:22:bd:af:4b:b2:a2:82:1e:b6:34:9e:9c:60:7d:
        06:48:99:f8:8e:d6:2e:96:06:89:d8:6a:53:ba:f0:4d:
        b2:9a:e4:de:47:43:e3:93:29:c4:a5:3e:0c:7d:aa:b4:
        23:06:b4:8f:dd:de:13:47:df:00:cb:66:7e:a9:ef:27:
        c7:55:92:ff:26:93:fa:57:a2:1e:5e:7e:03:01:b4:88:
        90:fe:15:46:c7:b1:f6:95:6e:e0:63:8d:3e:1a:86:94:
        32:f8:ec:24:ae:ef:1d:6b:9d:89:bf:22:bc:e3:4f:52:
        ed:b7:34:9d:24:1b:10:3c:88:4b:14:b9:53:6a:82:39
    Fingerprint (SHA-256):
        00:AB:A3:FA:F6:C7:08:5D:8E:84:AB:1B:6A:B2:6A:0A:40:CF:2C:ED:90:9A:E5:81:DA:A5:9A:3F:2A:58:F0:6A
    Fingerprint (SHA1):
        DE:DD:48:8B:7A:6B:C4:3F:32:55:49:8D:98:F4:9A:00:B5:1D:FA:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14930: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124699 (0x310fe2db)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:26 2017
            Not After : Tue Aug 23 12:50:26 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:a0:1b:43:94:57:17:cc:41:a3:6b:9c:1e:3c:bc:84:
                    fd:37:18:80:44:19:6e:3e:d5:e7:b8:d0:b3:cf:0c:3c:
                    48:8f:98:d0:48:b9:07:5b:c6:1b:48:74:2f:17:0b:e6:
                    dd:5b:ca:aa:a6:e9:1d:9d:a0:d6:da:ad:7e:c9:87:11:
                    61:11:8c:61:77:28:6a:8f:cc:8f:1b:d7:b0:7a:93:82:
                    96:9d:bc:54:b8:c3:f6:aa:38:b3:94:7a:00:54:47:4e:
                    7f:23:39:d5:92:f1:5c:f7:95:35:29:8f:3d:c1:70:07:
                    da:93:bd:0f:ee:c1:85:67:5e:b8:55:66:f8:f3:67:32:
                    ba:d7:18:99:1a:ff:0f:08:65:18:ce:1f:87:42:ea:8a:
                    52:66:18:c4:2c:53:eb:d3:5f:77:7f:11:c1:4f:4b:df:
                    33:fc:f0:8a:46:26:66:c0:92:e9:73:13:1f:5b:33:05:
                    43:5e:93:cf:7f:f6:1c:ca:95:30:b5:67:f7:47:4c:12:
                    81:79:10:e4:e4:fd:92:7f:ed:53:c6:77:b0:cc:3f:5f:
                    2a:75:55:22:13:d1:00:30:cf:1b:45:da:5d:55:33:40:
                    a3:1a:b2:4e:6c:7f:d7:92:96:78:e9:46:69:a1:08:bd:
                    52:01:b2:31:c9:98:97:f7:4e:cb:d8:38:4b:52:6b:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:eb:9f:cb:de:f4:67:c6:ee:61:e8:fd:96:4a:5b:48:
        4a:2b:3a:05:95:e5:48:bb:ff:fe:01:a4:69:20:95:32:
        34:f8:0b:24:6e:e9:4a:9f:ce:3b:80:ba:67:45:73:a0:
        67:97:84:18:b9:16:e4:d5:fe:e0:14:c5:5f:db:1d:ee:
        98:a4:a1:dd:c0:35:08:ed:ad:0a:c3:ce:01:a9:4e:2a:
        35:68:c7:51:e8:47:9d:5a:ff:0b:0e:3e:4e:f1:f5:fd:
        d8:85:e9:60:27:88:9d:0e:08:c0:60:ff:62:9c:8c:10:
        ae:74:a4:7c:57:17:ab:a6:e5:23:4a:6d:89:16:dc:e6:
        17:92:94:41:36:54:1d:df:96:ef:6e:c1:c7:82:89:36:
        a5:06:a1:c9:9c:99:aa:ae:d1:a3:6a:16:e9:55:1e:61:
        ad:51:24:23:bf:26:a5:28:e7:9d:bd:bb:73:5f:46:c1:
        7a:e8:9d:6f:f8:4e:39:12:6f:f7:63:33:aa:07:4f:b8:
        fb:98:70:a0:ef:2f:e3:70:4d:99:2b:32:9c:02:86:8a:
        6b:c6:fa:95:7a:df:be:0f:45:44:2f:ed:82:8c:37:1a:
        dc:28:90:7f:3e:7f:d9:b9:29:fc:d0:0d:2d:9f:08:2c:
        7a:1a:5d:7c:18:80:17:88:20:44:6d:f3:4e:19:cc:1f
    Fingerprint (SHA-256):
        E0:C1:48:45:08:7F:1D:42:7C:F2:2A:69:4D:4F:2C:42:AE:B7:79:CC:BB:B9:73:0C:78:2F:8C:31:07:E8:3D:76
    Fingerprint (SHA1):
        6B:12:CF:75:44:12:99:17:6E:3D:18:F1:32:FC:D2:D0:7B:F0:43:42
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #14931: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124695 (0x310fe2d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:22 2017
            Not After : Tue Aug 23 12:50:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:fd:60:ff:73:ac:00:eb:ee:43:af:54:8e:d8:c8:45:
                    de:f1:e6:98:b7:70:6a:12:6f:27:bd:f3:c7:b2:93:3f:
                    86:12:8a:50:5e:1f:f4:08:6c:33:e3:6c:fb:3f:30:f0:
                    2c:ae:da:f2:9e:7c:a6:e3:e5:f7:5c:71:37:6f:73:1a:
                    29:3e:54:fd:ce:2b:d9:20:4a:84:2d:a6:34:14:4d:66:
                    8f:b3:d3:0d:cd:b8:6f:b3:f3:98:69:50:3b:33:96:dd:
                    2d:5d:13:ba:fd:96:68:51:ee:a3:25:34:82:f1:8f:93:
                    66:d1:d8:1d:e5:c0:31:a2:56:f0:6e:c0:ca:24:0e:37:
                    22:ad:ca:cb:60:92:4c:a8:97:59:06:02:fb:13:87:d9:
                    07:48:d2:54:72:40:d8:15:cb:97:cb:5a:6f:26:b3:a7:
                    65:99:fd:3a:61:e4:a9:18:b8:35:5b:bd:03:9a:fd:d6:
                    6e:d5:2e:d5:1a:be:f8:54:4a:d3:54:8a:e2:43:d3:72:
                    24:a3:97:9b:a6:8e:cd:3f:c7:03:06:8f:b5:2f:e2:1d:
                    a6:3a:43:bc:1b:f9:6a:43:0e:c1:01:95:25:ea:cc:9b:
                    93:bb:f8:77:ef:9b:a3:63:02:b9:31:bf:46:89:52:df:
                    25:67:9a:37:05:7a:66:2a:88:4a:28:f2:55:b8:20:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:1a:47:24:dc:a1:7c:e9:b8:b9:96:e4:06:db:79:1d:
        28:12:2f:39:25:a4:29:3a:35:ab:fe:50:ab:60:c5:45:
        68:cc:c7:37:1a:fc:7d:28:18:36:b8:e9:d1:c3:a5:83:
        2e:c8:7c:6a:59:7d:de:c3:77:e4:0f:27:c7:91:a2:fc:
        4b:d9:ce:16:45:e1:35:19:0c:73:32:bd:b1:d9:cd:a8:
        65:63:00:75:ed:58:7c:5b:58:89:51:09:80:a6:b9:e5:
        0b:9f:5a:4b:cd:8f:c0:9e:7f:fd:21:0e:ef:86:aa:f2:
        9c:92:7f:65:a9:18:d9:40:62:38:60:b1:11:01:7f:3f:
        aa:36:22:bd:af:4b:b2:a2:82:1e:b6:34:9e:9c:60:7d:
        06:48:99:f8:8e:d6:2e:96:06:89:d8:6a:53:ba:f0:4d:
        b2:9a:e4:de:47:43:e3:93:29:c4:a5:3e:0c:7d:aa:b4:
        23:06:b4:8f:dd:de:13:47:df:00:cb:66:7e:a9:ef:27:
        c7:55:92:ff:26:93:fa:57:a2:1e:5e:7e:03:01:b4:88:
        90:fe:15:46:c7:b1:f6:95:6e:e0:63:8d:3e:1a:86:94:
        32:f8:ec:24:ae:ef:1d:6b:9d:89:bf:22:bc:e3:4f:52:
        ed:b7:34:9d:24:1b:10:3c:88:4b:14:b9:53:6a:82:39
    Fingerprint (SHA-256):
        00:AB:A3:FA:F6:C7:08:5D:8E:84:AB:1B:6A:B2:6A:0A:40:CF:2C:ED:90:9A:E5:81:DA:A5:9A:3F:2A:58:F0:6A
    Fingerprint (SHA1):
        DE:DD:48:8B:7A:6B:C4:3F:32:55:49:8D:98:F4:9A:00:B5:1D:FA:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14932: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #14933: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #14934: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #14935: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #14936: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #14937: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 823124700 (0x310fe2dc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed Aug 23 12:50:27 2017
            Not After : Tue Aug 23 12:50:27 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:1e:a8:d1:7e:da:0d:37:70:2a:87:0d:6a:10:5b:50:
                    68:00:9c:93:2c:59:07:e1:2a:65:b9:be:70:f2:3d:00:
                    4b:5d:46:45:7e:1d:a0:09:62:5c:62:30:71:10:fa:9d:
                    e4:1b:c6:3f:da:28:94:57:e7:b6:af:32:02:fe:8a:78:
                    69:a1:1c:59:39:76:07:4c:0f:94:77:e2:5e:11:c1:f6:
                    86:d6:5b:19:45:d5:d6:d4:f3:97:2e:4d:a9:1f:27:b4:
                    be:89:2a:5f:a9:6a:af:17:7b:24:2f:4a:75:92:33:f1:
                    ce:a1:fc:df:85:40:5a:13:a3:d9:67:eb:fa:9b:8b:f6:
                    e3:7c:7e:96:d3:f2:ed:cd:11:45:45:f6:10:89:ef:31:
                    69:a1:96:dd:bf:dd:c1:03:1c:35:37:b6:6c:b0:d1:5f:
                    51:02:de:fa:7d:d3:bc:0d:37:75:5d:f7:85:0e:cc:b3:
                    c9:ca:45:d9:78:ea:0f:b9:9d:19:45:8a:ff:4a:b5:94:
                    a4:f9:08:32:e9:64:9e:51:b1:10:57:1e:c2:c6:ca:83:
                    30:fc:04:36:07:37:f2:90:24:a8:b0:48:cf:0e:ec:d8:
                    51:2f:d3:d4:32:fa:c8:91:58:01:fe:52:28:1f:30:32:
                    4f:7a:f6:84:e5:c2:8a:c7:57:3c:7f:95:55:7e:54:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:c5:03:bc:cc:49:8d:46:86:95:02:8f:f9:a2:d5:48:
        ee:c6:41:a7:c4:5e:39:56:95:6b:3f:e1:8b:be:98:85:
        6c:30:14:96:49:8e:cf:83:77:bf:b0:46:f9:20:0e:66:
        10:b3:eb:f6:d6:ad:08:2a:3d:c3:c0:cf:69:46:43:fe:
        26:bc:b7:d6:3e:65:9d:c3:37:69:d0:1b:99:e2:78:96:
        30:16:60:a8:b5:e9:05:41:96:8e:2c:64:3f:9a:e1:9b:
        40:95:3f:0d:74:6d:0b:d0:e8:5b:41:7a:4a:e1:31:7d:
        ad:1f:40:a5:0d:67:30:ca:95:57:68:51:93:64:70:e5:
        fe:a1:27:30:9e:23:61:c4:10:a1:d2:67:53:1d:f2:a5:
        62:cb:49:cb:9e:b6:17:ad:c2:3b:2e:bb:e8:e9:69:df:
        c3:de:3f:c0:d9:52:28:24:e3:08:16:e4:d0:bf:cc:9e:
        9e:dd:8c:54:54:27:1a:c9:4d:03:53:2c:7a:d5:f1:97:
        ef:88:9b:ab:de:66:8d:ab:41:f0:cc:a8:3e:de:79:d6:
        4e:d5:3f:5a:06:92:fd:84:b1:f4:95:0d:7c:be:2e:a5:
        86:bc:5d:38:3f:26:b5:3b:a4:43:e5:89:9c:55:e1:25:
        90:74:61:a6:8b:c2:24:9c:42:a7:15:8e:09:1e:ad:16
    Fingerprint (SHA-256):
        B9:E9:F1:C5:96:9A:C2:D0:25:EA:F3:B8:91:56:18:77:6C:6E:83:85:34:26:65:91:86:FA:F5:AF:4E:A7:B5:5C
    Fingerprint (SHA1):
        33:9B:73:98:B1:0C:08:E6:68:8E:F6:74:78:F5:7D:C0:90:68:05:85
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14938: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #14939: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #14940: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #14941: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #14942: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14943: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14944: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14945: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14946: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14947: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14948: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14949: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14950: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14951: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14952: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14953: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14954: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14955: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14956: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14957: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14958: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14959: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14960: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14961: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 25495 at Wed Aug 23 12:50:34 UTC 2017
kill -USR1 25495
httpserv: normal termination
httpserv -b -p 9233 2>/dev/null;
httpserv with PID 25495 killed at Wed Aug 23 12:50:34 UTC 2017
TIMESTAMP chains END: Wed Aug 23 12:50:34 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed Aug 23 12:50:34 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed Aug 23 12:50:34 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #14962: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed Aug 23 12:50:34 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed Aug 23 12:50:34 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14963: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14964: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14965: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14966: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #14967: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #14968: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed Aug 23 12:50:36 UTC 2017
TIMESTAMP ec END: Wed Aug 23 12:50:36 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed Aug 23 12:50:36 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #14969: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #14970: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #14971: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #14972: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #14973: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #14974: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #14975: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #14976: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #14977: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #14978: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #14979: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #14980: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #14981: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #14982: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #14983: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #14984: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #14985: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (0 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (0 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (0 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (46 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (87 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (133 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (0 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (19 ms)
[----------] 1 test from Pkcs11RsaPssTest (19 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (0 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (0 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (0 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (152 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #14986: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #14987: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #14988: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #14989: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #14990: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #14991: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #14992: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #14993: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #14994: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #14995: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #14996: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #14997: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #14998: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #14999: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #15000: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #15001: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #15002: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #15003: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #15004: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #15005: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #15006: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #15007: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Wed Aug 23 12:50:36 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed Aug 23 12:50:36 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #15008: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15009: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15010: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15011: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15012: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15013: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15014: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15015: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15016: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15017: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15018: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15019: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15020: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15021: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15022: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (31 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (22 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (19 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (13 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (22 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (28 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (18 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (21 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (20 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (27 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (19 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (5 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (11 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (7 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (10 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (14 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (750 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (16 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (1 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (18 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (0 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (21 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (19 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (16 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (16 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (7 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (16 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (10 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (16 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (7 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (486 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (17 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (21 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (20 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (19 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (22 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (7 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (10 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (9 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (6 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (808 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (19 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (18 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (13 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (20 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (18 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (21 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (14 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (0 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (16 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (7 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (9 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (15 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (16 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (669 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (22 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (22 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (22 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (22 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (28 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (28 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (22 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (22 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (21 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (19 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (20 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (27 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (17 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (18 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (9 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (16 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (14 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (11 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (10 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (16 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (15 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (6 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (7 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (7 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (2512 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (22 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (28 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (28 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (22 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (21 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (20 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (28 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (27 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (29 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (18 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (19 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (7 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (11 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (10 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (9 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (14 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (15 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (6 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (7 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (1262 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (5 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (6 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (6 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (47 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a042f413eed48a67646e576df3094a0a6ed4b9b627a7a4ad7df3...
record new: [1184] 020000510301a042f413eed48a67646e576df3094a0a6ed4b9b627a7a4ad7df3...
server: Original packet: [1189] 16030104a0020000510301a042f413eed48a67646e576df3094a0a6ed4b9b627...
server: Filtered packet: [1189] 16030104a0020000510301a042f413eed48a67646e576df3094a0a6ed4b9b627...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b4da9afbeccf97aa4a20b2c9466c74fcc44ef0bfaeccadf4404e...
record new: [1184] 020000510301b4da9afbeccf97aa4a20b2c9466c74fcc44ef0bfaeccadf4404e...
server: Original packet: [1189] 16030104a0020000510301b4da9afbeccf97aa4a20b2c9466c74fcc44ef0bfae...
server: Filtered packet: [1189] 16030104a0020000510301b4da9afbeccf97aa4a20b2c9466c74fcc44ef0bfae...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301ed8b924f84d14370e218d7c767898290e72bb112c1c4340a51dc...
record new: [1184] 020000510301ed8b924f84d14370e218d7c767898290e72bb112c1c4340a51dc...
server: Original packet: [1189] 16030104a0020000510301ed8b924f84d14370e218d7c767898290e72bb112c1...
server: Filtered packet: [1189] 16030104a0020000510301ed8b924f84d14370e218d7c767898290e72bb112c1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301ea3e60571a53f798638ef728d258cdfd86bbd8ecaae71b11319a...
record new: [1184] 020000510301ea3e60571a53f798638ef728d258cdfd86bbd8ecaae71b11319a...
server: Original packet: [1189] 16030104a0020000510301ea3e60571a53f798638ef728d258cdfd86bbd8ecaa...
server: Filtered packet: [1189] 16030104a0020000510301ea3e60571a53f798638ef728d258cdfd86bbd8ecaa...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301517fbb73f8aaf4d7b520adfb23075bdbebd0f65e2c6e823e4ad2...
record new: [1184] 020000510301517fbb73f8aaf4d7b520adfb23075bdbebd0f65e2c6e823e4ad2...
server: Original packet: [1189] 16030104a0020000510301517fbb73f8aaf4d7b520adfb23075bdbebd0f65e2c...
server: Filtered packet: [1189] 16030104a0020000510301517fbb73f8aaf4d7b520adfb23075bdbebd0f65e2c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301246de9d1154a35d5fca732e7d544b40f9d4f3e3b3e3733c65a89...
record new: [1184] 020000510301246de9d1154a35d5fca732e7d544b40f9d4f3e3b3e3733c65a89...
server: Original packet: [1189] 16030104a0020000510301246de9d1154a35d5fca732e7d544b40f9d4f3e3b3e...
server: Filtered packet: [1189] 16030104a0020000510301246de9d1154a35d5fca732e7d544b40f9d4f3e3b3e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103015acf6ace1c683efe03ded92f5802741ad948011342a1c349c003...
record new: [1184] 0200005103015acf6ace1c683efe03ded92f5802741ad948011342a1c349c003...
server: Original packet: [1189] 16030104a00200005103015acf6ace1c683efe03ded92f5802741ad948011342...
server: Filtered packet: [1189] 16030104a00200005103015acf6ace1c683efe03ded92f5802741ad948011342...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301521fadd2a308b77deecf22b67c42ec6f45aa90fe0770c8f0002e...
record new: [1184] 020000510301521fadd2a308b77deecf22b67c42ec6f45aa90fe0770c8f0002e...
server: Original packet: [1189] 16030104a0020000510301521fadd2a308b77deecf22b67c42ec6f45aa90fe07...
server: Filtered packet: [1189] 16030104a0020000510301521fadd2a308b77deecf22b67c42ec6f45aa90fe07...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103012b2f5e79758c862620f1f18eb47600cfc83d4f968c45c4515168...
record new: [1185] 0200005103012b2f5e79758c862620f1f18eb47600cfc83d4f968c45c4515168...
server: Original packet: [1189] 16030104a00200005103012b2f5e79758c862620f1f18eb47600cfc83d4f968c...
server: Filtered packet: [1190] 16030104a10200005103012b2f5e79758c862620f1f18eb47600cfc83d4f968c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103018dcb873d4edfde99cded7b6206a4825ed6685c34e5b58c62a461...
record new: [1185] 0200005103018dcb873d4edfde99cded7b6206a4825ed6685c34e5b58c62a461...
server: Original packet: [1189] 16030104a00200005103018dcb873d4edfde99cded7b6206a4825ed6685c34e5...
server: Filtered packet: [1190] 16030104a10200005103018dcb873d4edfde99cded7b6206a4825ed6685c34e5...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301636ba563cf75deba92b8ce12ab7130009b8af21530f59cf810fe...
record new: [1185] 020000510301636ba563cf75deba92b8ce12ab7130009b8af21530f59cf810fe...
server: Original packet: [1189] 16030104a0020000510301636ba563cf75deba92b8ce12ab7130009b8af21530...
server: Filtered packet: [1190] 16030104a1020000510301636ba563cf75deba92b8ce12ab7130009b8af21530...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301ff96350be1787cc047e68d5127c95eb8633912217e104640cfd5...
record new: [1185] 020000510301ff96350be1787cc047e68d5127c95eb8633912217e104640cfd5...
server: Original packet: [1189] 16030104a0020000510301ff96350be1787cc047e68d5127c95eb8633912217e...
server: Filtered packet: [1190] 16030104a1020000510301ff96350be1787cc047e68d5127c95eb8633912217e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030255a196056d9fa7a5168de0cc18e05e9b9fa8862197a6ec057665...
record new: [1184] 02000051030255a196056d9fa7a5168de0cc18e05e9b9fa8862197a6ec057665...
server: Original packet: [1189] 16030204a002000051030255a196056d9fa7a5168de0cc18e05e9b9fa8862197...
server: Filtered packet: [1189] 16030204a002000051030255a196056d9fa7a5168de0cc18e05e9b9fa8862197...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302205dc04abfc13525f606e49e11f65f820a653f5395405778490c...
record new: [1184] 020000510302205dc04abfc13525f606e49e11f65f820a653f5395405778490c...
server: Original packet: [1189] 16030204a0020000510302205dc04abfc13525f606e49e11f65f820a653f5395...
server: Filtered packet: [1189] 16030204a0020000510302205dc04abfc13525f606e49e11f65f820a653f5395...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302dc8fe760fc3b940724389c4ba7c8a578c16dbce784cde5667d0e...
record new: [1184] 020000510302dc8fe760fc3b940724389c4ba7c8a578c16dbce784cde5667d0e...
server: Original packet: [1189] 16030204a0020000510302dc8fe760fc3b940724389c4ba7c8a578c16dbce784...
server: Filtered packet: [1189] 16030204a0020000510302dc8fe760fc3b940724389c4ba7c8a578c16dbce784...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030250a958afae91ebafc2f6e62430e926c11030676eff04a26a26fc...
record new: [1184] 02000051030250a958afae91ebafc2f6e62430e926c11030676eff04a26a26fc...
server: Original packet: [1189] 16030204a002000051030250a958afae91ebafc2f6e62430e926c11030676eff...
server: Filtered packet: [1189] 16030204a002000051030250a958afae91ebafc2f6e62430e926c11030676eff...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a21782492c6f96cb811ec8385f34cbe94d5b41e59cf3b22aa222...
record new: [1184] 020000510302a21782492c6f96cb811ec8385f34cbe94d5b41e59cf3b22aa222...
server: Original packet: [1189] 16030204a0020000510302a21782492c6f96cb811ec8385f34cbe94d5b41e59c...
server: Filtered packet: [1189] 16030204a0020000510302a21782492c6f96cb811ec8385f34cbe94d5b41e59c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021344d8542bd414405067de35b7049265549f0913ae3a251dc8f2...
record new: [1184] 0200005103021344d8542bd414405067de35b7049265549f0913ae3a251dc8f2...
server: Original packet: [1189] 16030204a00200005103021344d8542bd414405067de35b7049265549f0913ae...
server: Filtered packet: [1189] 16030204a00200005103021344d8542bd414405067de35b7049265549f0913ae...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302621ed0bf013495994d2b709004d476bce1bcba5f0aba2bb1e143...
record new: [1184] 020000510302621ed0bf013495994d2b709004d476bce1bcba5f0aba2bb1e143...
server: Original packet: [1189] 16030204a0020000510302621ed0bf013495994d2b709004d476bce1bcba5f0a...
server: Filtered packet: [1189] 16030204a0020000510302621ed0bf013495994d2b709004d476bce1bcba5f0a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103025a322f533c8ae5020351c4d26d5e3faa1ca9b8575a762181701e...
record new: [1184] 0200005103025a322f533c8ae5020351c4d26d5e3faa1ca9b8575a762181701e...
server: Original packet: [1189] 16030204a00200005103025a322f533c8ae5020351c4d26d5e3faa1ca9b8575a...
server: Filtered packet: [1189] 16030204a00200005103025a322f533c8ae5020351c4d26d5e3faa1ca9b8575a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103028d7e8d0a5c19984c33cb99cf171d8af18404d7a076f7d913dfc8...
record new: [1185] 0200005103028d7e8d0a5c19984c33cb99cf171d8af18404d7a076f7d913dfc8...
server: Original packet: [1189] 16030204a00200005103028d7e8d0a5c19984c33cb99cf171d8af18404d7a076...
server: Filtered packet: [1190] 16030204a10200005103028d7e8d0a5c19984c33cb99cf171d8af18404d7a076...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103027b5da3477713d6aaaad16b343b8a60427d5c0dafcc4070319736...
record new: [1185] 0200005103027b5da3477713d6aaaad16b343b8a60427d5c0dafcc4070319736...
server: Original packet: [1189] 16030204a00200005103027b5da3477713d6aaaad16b343b8a60427d5c0dafcc...
server: Filtered packet: [1190] 16030204a10200005103027b5da3477713d6aaaad16b343b8a60427d5c0dafcc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103024f5e6342f8710c806e60b66e7e4aec630a2ff8b1168e2c534480...
record new: [1185] 0200005103024f5e6342f8710c806e60b66e7e4aec630a2ff8b1168e2c534480...
server: Original packet: [1189] 16030204a00200005103024f5e6342f8710c806e60b66e7e4aec630a2ff8b116...
server: Filtered packet: [1190] 16030204a10200005103024f5e6342f8710c806e60b66e7e4aec630a2ff8b116...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302575f5625a306e30d7e0585f7915fdba6166a785220ffbc632ba9...
record new: [1185] 020000510302575f5625a306e30d7e0585f7915fdba6166a785220ffbc632ba9...
server: Original packet: [1189] 16030204a0020000510302575f5625a306e30d7e0585f7915fdba6166a785220...
server: Filtered packet: [1190] 16030204a1020000510302575f5625a306e30d7e0585f7915fdba6166a785220...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103031c91053063f2401b31efabd55f1692faafcaa2991e5a428a9846...
record new: [1186] 0200005103031c91053063f2401b31efabd55f1692faafcaa2991e5a428a9846...
server: Original packet: [1191] 16030304a20200005103031c91053063f2401b31efabd55f1692faafcaa2991e...
server: Filtered packet: [1191] 16030304a20200005103031c91053063f2401b31efabd55f1692faafcaa2991e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f9af4756e9e820515b54281c4febd7f895d7968318143360231d...
record new: [1186] 020000510303f9af4756e9e820515b54281c4febd7f895d7968318143360231d...
server: Original packet: [1191] 16030304a2020000510303f9af4756e9e820515b54281c4febd7f895d7968318...
server: Filtered packet: [1191] 16030304a2020000510303f9af4756e9e820515b54281c4febd7f895d7968318...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f6ac9f8f740ec86a5047cd5d1d48dd94fb66923c64bff472a8a2...
record new: [1186] 020000510303f6ac9f8f740ec86a5047cd5d1d48dd94fb66923c64bff472a8a2...
server: Original packet: [1191] 16030304a2020000510303f6ac9f8f740ec86a5047cd5d1d48dd94fb66923c64...
server: Filtered packet: [1191] 16030304a2020000510303f6ac9f8f740ec86a5047cd5d1d48dd94fb66923c64...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030309d8c7beb1bf32f6cdab7eb33c5fe075d5bc4c9c61223f9d6e23...
record new: [1186] 02000051030309d8c7beb1bf32f6cdab7eb33c5fe075d5bc4c9c61223f9d6e23...
server: Original packet: [1191] 16030304a202000051030309d8c7beb1bf32f6cdab7eb33c5fe075d5bc4c9c61...
server: Filtered packet: [1191] 16030304a202000051030309d8c7beb1bf32f6cdab7eb33c5fe075d5bc4c9c61...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303fdea3df25c61a50006cd5b8d1bc188b93fa51001ff4b1169482d...
record new: [1186] 020000510303fdea3df25c61a50006cd5b8d1bc188b93fa51001ff4b1169482d...
server: Original packet: [1191] 16030304a2020000510303fdea3df25c61a50006cd5b8d1bc188b93fa51001ff...
server: Filtered packet: [1191] 16030304a2020000510303fdea3df25c61a50006cd5b8d1bc188b93fa51001ff...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303cc0b0c902c9e7df94a2220ffd4869bb013944f376cafeeae333d...
record new: [1186] 020000510303cc0b0c902c9e7df94a2220ffd4869bb013944f376cafeeae333d...
server: Original packet: [1191] 16030304a2020000510303cc0b0c902c9e7df94a2220ffd4869bb013944f376c...
server: Filtered packet: [1191] 16030304a2020000510303cc0b0c902c9e7df94a2220ffd4869bb013944f376c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103039acc585d13d84a82dc4a1804536f6bada2371c0530aa0c595b14...
record new: [1186] 0200005103039acc585d13d84a82dc4a1804536f6bada2371c0530aa0c595b14...
server: Original packet: [1191] 16030304a20200005103039acc585d13d84a82dc4a1804536f6bada2371c0530...
server: Filtered packet: [1191] 16030304a20200005103039acc585d13d84a82dc4a1804536f6bada2371c0530...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030370f8be45055189cc55a02b3d1b24531a2ecd241377fb5bea85c5...
record new: [1186] 02000051030370f8be45055189cc55a02b3d1b24531a2ecd241377fb5bea85c5...
server: Original packet: [1191] 16030304a202000051030370f8be45055189cc55a02b3d1b24531a2ecd241377...
server: Filtered packet: [1191] 16030304a202000051030370f8be45055189cc55a02b3d1b24531a2ecd241377...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303b7786919886b5d684655383f35c063e907930f60ce46149d7d40...
record new: [1187] 020000510303b7786919886b5d684655383f35c063e907930f60ce46149d7d40...
server: Original packet: [1191] 16030304a2020000510303b7786919886b5d684655383f35c063e907930f60ce...
server: Filtered packet: [1192] 16030304a3020000510303b7786919886b5d684655383f35c063e907930f60ce...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030393f8a6a3713e11f7fb7f09331715747928c278be9dfc04ec6115...
record new: [1187] 02000051030393f8a6a3713e11f7fb7f09331715747928c278be9dfc04ec6115...
server: Original packet: [1191] 16030304a202000051030393f8a6a3713e11f7fb7f09331715747928c278be9d...
server: Filtered packet: [1192] 16030304a302000051030393f8a6a3713e11f7fb7f09331715747928c278be9d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (6 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303cb3316f2b3927cd8d87e8b8f369ad9ee475193aa1212238f75ab...
record new: [1187] 020000510303cb3316f2b3927cd8d87e8b8f369ad9ee475193aa1212238f75ab...
server: Original packet: [1191] 16030304a2020000510303cb3316f2b3927cd8d87e8b8f369ad9ee475193aa12...
server: Filtered packet: [1192] 16030304a3020000510303cb3316f2b3927cd8d87e8b8f369ad9ee475193aa12...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103038e650c7e10430b78996f6306f4892833f84ac524880c768b0139...
record new: [1187] 0200005103038e650c7e10430b78996f6306f4892833f84ac524880c768b0139...
server: Original packet: [1191] 16030304a20200005103038e650c7e10430b78996f6306f4892833f84ac52488...
server: Filtered packet: [1192] 16030304a30200005103038e650c7e10430b78996f6306f4892833f84ac52488...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (7 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f53f7b113d9b5b8a564a01459eedc907605f78a4a1654f922f5b12460886...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100f53f7b113d9b5b8a564a01459eedc907605f78a4a1654f922f5b...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100f53f7b113d9b5b8a564a01459eedc907605f78a4a1...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a400b3df0b0e74675d718cfdd39a27c8873622994bd8122b61104533a98a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100a400b3df0b0e74675d718cfdd39a27c8873622994bd8122b6110...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100a400b3df0b0e74675d718cfdd39a27c8873622994b...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100338e347c5addc7f532a527e909cb1a80f67e09aa8f7201981e71b02bdb02...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100338e347c5addc7f532a527e909cb1a80f67e09aa8f7201981e71...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100338e347c5addc7f532a527e909cb1a80f67e09aa8f...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003c377c79bb5d470ba48bbef5a4f6171a6f3574706c941922433f6c511978...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201003c377c79bb5d470ba48bbef5a4f6171a6f3574706c941922433f...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201003c377c79bb5d470ba48bbef5a4f6171a6f3574706c...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010064e64a9de4f9173970cfedce8fcf7eb3dcb8b5d54186eced45488e1883cc...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010064e64a9de4f9173970cfedce8fcf7eb3dcb8b5d54186eced4548...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 160301010610000102010064e64a9de4f9173970cfedce8fcf7eb3dcb8b5d541...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010067178408c6f71ea064547f9c46da2fe8d181c86a66e4a93824619daf8294...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010067178408c6f71ea064547f9c46da2fe8d181c86a66e4a9382461...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 160301010610000102010067178408c6f71ea064547f9c46da2fe8d181c86a66...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100457f2dd3051417e032b4dc119f2639091a02f19c2ecff208fd7876ddd519...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100457f2dd3051417e032b4dc119f2639091a02f19c2ecff208fd78...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100457f2dd3051417e032b4dc119f2639091a02f19c2e...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100607952cecc93bb93a7b5d4b3d40986c0f58d4aeb46416d67f40a536f8971...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100607952cecc93bb93a7b5d4b3d40986c0f58d4aeb46416d67f40a...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100607952cecc93bb93a7b5d4b3d40986c0f58d4aeb46...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001f0cee671a0bfaabfd9947bda5406a10de21b1fe9d958eaf325569985bd4...
handshake new: [259] 0101011f0cee671a0bfaabfd9947bda5406a10de21b1fe9d958eaf325569985b...
record old: [262] 1000010201001f0cee671a0bfaabfd9947bda5406a10de21b1fe9d958eaf3255...
record new: [263] 100001030101011f0cee671a0bfaabfd9947bda5406a10de21b1fe9d958eaf32...
client: Original packet: [326] 16030101061000010201001f0cee671a0bfaabfd9947bda5406a10de21b1fe9d...
client: Filtered packet: [327] 1603010107100001030101011f0cee671a0bfaabfd9947bda5406a10de21b1fe...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c26ffbeccdd2091aee173e31ddd0505c50e67c2a35ab184fe2c9c035c4ce...
handshake new: [259] 010101c26ffbeccdd2091aee173e31ddd0505c50e67c2a35ab184fe2c9c035c4...
record old: [262] 100001020100c26ffbeccdd2091aee173e31ddd0505c50e67c2a35ab184fe2c9...
record new: [263] 10000103010101c26ffbeccdd2091aee173e31ddd0505c50e67c2a35ab184fe2...
client: Original packet: [326] 1603010106100001020100c26ffbeccdd2091aee173e31ddd0505c50e67c2a35...
client: Filtered packet: [327] 160301010710000103010101c26ffbeccdd2091aee173e31ddd0505c50e67c2a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e48443d549cf9999d8b972625c3dd1a12cc1942a0b0c00f92f5cf21a0be1...
handshake new: [259] 010100e48443d549cf9999d8b972625c3dd1a12cc1942a0b0c00f92f5cf21a0b...
record old: [262] 100001020100e48443d549cf9999d8b972625c3dd1a12cc1942a0b0c00f92f5c...
record new: [263] 10000103010100e48443d549cf9999d8b972625c3dd1a12cc1942a0b0c00f92f...
client: Original packet: [326] 1603010106100001020100e48443d549cf9999d8b972625c3dd1a12cc1942a0b...
client: Filtered packet: [327] 160301010710000103010100e48443d549cf9999d8b972625c3dd1a12cc1942a...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (10 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002a8689232b23b1d4199f9f0da9b885174f8fb783b6886bd17ed18d478e7d...
handshake new: [259] 0101002a8689232b23b1d4199f9f0da9b885174f8fb783b6886bd17ed18d478e...
record old: [262] 1000010201002a8689232b23b1d4199f9f0da9b885174f8fb783b6886bd17ed1...
record new: [263] 100001030101002a8689232b23b1d4199f9f0da9b885174f8fb783b6886bd17e...
client: Original packet: [326] 16030101061000010201002a8689232b23b1d4199f9f0da9b885174f8fb783b6...
client: Filtered packet: [327] 1603010107100001030101002a8689232b23b1d4199f9f0da9b885174f8fb783...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (10 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f10981a5282572a6547b5db2dbe12a52691c71316ecf69a1c00a41d244dd...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100f10981a5282572a6547b5db2dbe12a52691c71316ecf69a1c00a...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100f10981a5282572a6547b5db2dbe12a52691c71316e...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bc999335dcb4cc40cf1d54a19bc237d34401bbb1fb700d31ba68119bdacc...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100bc999335dcb4cc40cf1d54a19bc237d34401bbb1fb700d31ba68...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100bc999335dcb4cc40cf1d54a19bc237d34401bbb1fb...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c59bc56f5a136e7570592a175c74b81ff9c14473b14b9cf0f03f69bbb29f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c59bc56f5a136e7570592a175c74b81ff9c14473b14b9cf0f03f...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100c59bc56f5a136e7570592a175c74b81ff9c14473b1...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e5014c5cc23b6a76392592662d2e92329886a35bfddc4c3750508fa5ee9c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e5014c5cc23b6a76392592662d2e92329886a35bfddc4c375050...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100e5014c5cc23b6a76392592662d2e92329886a35bfd...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100018ea3ab319adab9943ce0cd4a2b079aef3e8395a981253b15ee787de8fc...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100018ea3ab319adab9943ce0cd4a2b079aef3e8395a981253b15ee...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100018ea3ab319adab9943ce0cd4a2b079aef3e8395a9...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d91746612999a4d5f9cfd7f75a2e31d2008ced9437a7fe9a4c9a9c677d23...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100d91746612999a4d5f9cfd7f75a2e31d2008ced9437a7fe9a4c9a...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100d91746612999a4d5f9cfd7f75a2e31d2008ced9437...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100420b0c510bba3eb22a80a5081a4d99e6d759bc6b34ecb0e510348431d469...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100420b0c510bba3eb22a80a5081a4d99e6d759bc6b34ecb0e51034...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100420b0c510bba3eb22a80a5081a4d99e6d759bc6b34...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a2745a79795ff4a1a422a0f7cf431f4e1cf24d936f0f22d5c820d4fc1e16...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100a2745a79795ff4a1a422a0f7cf431f4e1cf24d936f0f22d5c820...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100a2745a79795ff4a1a422a0f7cf431f4e1cf24d936f...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d60141b9cad856ac2b1f3b16823f4ceadc760cc04abdff03c12712f13607...
handshake new: [259] 010101d60141b9cad856ac2b1f3b16823f4ceadc760cc04abdff03c12712f136...
record old: [262] 100001020100d60141b9cad856ac2b1f3b16823f4ceadc760cc04abdff03c127...
record new: [263] 10000103010101d60141b9cad856ac2b1f3b16823f4ceadc760cc04abdff03c1...
client: Original packet: [342] 1603020106100001020100d60141b9cad856ac2b1f3b16823f4ceadc760cc04a...
client: Filtered packet: [343] 160302010710000103010101d60141b9cad856ac2b1f3b16823f4ceadc760cc0...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f0870e7641eca90c0fde5079ea158ec35842f55670ee0e5dc6a825803a7f...
handshake new: [259] 010101f0870e7641eca90c0fde5079ea158ec35842f55670ee0e5dc6a825803a...
record old: [262] 100001020100f0870e7641eca90c0fde5079ea158ec35842f55670ee0e5dc6a8...
record new: [263] 10000103010101f0870e7641eca90c0fde5079ea158ec35842f55670ee0e5dc6...
client: Original packet: [342] 1603020106100001020100f0870e7641eca90c0fde5079ea158ec35842f55670...
client: Filtered packet: [343] 160302010710000103010101f0870e7641eca90c0fde5079ea158ec35842f556...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100be46637fa9aba989750765ec403f3cc858c8a043ad26d0846fa15e4ff1e5...
handshake new: [259] 010100be46637fa9aba989750765ec403f3cc858c8a043ad26d0846fa15e4ff1...
record old: [262] 100001020100be46637fa9aba989750765ec403f3cc858c8a043ad26d0846fa1...
record new: [263] 10000103010100be46637fa9aba989750765ec403f3cc858c8a043ad26d0846f...
client: Original packet: [342] 1603020106100001020100be46637fa9aba989750765ec403f3cc858c8a043ad...
client: Filtered packet: [343] 160302010710000103010100be46637fa9aba989750765ec403f3cc858c8a043...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (10 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005db395cc8cf9a562c77f6a889e1bb265d1755e87c8f0d524e98850ee4771...
handshake new: [259] 0101005db395cc8cf9a562c77f6a889e1bb265d1755e87c8f0d524e98850ee47...
record old: [262] 1000010201005db395cc8cf9a562c77f6a889e1bb265d1755e87c8f0d524e988...
record new: [263] 100001030101005db395cc8cf9a562c77f6a889e1bb265d1755e87c8f0d524e9...
client: Original packet: [342] 16030201061000010201005db395cc8cf9a562c77f6a889e1bb265d1755e87c8...
client: Filtered packet: [343] 1603020107100001030101005db395cc8cf9a562c77f6a889e1bb265d1755e87...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (10 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009bb6f6436c8d1d75777537d9e08b840e54a86e7e3b8b83a8dcdbd53e479e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201009bb6f6436c8d1d75777537d9e08b840e54a86e7e3b8b83a8dcdb...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201009bb6f6436c8d1d75777537d9e08b840e54a86e7e3b...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b505b1c8ca2c64068a2c7283c7a3919510e991b63128b9a9f27c09e99692...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b505b1c8ca2c64068a2c7283c7a3919510e991b63128b9a9f27c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100b505b1c8ca2c64068a2c7283c7a3919510e991b631...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e79cb02f4e9ddb294b3d99ebb4c216fd9d64feff97faac041e5d2b0db911...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e79cb02f4e9ddb294b3d99ebb4c216fd9d64feff97faac041e5d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100e79cb02f4e9ddb294b3d99ebb4c216fd9d64feff97...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b9b4d0f5fb4e91443403c52079d2eee871244178eeaa4b7bfa68c656614f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b9b4d0f5fb4e91443403c52079d2eee871244178eeaa4b7bfa68...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100b9b4d0f5fb4e91443403c52079d2eee871244178ee...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e9f44c9de9af9ae7907d4932e165555c56598f35135af22eb1972fe853d4...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100e9f44c9de9af9ae7907d4932e165555c56598f35135af22eb197...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100e9f44c9de9af9ae7907d4932e165555c56598f3513...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001a217aed2f9d3f4e2e742d5a1aa5095dce4f53999c0bd859d93068517933...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201001a217aed2f9d3f4e2e742d5a1aa5095dce4f53999c0bd859d930...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201001a217aed2f9d3f4e2e742d5a1aa5095dce4f53999c...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (8 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006cce31fd34dcf6b635dac1e4781fa98e029c78187a8346a92cc7d72d263b...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201006cce31fd34dcf6b635dac1e4781fa98e029c78187a8346a92cc7...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 16030301061000010201006cce31fd34dcf6b635dac1e4781fa98e029c78187a...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ed642d195d3bb424ec7f865b558610a4a3e8c7b8177ec5de0bb4c10a8b01...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100ed642d195d3bb424ec7f865b558610a4a3e8c7b8177ec5de0bb4...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100ed642d195d3bb424ec7f865b558610a4a3e8c7b817...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bea479cc0ea7c5c400e6532f19424ac2d4d3a54084a6295ef9db3a1e7dff...
handshake new: [259] 010101bea479cc0ea7c5c400e6532f19424ac2d4d3a54084a6295ef9db3a1e7d...
record old: [262] 100001020100bea479cc0ea7c5c400e6532f19424ac2d4d3a54084a6295ef9db...
record new: [263] 10000103010101bea479cc0ea7c5c400e6532f19424ac2d4d3a54084a6295ef9...
client: Original packet: [318] 1603030106100001020100bea479cc0ea7c5c400e6532f19424ac2d4d3a54084...
client: Filtered packet: [319] 160303010710000103010101bea479cc0ea7c5c400e6532f19424ac2d4d3a540...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a82922879dbda7902e8dfcef2afa6640aec0d810f021606861b2a4d65312...
handshake new: [259] 010101a82922879dbda7902e8dfcef2afa6640aec0d810f021606861b2a4d653...
record old: [262] 100001020100a82922879dbda7902e8dfcef2afa6640aec0d810f021606861b2...
record new: [263] 10000103010101a82922879dbda7902e8dfcef2afa6640aec0d810f021606861...
client: Original packet: [318] 1603030106100001020100a82922879dbda7902e8dfcef2afa6640aec0d810f0...
client: Filtered packet: [319] 160303010710000103010101a82922879dbda7902e8dfcef2afa6640aec0d810...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (9 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a68a1eb2ba508dae7b5b8dc61cad9e0f87277b1ebb7dddecfcfd1200aea7...
handshake new: [259] 010100a68a1eb2ba508dae7b5b8dc61cad9e0f87277b1ebb7dddecfcfd1200ae...
record old: [262] 100001020100a68a1eb2ba508dae7b5b8dc61cad9e0f87277b1ebb7dddecfcfd...
record new: [263] 10000103010100a68a1eb2ba508dae7b5b8dc61cad9e0f87277b1ebb7dddecfc...
client: Original packet: [318] 1603030106100001020100a68a1eb2ba508dae7b5b8dc61cad9e0f87277b1ebb...
client: Filtered packet: [319] 160303010710000103010100a68a1eb2ba508dae7b5b8dc61cad9e0f87277b1e...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (10 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002b92f91b68a03c28ca3b16f928980d187f21d585ae302335db383cb21cc8...
handshake new: [259] 0101002b92f91b68a03c28ca3b16f928980d187f21d585ae302335db383cb21c...
record old: [262] 1000010201002b92f91b68a03c28ca3b16f928980d187f21d585ae302335db38...
record new: [263] 100001030101002b92f91b68a03c28ca3b16f928980d187f21d585ae302335db...
client: Original packet: [318] 16030301061000010201002b92f91b68a03c28ca3b16f928980d187f21d585ae...
client: Filtered packet: [319] 1603030107100001030101002b92f91b68a03c28ca3b16f928980d187f21d585...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (10 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (563 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff507ba6843a...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff507ba6843a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffcda4ec7356...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffcda4ec7356...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff88ef1cf8cc...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff88ef1cf8cc...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffce9cdc185a...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffce9cdc185a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffac87262e79...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffac87262e79...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4acd78ff19...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4acd78ff19...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff75aa42e337...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff75aa42e337...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3a1d999d21...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3a1d999d21...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffba346ebc49...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffba346ebc49...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff10c9a5a76d...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff10c9a5a76d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8008c54284...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff8008c54284...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffd9fe8e3f99...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffd9fe8e3f99...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefde9bb7b3e73...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefde9bb7b3e73...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2fc6f4f60b...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2fc6f4f60b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd86936cd45b...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd86936cd45b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd60d5a2e2ab...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd60d5a2e2ab...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd92f011ff62...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd92f011ff62...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdfcb417c7b9...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdfcb417c7b9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefde55502f378...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefde55502f378...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1c2fb6bac9...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1c2fb6bac9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd38874bf159...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd38874bf159...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (6 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd7cebfaf617...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd7cebfaf617...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdbbdbada540...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdbbdbada540...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd7c00f0c666...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd7c00f0c666...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (7 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100362310d7a463b90776b20aa7cea2c97b717441beab8d107791652606e44c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100362310d7a463b90776b20aa7cea2c97b7174...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100362310d7a4...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (10 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001c7d45bab1097277517f3dcc0eba91dcb54b1bd25ad310cf9bb94e6ffb33...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201001c7d45bab1097277517f3dcc0eba91dcb54b...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201001c7d45bab1...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100437f4bc8180160da0237c39cb6507793bef220c43093521da547e5fb7862...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100437f4bc8180160da0237c39cb6507793bef2...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100437f4bc818...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100acc39f9f01c04935e3708c873abfc79ba0d36ed93bc7138648ceea15d7c1...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100acc39f9f01c04935e3708c873abfc79ba0d3...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100acc39f9f01...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c79453c74e62d1b8f60af77158a0ed0ca22e5c7b478bda970beaa25807da...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100c79453c74e62d1b8f60af77158a0ed0ca22e...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100c79453c74e...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010043a90a6b7b5d75de89dd4ca3f452f55c33523de2d37524836a1152427e05...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 100001020001000000000102010043a90a6b7b5d75de89dd4ca3f452f55c3352...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010043a90a6b7b...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100eda6f5e87e6240dab4d35802b8406cd56403077da89d41051ca40ae467b9...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100eda6f5e87e6240dab4d35802b8406cd56403...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100eda6f5e87e...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000cd3eaaf546fd90cc96e7afb3e4b2f272ef1bde795989750ad54f750d61e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201000cd3eaaf546fd90cc96e7afb3e4b2f272ef1...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201000cd3eaaf54...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100517e7a2b64931d2fbbc03ad88d30dee4b36ad2638706a028429db87efd04...
handshake new: [259] 010101517e7a2b64931d2fbbc03ad88d30dee4b36ad2638706a028429db87efd...
record old: [270] 1000010200010000000001020100517e7a2b64931d2fbbc03ad88d30dee4b36a...
record new: [271] 100001030001000000000103010101517e7a2b64931d2fbbc03ad88d30dee4b3...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100517e7a2b64...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101517e7a2b...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100505d0a1172abc583e6524bc2dd49738579f53bbdccc6f6a234d8397021f3...
handshake new: [259] 010101505d0a1172abc583e6524bc2dd49738579f53bbdccc6f6a234d8397021...
record old: [270] 1000010200010000000001020100505d0a1172abc583e6524bc2dd49738579f5...
record new: [271] 100001030001000000000103010101505d0a1172abc583e6524bc2dd49738579...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100505d0a1172...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101505d0a11...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100010e030f2bc1fd47ba8dca917763997f11fdc98ec65ceabb6ceb86bb814a...
handshake new: [259] 010100010e030f2bc1fd47ba8dca917763997f11fdc98ec65ceabb6ceb86bb81...
record old: [270] 1000010200010000000001020100010e030f2bc1fd47ba8dca917763997f11fd...
record new: [271] 100001030001000000000103010100010e030f2bc1fd47ba8dca917763997f11...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100010e030f2b...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100010e030f...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c200191085418f50bc0abbb020b4a4f8e54c1e2db8df01d674fba69dcea7...
handshake new: [259] 010100c200191085418f50bc0abbb020b4a4f8e54c1e2db8df01d674fba69dce...
record old: [270] 1000010200010000000001020100c200191085418f50bc0abbb020b4a4f8e54c...
record new: [271] 100001030001000000000103010100c200191085418f50bc0abbb020b4a4f8e5...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100c200191085...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100c2001910...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (10 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c42ad00cbe2714b2e9109ecb9c1497e890d2a380d7d5ef021372304e8033...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100c42ad00cbe2714b2e9109ecb9c1497e890d2...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100c42ad00cbe...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004df06935fa7bb40f41671f6248a8309988a30ad5a0b7e8ef319d9d6db2f8...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201004df06935fa7bb40f41671f6248a8309988a3...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201004df06935fa...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d103091f53fdceaa7970ba28b683a26d43f986d50231462241c2cfdfe02b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100d103091f53fdceaa7970ba28b683a26d43f9...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100d103091f53...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b1385a0d4b1ca0a8242eee70fbed92857b8c020f5387db6f261a10536c0c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100b1385a0d4b1ca0a8242eee70fbed92857b8c...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100b1385a0d4b...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003d880572cf0b2287b5330dbf344bd25059fda286b0650425554bcd3736ba...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201003d880572cf0b2287b5330dbf344bd25059fd...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201003d880572cf...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100942a7e26d6502ca7a3de2530fe06d6d1d80a131876c96735040b9fe76887...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100942a7e26d6502ca7a3de2530fe06d6d1d80a...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100942a7e26d6...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002cf720110143da60f7929dad465decc72c4b5f1a26c89c4e2d511e7345cc...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201002cf720110143da60f7929dad465decc72c4b...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201002cf7201101...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e53a22d88642e70bbe3154d95a5ff42f0985737dc1ee164bfdc97a85c354...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100e53a22d88642e70bbe3154d95a5ff42f0985...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100e53a22d886...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010090c678bdd836f5317cf32351f9de256d31851d54cde2d0c604f9179eca51...
handshake new: [259] 01010190c678bdd836f5317cf32351f9de256d31851d54cde2d0c604f9179eca...
record old: [270] 100001020001000000000102010090c678bdd836f5317cf32351f9de256d3185...
record new: [271] 10000103000100000000010301010190c678bdd836f5317cf32351f9de256d31...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010090c678bdd8...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010190c678bd...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (8 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010016e40672a1cb2ac2ae50174b42cd44a3bd3b47a1bebe6502d5274daa6a20...
handshake new: [259] 01010116e40672a1cb2ac2ae50174b42cd44a3bd3b47a1bebe6502d5274daa6a...
record old: [270] 100001020001000000000102010016e40672a1cb2ac2ae50174b42cd44a3bd3b...
record new: [271] 10000103000100000000010301010116e40672a1cb2ac2ae50174b42cd44a3bd...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010016e40672a1...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010116e40672...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003a00671c38400ee12257d0f7830e8f1203f0dc111720b97ce05b1c7a48c1...
handshake new: [259] 0101003a00671c38400ee12257d0f7830e8f1203f0dc111720b97ce05b1c7a48...
record old: [270] 10000102000100000000010201003a00671c38400ee12257d0f7830e8f1203f0...
record new: [271] 1000010300010000000001030101003a00671c38400ee12257d0f7830e8f1203...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201003a00671c38...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101003a00671c...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (9 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f868d8ab324febde60dda77d6223dd820ff5a847b5bd9240635892727418...
handshake new: [259] 010100f868d8ab324febde60dda77d6223dd820ff5a847b5bd92406358927274...
record old: [270] 1000010200010000000001020100f868d8ab324febde60dda77d6223dd820ff5...
record new: [271] 100001030001000000000103010100f868d8ab324febde60dda77d6223dd820f...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100f868d8ab32...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100f868d8ab...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (10 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (380 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (7 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (6 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (13 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (19 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (16 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (16 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (16 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (15 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (9 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (10 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (9 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (224 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (4 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030193676bbd11b666d9f171895cd176f70d6965e641bbcc55b3a78a...
record new: [89] 02000051030193676bbd11b666d9f171895cd176f70d6965e641bbcc55b3a78a...
server: Original packet: [536] 160301021302000051030193676bbd11b666d9f171895cd176f70d6965e641bb...
server: Filtered packet: [94] 160301005902000051030193676bbd11b666d9f171895cd176f70d6965e641bb...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301c8d5304036c8932ba4a621ffd8f6e4dac0a57bc4073f9ff1d466...
record new: [265] 020000570301c8d5304036c8932ba4a621ffd8f6e4dac0a57bc4073f9ff1d466...
server: Original packet: [712] 16030102c3020000570301c8d5304036c8932ba4a621ffd8f6e4dac0a57bc407...
server: Filtered packet: [270] 1603010109020000570301c8d5304036c8932ba4a621ffd8f6e4dac0a57bc407...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030171335dca3706abdbbda72c8fd37e6f05fd1602e175454b5a6317...
record new: [265] 02000057030171335dca3706abdbbda72c8fd37e6f05fd1602e175454b5a6317...
server: Original packet: [712] 16030102c302000057030171335dca3706abdbbda72c8fd37e6f05fd1602e175...
server: Filtered packet: [270] 160301010902000057030171335dca3706abdbbda72c8fd37e6f05fd1602e175...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570301c030ffb43c1cc4fb5ac2c8bfbc6b07fd8c8e21f67ea52696527f...
record new: [209] 020000570301c030ffb43c1cc4fb5ac2c8bfbc6b07fd8c8e21f67ea52696527f...
server: Original packet: [530] 160301020d020000570301c030ffb43c1cc4fb5ac2c8bfbc6b07fd8c8e21f67e...
server: Filtered packet: [214] 16030100d1020000570301c030ffb43c1cc4fb5ac2c8bfbc6b07fd8c8e21f67e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (4 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570301ebaa7ed057ed9af23ba8dc8e0d0ee9ffa24be09e3a56738cfec4...
record new: [537] 020000570301ebaa7ed057ed9af23ba8dc8e0d0ee9ffa24be09e3a56738cfec4...
server: Original packet: [712] 16030102c3020000570301ebaa7ed057ed9af23ba8dc8e0d0ee9ffa24be09e3a...
server: Filtered packet: [542] 1603010219020000570301ebaa7ed057ed9af23ba8dc8e0d0ee9ffa24be09e3a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [523] 0200005703011d0e864f6f4f6a181a9583876dac25ca2549ed0b17a8b3f7677f...
record new: [411] 0200005703011d0e864f6f4f6a181a9583876dac25ca2549ed0b17a8b3f7677f...
server: Original packet: [528] 160301020b0200005703011d0e864f6f4f6a181a9583876dac25ca2549ed0b17...
server: Filtered packet: [416] 160301019b0200005703011d0e864f6f4f6a181a9583876dac25ca2549ed0b17...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (5 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703019f2bb377feb7fca307e566d4171a1cef4682ab363b6947f35917...
record new: [265] 0200005703019f2bb377feb7fca307e566d4171a1cef4682ab363b6947f35917...
Dropping handshake: 12
record old: [265] 0200005703019f2bb377feb7fca307e566d4171a1cef4682ab363b6947f35917...
record new: [95] 0200005703019f2bb377feb7fca307e566d4171a1cef4682ab363b6947f35917...
server: Original packet: [712] 16030102c30200005703019f2bb377feb7fca307e566d4171a1cef4682ab363b...
server: Filtered packet: [100] 160301005f0200005703019f2bb377feb7fca307e566d4171a1cef4682ab363b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (6 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 0200005703017a1f45918c1e9727182e04d83672057b3146e3c832534d548a52...
record new: [208] 0200005703017a1f45918c1e9727182e04d83672057b3146e3c832534d548a52...
Dropping handshake: 12
record old: [208] 0200005703017a1f45918c1e9727182e04d83672057b3146e3c832534d548a52...
record new: [95] 0200005703017a1f45918c1e9727182e04d83672057b3146e3c832534d548a52...
server: Original packet: [529] 160301020c0200005703017a1f45918c1e9727182e04d83672057b3146e3c832...
server: Filtered packet: [100] 160301005f0200005703017a1f45918c1e9727182e04d83672057b3146e3c832...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (5 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (43 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030222cdb24a283235fd6fd5254d5843b8193a74f48dedc9fd761d91...
record new: [89] 02000051030222cdb24a283235fd6fd5254d5843b8193a74f48dedc9fd761d91...
server: Original packet: [536] 160302021302000051030222cdb24a283235fd6fd5254d5843b8193a74f48ded...
server: Filtered packet: [94] 160302005902000051030222cdb24a283235fd6fd5254d5843b8193a74f48ded...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030390c856b117c144f37e22953645f3afccbe1f29d1a2bab4dcccce...
record new: [89] 02000051030390c856b117c144f37e22953645f3afccbe1f29d1a2bab4dcccce...
server: Original packet: [536] 160303021302000051030390c856b117c144f37e22953645f3afccbe1f29d1a2...
server: Filtered packet: [94] 160303005902000051030390c856b117c144f37e22953645f3afccbe1f29d1a2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feff3c9a0c592d...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feff3c9a0c592d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefdd2e6cb3af4...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefdd2e6cb3af4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703029040140ae4a4c2854dfb41903439417012aea3ef178e3dc439c5...
record new: [265] 0200005703029040140ae4a4c2854dfb41903439417012aea3ef178e3dc439c5...
server: Original packet: [712] 16030202c30200005703029040140ae4a4c2854dfb41903439417012aea3ef17...
server: Filtered packet: [270] 16030201090200005703029040140ae4a4c2854dfb41903439417012aea3ef17...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303ed81a3fe6a1319f6a917cc08a58847f0a75e077a7f96b7254c92...
record new: [267] 020000570303ed81a3fe6a1319f6a917cc08a58847f0a75e077a7f96b7254c92...
server: Original packet: [714] 16030302c5020000570303ed81a3fe6a1319f6a917cc08a58847f0a75e077a7f...
server: Filtered packet: [272] 160303010b020000570303ed81a3fe6a1319f6a917cc08a58847f0a75e077a7f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [178] 0c0000a600010000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff336236f415...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff336236f415...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [180] 0c0000a800010000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdca59ec058e...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdca59ec058e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030214e86d412499329f852285b7931cb2ae38baf89e5968f5f5656a...
record new: [265] 02000057030214e86d412499329f852285b7931cb2ae38baf89e5968f5f5656a...
server: Original packet: [712] 16030202c302000057030214e86d412499329f852285b7931cb2ae38baf89e59...
server: Filtered packet: [270] 160302010902000057030214e86d412499329f852285b7931cb2ae38baf89e59...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303826ae6d59da9482edadb61d7cfc62c83b5f7331d35f6c8ef8d12...
record new: [267] 020000570303826ae6d59da9482edadb61d7cfc62c83b5f7331d35f6c8ef8d12...
server: Original packet: [714] 16030302c5020000570303826ae6d59da9482edadb61d7cfc62c83b5f7331d35...
server: Filtered packet: [272] 160303010b020000570303826ae6d59da9482edadb61d7cfc62c83b5f7331d35...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [178] 0c0000a600010000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff283066e373...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff283066e373...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [180] 0c0000a800010000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd561ab67c8e...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd561ab67c8e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570302fd58b211504393f3a551e2e1e969caaece3c4a1d59daa8e2fb4e...
record new: [208] 020000570302fd58b211504393f3a551e2e1e969caaece3c4a1d59daa8e2fb4e...
server: Original packet: [529] 160302020c020000570302fd58b211504393f3a551e2e1e969caaece3c4a1d59...
server: Filtered packet: [213] 16030200d0020000570302fd58b211504393f3a551e2e1e969caaece3c4a1d59...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570303a7796f75690b396328527fb6d4563d2186a4d75bc3d8e0a4593d...
record new: [210] 020000570303a7796f75690b396328527fb6d4563d2186a4d75bc3d8e0a4593d...
server: Original packet: [531] 160303020e020000570303a7796f75690b396328527fb6d4563d2186a4d75bc3...
server: Filtered packet: [215] 16030300d2020000570303a7796f75690b396328527fb6d4563d2186a4d75bc3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [121] 0c00006d000100000000006d03001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff57bc91ff96...
server: Filtered packet: [284] 16feff00000000000000000063020000570000000000000057feff57bc91ff96...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [124] 0c000070000200000000007003001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [124] 0c000070000100000000007003001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd25be5e3dd4...
server: Filtered packet: [287] 16fefd00000000000000000063020000570000000000000057fefd25be5e3dd4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570302459430eeb839ecc173e3a300b450d03a82816967b666a99f6a0b...
record new: [537] 020000570302459430eeb839ecc173e3a300b450d03a82816967b666a99f6a0b...
server: Original packet: [712] 16030202c3020000570302459430eeb839ecc173e3a300b450d03a82816967b6...
server: Filtered packet: [542] 1603020219020000570302459430eeb839ecc173e3a300b450d03a82816967b6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 0200005703033b9335b2f5aaa9ba1f2c2f938e8b56b1d0edcd2c91347944f95c...
record new: [537] 0200005703033b9335b2f5aaa9ba1f2c2f938e8b56b1d0edcd2c91347944f95c...
server: Original packet: [714] 16030302c50200005703033b9335b2f5aaa9ba1f2c2f938e8b56b1d0edcd2c91...
server: Filtered packet: [542] 16030302190200005703033b9335b2f5aaa9ba1f2c2f938e8b56b1d0edcd2c91...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff708b2b7536...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff708b2b7536...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdff02497a90...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefdff02497a90...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 0200005703025ab0bdc7d3cd765dcf1d69f43cf2a868ab813cde07f696b0bf21...
record new: [411] 0200005703025ab0bdc7d3cd765dcf1d69f43cf2a868ab813cde07f696b0bf21...
server: Original packet: [530] 160302020d0200005703025ab0bdc7d3cd765dcf1d69f43cf2a868ab813cde07...
server: Filtered packet: [416] 160302019b0200005703025ab0bdc7d3cd765dcf1d69f43cf2a868ab813cde07...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 020000570303faeaf2d3f54994f385a10c85bf19c390190d847137076634dcad...
record new: [411] 020000570303faeaf2d3f54994f385a10c85bf19c390190d847137076634dcad...
server: Original packet: [530] 160303020d020000570303faeaf2d3f54994f385a10c85bf19c390190d847137...
server: Filtered packet: [416] 160303019b020000570303faeaf2d3f54994f385a10c85bf19c390190d847137...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feffd6cc2a78d3...
server: Filtered packet: [487] 16feff00000000000000000063020000570000000000000057feffd6cc2a78d3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [124] 0c000070000200000000007003001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd53a977548a...
server: Filtered packet: [487] 16fefd00000000000000000063020000570000000000000057fefd53a977548a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (4 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302d69dc4469f4bdf526e5921e12ee1d3789e297a0e11787075c025...
record new: [265] 020000570302d69dc4469f4bdf526e5921e12ee1d3789e297a0e11787075c025...
Dropping handshake: 12
record old: [265] 020000570302d69dc4469f4bdf526e5921e12ee1d3789e297a0e11787075c025...
record new: [95] 020000570302d69dc4469f4bdf526e5921e12ee1d3789e297a0e11787075c025...
server: Original packet: [712] 16030202c3020000570302d69dc4469f4bdf526e5921e12ee1d3789e297a0e11...
server: Filtered packet: [100] 160302005f020000570302d69dc4469f4bdf526e5921e12ee1d3789e297a0e11...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703033a57d45bd83b7edd8fb43013cc496aa79d89a9b79b41f887eb7d...
record new: [267] 0200005703033a57d45bd83b7edd8fb43013cc496aa79d89a9b79b41f887eb7d...
Dropping handshake: 12
record old: [267] 0200005703033a57d45bd83b7edd8fb43013cc496aa79d89a9b79b41f887eb7d...
record new: [95] 0200005703033a57d45bd83b7edd8fb43013cc496aa79d89a9b79b41f887eb7d...
server: Original packet: [714] 16030302c50200005703033a57d45bd83b7edd8fb43013cc496aa79d89a9b79b...
server: Filtered packet: [100] 160303005f0200005703033a57d45bd83b7edd8fb43013cc496aa79d89a9b79b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [178] 0c0000a600010000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff125bca1863...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff125bca1863...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [180] 0c0000a800010000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd953c651e9f...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd953c651e9f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (6 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570302cdc2424d2d1cc22d8da8326e0741675dd701cd8db8c8bec7a1a5...
record new: [208] 020000570302cdc2424d2d1cc22d8da8326e0741675dd701cd8db8c8bec7a1a5...
Dropping handshake: 12
record old: [208] 020000570302cdc2424d2d1cc22d8da8326e0741675dd701cd8db8c8bec7a1a5...
record new: [95] 020000570302cdc2424d2d1cc22d8da8326e0741675dd701cd8db8c8bec7a1a5...
server: Original packet: [529] 160302020c020000570302cdc2424d2d1cc22d8da8326e0741675dd701cd8db8...
server: Filtered packet: [100] 160302005f020000570302cdc2424d2d1cc22d8da8326e0741675dd701cd8db8...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570303e64383e75522d1c25e0570ed35dad7c009bda191e69b548ac96a...
record new: [209] 020000570303e64383e75522d1c25e0570ed35dad7c009bda191e69b548ac96a...
Dropping handshake: 12
record old: [209] 020000570303e64383e75522d1c25e0570ed35dad7c009bda191e69b548ac96a...
record new: [95] 020000570303e64383e75522d1c25e0570ed35dad7c009bda191e69b548ac96a...
server: Original packet: [530] 160303020d020000570303e64383e75522d1c25e0570ed35dad7c009bda191e6...
server: Filtered packet: [100] 160303005f020000570303e64383e75522d1c25e0570ed35dad7c009bda191e6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [122] 0c00006e000100000000006e03001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [122] 0c00006e000100000000006e03001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feffc14fd9fdf6...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feffc14fd9fdf6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (5 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [124] 0c000070000200000000007003001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [124] 0c000070000100000000007003001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [124] 0c000070000100000000007003001d20fe3d65bbdd3a40812271df0e1b9aa2e4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd75b435b2bc...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd75b435b2bc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (5 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (173 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (1 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (7935 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #15023: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #15024: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15025: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15026: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15027: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15028: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15029: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15030: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15031: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15032: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15033: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15034: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15035: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15036: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15037: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15038: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15039: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15040: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15041: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15042: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15043: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15044: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15045: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15046: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15047: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15048: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15049: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15050: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15051: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15052: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15053: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15054: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15055: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15056: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15057: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15058: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15059: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15060: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15061: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15062: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15063: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15064: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15065: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15066: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15067: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15068: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15069: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15070: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15071: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15072: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15073: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15074: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15075: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15076: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15077: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15078: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15079: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15080: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15081: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15082: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15083: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15084: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15085: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15086: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15087: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15088: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15089: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15090: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15091: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15092: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15093: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15094: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15095: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15096: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15097: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15098: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15099: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15100: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15101: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15102: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15103: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15104: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15105: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15106: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15107: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15108: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15109: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15110: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15111: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15112: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15113: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15114: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15115: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15116: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15117: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15118: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15119: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15120: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15121: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15122: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15123: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15124: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15125: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15126: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15127: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15128: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15129: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15130: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15131: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15132: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15133: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15134: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15135: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15136: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15137: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15138: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15139: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15140: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15141: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15142: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15143: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15144: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15145: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15146: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15147: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15148: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15149: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15150: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15151: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15152: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15153: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15154: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15155: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15156: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15157: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15158: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15159: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15160: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15161: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15162: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15163: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15164: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15165: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15166: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15167: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15168: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15169: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15170: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15171: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15172: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15173: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15174: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15175: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15176: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15177: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15178: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15179: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15180: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15181: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15182: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15183: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15184: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15185: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15186: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15187: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15188: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15189: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15190: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15191: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15192: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15193: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15194: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15195: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15196: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15197: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15198: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15199: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15200: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15201: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15202: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15203: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15204: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15205: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15206: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15207: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15208: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15209: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15210: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15211: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15212: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15213: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15214: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15215: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15216: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15217: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15218: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15219: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15220: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15221: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15222: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15223: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15224: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15225: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15226: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15227: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15228: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15229: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15230: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15231: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15232: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15233: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15234: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15235: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15236: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15237: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15238: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15239: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15240: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15241: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15242: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15243: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15244: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15245: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15246: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15247: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15248: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15249: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15250: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15251: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15252: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15253: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15254: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15255: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15256: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15257: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15258: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15259: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15260: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15261: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15262: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15263: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15264: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15265: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15266: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15267: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15268: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15269: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15270: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15271: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15272: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15273: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15274: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15275: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15276: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15277: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15278: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15279: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15280: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15281: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15282: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15283: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15284: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15285: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15286: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15287: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15288: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15289: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15290: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15291: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15292: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15293: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15294: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15295: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15296: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15297: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15298: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15299: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15300: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15301: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15302: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15303: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15304: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15305: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15306: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15307: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15308: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15309: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15310: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15311: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15312: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15313: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15314: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15315: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15316: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15317: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15318: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15319: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15320: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15321: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15322: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15323: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15324: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15325: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15326: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15327: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15328: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15329: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15330: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15331: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15332: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15333: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15334: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15335: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15336: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15337: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15338: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15339: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15340: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15341: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15342: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15343: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15344: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15345: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15346: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15347: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15348: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15349: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15350: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15351: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15352: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15353: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15354: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15355: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15356: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15357: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15358: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15359: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15360: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15361: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15362: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15363: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15364: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15365: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15366: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15367: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15368: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15369: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15370: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15371: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15372: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15373: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15374: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15375: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15376: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15377: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15378: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15379: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15380: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15381: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15382: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15383: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15384: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15385: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15386: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15387: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15388: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15389: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15390: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15391: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15392: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15393: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15394: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15395: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15396: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15397: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15398: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15399: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15400: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15401: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15402: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15403: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15404: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15405: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15406: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15407: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15408: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15409: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15410: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15411: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15412: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15413: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15414: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15415: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15416: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15417: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15418: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15419: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15420: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15421: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15422: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15423: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15424: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15425: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15426: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15427: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15428: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15429: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15430: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15431: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15432: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15433: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15434: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15435: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15436: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15437: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15438: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15439: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15440: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15441: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15442: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15443: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15444: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15445: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15446: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15447: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15448: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15449: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15450: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15451: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15452: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15453: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15454: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15455: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15456: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15457: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15458: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15459: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15460: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15461: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15462: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15463: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15464: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15465: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15466: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15467: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15468: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15469: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15470: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15471: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15472: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15473: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15474: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15475: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15476: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15477: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15478: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15479: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15480: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15481: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15482: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15483: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15484: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15485: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15486: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15487: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15488: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15489: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15490: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15491: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15492: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15493: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15494: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15495: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15496: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15497: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15498: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15499: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15500: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15501: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15502: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15503: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15504: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15505: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15506: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15507: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15508: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15509: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15510: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15511: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15512: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15513: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15514: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15515: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15516: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15517: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15518: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15519: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15520: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15521: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15522: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15523: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15524: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15525: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15526: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15527: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15528: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15529: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15530: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15531: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15532: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15533: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15534: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15535: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15536: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15537: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15538: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15539: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15540: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15541: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15542: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15543: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15544: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15545: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15546: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15547: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15548: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15549: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15550: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15551: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15552: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15553: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15554: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15555: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15556: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #15557: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15558: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #15559: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15560: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15561: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15562: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15563: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15564: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #15565: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #15566: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #15567: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #15568: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #15569: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #15570: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #15571: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #15572: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #15573: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #15574: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #15575: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #15576: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15577: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15578: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15579: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15580: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15581: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15582: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15583: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15584: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15585: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15586: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15587: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15588: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15589: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15590: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15591: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15592: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15593: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15594: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15595: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15596: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15597: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15598: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15599: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15600: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #15601: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #15602: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #15603: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #15604: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #15605: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #15606: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #15607: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #15608: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #15609: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #15610: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #15611: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #15612: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15613: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15614: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15615: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15616: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15617: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15618: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15619: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15620: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15621: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15622: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15623: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15624: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15625: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15626: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15627: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15628: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15629: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15630: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15631: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15632: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15633: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15634: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15635: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15636: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15637: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15638: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15639: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15640: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15641: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15642: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15643: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15644: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15645: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15646: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15647: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15648: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15649: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15650: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15651: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15652: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15653: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15654: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15655: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15656: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15657: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15658: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15659: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15660: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15661: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15662: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15663: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15664: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15665: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15666: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15667: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15668: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15669: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15670: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15671: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15672: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15673: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15674: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15675: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15676: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15677: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15678: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15679: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15680: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15681: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15682: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15683: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15684: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #15685: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #15686: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15687: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15688: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15689: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15690: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15691: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15692: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15693: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15694: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15695: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15696: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15697: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15698: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15699: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15700: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15701: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15702: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #15703: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #15704: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #15705: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #15706: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #15707: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #15708: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #15709: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #15710: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #15711: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #15712: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #15713: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #15714: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #15715: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #15716: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #15717: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #15718: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #15719: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #15720: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #15721: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #15722: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #15723: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #15724: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #15725: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #15726: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #15727: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #15728: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #15729: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #15730: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #15731: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #15732: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #15733: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #15734: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #15735: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #15736: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #15737: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #15738: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #15739: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #15740: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #15741: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #15742: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #15743: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #15744: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #15745: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #15746: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #15747: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #15748: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #15749: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #15750: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #15751: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #15752: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #15753: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #15754: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #15755: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #15756: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #15757: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #15758: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #15759: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #15760: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #15761: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #15762: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #15763: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #15764: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #15765: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #15766: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #15767: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #15768: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #15769: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #15770: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #15771: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #15772: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #15773: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #15774: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #15775: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #15776: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #15777: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #15778: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #15779: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #15780: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #15781: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #15782: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #15783: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #15784: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #15785: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #15786: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #15787: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #15788: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #15789: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #15790: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15791: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15792: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15793: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15794: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15795: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15796: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15797: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15798: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15799: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15800: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15801: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15802: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15803: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15804: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15805: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15806: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15807: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15808: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15809: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15810: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15811: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15812: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15813: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15814: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15815: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15816: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15817: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15818: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15819: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15820: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15821: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15822: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15823: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15824: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15825: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15826: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15827: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15828: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15829: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15830: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #15831: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #15832: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #15833: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #15834: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #15835: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #15836: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #15837: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #15838: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #15839: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Wed Aug 23 12:51:00 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=1
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             15839
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     0
+ popd
~/build/BUILD/nss-3.28.4
+ killall selfserv_9223
selfserv_9223: no process found
+ :
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
okay: test suite detected no failures
test suite completed
+ '[' 1 -eq 1 ']'
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Processing files: nss-3.28.4-11.el7_4.x86_64
Provides: config(nss) = 3.28.4-11.el7_4 libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.10.2)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.11.9)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.10)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.4)(64bit) libnss3.so(NSS_3.12.5)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.7)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.13.2)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.15.4)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.19)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.2.1)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.7.1)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssckbi.so()(64bit) libnssckbi.so(NSS_3.1)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.12.10)(64bit) libsmime3.so(NSS_3.12.2)(64bit) libsmime3.so(NSS_3.13)(64bit) libsmime3.so(NSS_3.15)(64bit) libsmime3.so(NSS_3.16)(64bit) libsmime3.so(NSS_3.18)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.2.1)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.4.1)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.7)(64bit) libsmime3.so(NSS_3.7.2)(64bit) libsmime3.so(NSS_3.8)(64bit) libsmime3.so(NSS_3.9)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.11.4)(64bit) libssl3.so(NSS_3.11.8)(64bit) libssl3.so(NSS_3.12.10)(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.2.1)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.21)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.23)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.28)(64bit) libssl3.so(NSS_3.30.0.1)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) nss = 3.28.4-11.el7_4 nss(x86-64) = 3.28.4-11.el7_4
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.3)(64bit) libnssutil3.so(NSSUTIL_3.12.5)(64bit) libnssutil3.so(NSSUTIL_3.13)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libnssutil3.so(NSSUTIL_3.17.1)(64bit) libnssutil3.so(NSSUTIL_3.21)(64bit) libnssutil3.so(NSSUTIL_3.24)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-tools-3.28.4-11.el7_4.x86_64
Provides: nss-tools = 3.28.4-11.el7_4 nss-tools(x86-64) = 3.28.4-11.el7_4
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.7)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.2.5)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libsoftokn3.so()(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-sysinit-3.28.4-11.el7_4.x86_64
Provides: libnsssysinit.so()(64bit) nss-sysinit = 3.28.4-11.el7_4 nss-sysinit(x86-64) = 3.28.4-11.el7_4 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh libc.so.6()(64bit) libc.so.6(GLIBC_2.14)(64bit) libc.so.6(GLIBC_2.17)(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) rtld(GNU_HASH)
Processing files: nss-devel-3.28.4-11.el7_4.x86_64
Provides: nss-devel = 3.28.4-11.el7_4 nss-devel(x86-64) = 3.28.4-11.el7_4 nss-static = 3.28.4-11.el7_4 pkgconfig(nss) = 3.28.4
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.13.1 pkgconfig(nss-util) >= 3.28.4
Processing files: nss-pkcs11-devel-3.28.4-11.el7_4.x86_64
Provides: nss-pkcs11-devel = 3.28.4-11.el7_4 nss-pkcs11-devel(x86-64) = 3.28.4-11.el7_4 nss-pkcs11-devel-static = 3.28.4-11.el7_4
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.28.4-11.el7_4.x86_64
Provides: nss-debuginfo = 3.28.4-11.el7_4 nss-debuginfo(x86-64) = 3.28.4-11.el7_4
Requires(rpmlib): rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1 rpmlib(CompressedFileNames) <= 3.0.4-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64
Wrote: /builddir/build/RPMS/nss-3.28.4-11.el7_4.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.28.4-11.el7_4.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.28.4-11.el7_4.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.28.4-11.el7_4.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.28.4-11.el7_4.x86_64.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.28.4-11.el7_4.x86_64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.Hjb44L
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.28.4-11.el7_4.x86_64
+ exit 0
Child return code was: 0